2014, Internet and VPN - Cyber Security Informer

MyBook Users Urged to Unplug Devices from Internet

Krebs on Security

JUNE 25, 2021

Hard drive giant Western Digital is urging users of its MyBook Live brand of network storage drives to disconnect them from the Internet, warning that malicious hackers are remotely wiping the drives using a critical flaw that can be triggered by anyone who knows the Internet address of an affected device.

Internet

Internet Internet Backups Small Business

Hacker leaks passwords for 900+ Pulse Secure VPN enterprise servers

Security Affairs

AUGUST 5, 2020

ZDNet reported in exclusive that a list of passwords for 900+ enterprise VPN servers has been shared on a Russian-speaking hacker forum. ZDNet has reported in exclusive that a list of plaintext usernames and passwords for 900 Pulse Secure VPN enterprise servers, along with IP addresses, has been shared on a Russian-speaking hacker forum.

VPN

VPN Passwords Banking Advertising

Stark Industries Solutions: An Iron Hammer in the Cloud

Krebs on Security

MAY 23, 2024

Two weeks before Russia invaded Ukraine in February 2022, a large, mysterious new Internet hosting firm called Stark Industries Solutions materialized and quickly became the epicenter of massive distributed denial-of-service (DDoS) attacks on government and commercial targets in Ukraine and Europe. The homepage of Stark Industries Solutions.

DDOS

DDOS Internet Internet Government

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Almost 800,000 SonicWall VPN appliances online are vulnerable to CVE-2020-5135

Security Affairs

OCTOBER 16, 2020

The Tripwire VERT security team spotted almost 800,000 SonicWall VPN appliances exposed online that are vulnerable to the CVE-2020-5135 RCE flaw. Security experts from the Tripwire VERT security team have discovered 795,357 SonicWall VPN appliances that were exposed online that are vulnerable to the CVE-2020-5135 RCE flaw.

VPN

VPN Firewall Advertising Internet

DarkHotel APT uses VPN zero-day in attacks on Chinese government agencies

Security Affairs

APRIL 6, 2020

DarkHotel nation-state actor is exploiting a VPN zero -day to breach Chinese government agencies in Beijing and Shanghai. State-sponsored hackers used a zero-day vulnerability in Sangfor SSL VPN servers to gain access to victims’ networks. Up to now, a large number of VPN users have been attacked.”

VPN

VPN Government Advertising Firmware

APT groups chain VPN and Windows Zerologon bugs to attack US government networks

Security Affairs

OCTOBER 12, 2020

US government networks are under attack, threat actors chained VPN and Windows Zerologon flaws to gain unauthorized access to elections support systems. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. . Pierluigi Paganini.

VPN

VPN Government Authentication Advertising

7 VPN services left data of millions of users exposed online

Security Affairs

JULY 21, 2020

vpnMentor experts reported that seven Virtual Private Network (VPN) recently left 1.2 Security experts from vpnMentor have discovered a group of seven free VPN (virtual private network) apps that left their server unsecured online exposing private user data for anyone to see. . terabytes of private user data exposed to online.

VPN

VPN Advertising Passwords Internet

VPN vs. proxy: which is better to stay anonymous online?

Security Affairs

NOVEMBER 10, 2018

Most people prefer using proxies over VPN services because they are easy to use and mostly available for free, but can it be relied on for anonymity? Most people prefer using proxies over VPNs because they are easy to use and mostly available for free, but can it be relied on for anonymity? VPN vs. Proxy. What is a VPN?

VPN

VPN Internet Internet Small Business

The strengths and weaknesses of different VPN protocols

Security Affairs

APRIL 26, 2019

One in four internet users use a VPN regularly, but how much does the average user know about what goes on behind the software? Pulling back the curtain, a VPN runs on various VPN protocols that govern the way a VPN client communicates with a VPN server. IKEv2 is uniquely suited to mobile VPN solutions.

VPN

VPN Encryption Firewall Internet

Chinese police arrested the operator of unauthorized VPN service that made $1.6 million from his activity

Security Affairs

JANUARY 17, 2020

Chinese authorities continue operations against unauthorized VPN services that are very popular in the country. China continues to intensify the monitoring of the cyberspace applying and persecution of VPN services that could be used to bypass its censorship system known as the Great Firewall. Pierluigi Paganini.

VPN

VPN Firewall Advertising Media

335,923 out of 489,337 Fortinet firewalls vulnerable to CVE-2023-27997

Security Affairs

JULY 3, 2023

Researchers reported that there are 490,000 Fortinet firewalls exposing SSL VPN interfaces on the internet, and roughly 69% of them are still vulnerable to CVE-2023-27997. For this reason, if the customer has SSL-VPN enabled, Fortinet is advising customers to take immediate action to upgrade to the most recent firmware release.

Firewall

Firewall VPN Firmware Internet

Security expert discovered a bug that affects million Kaspersky VPN users

Security Affairs

AUGUST 9, 2018

A security issue exists in Kaspersky VPN <=v1.4.0.216 which leaks your DNS Address even after you’re connected to any virtual server. In this context, with the term “DNS leak” we indicate an unencrypted DNS query sent by your system OUTSIDE the established VPN tunnel. Securi ty Affairs – Kaspersky VPN, privacy).

VPN

VPN DNS Advertising Internet

The Russian Government blocked ProtonMail and ProtonVPN

Security Affairs

FEBRUARY 2, 2020

The p opular ProtonMail end-to-end encrypted email service and ProtonVPN VPN service have been blocked by the Russian government this week. This week the Russian government has blocked the ProtonMail end-to-end encrypted email service and ProtonVPN VPN service. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Government

Government VPN Telecommunications Advertising

VPNpro research: this Chinese-linked company secretly owns 10 VPNs with 86 million installs

Security Affairs

MAY 30, 2019

Innovative Connecting is actually a Chinese company that secretly owns 10 VPN products with a total of 86 million installs under its belt. The study also revealed that two of those VPN products are under its other developer name, Lemon Clove, and another two by Autumn Breeze 2018. Innovative Connecting VPNs products.

VPN

VPN Small Business Mobile Advertising

REVil ransomware infected 18,000 computers at Telecom Argentina

Security Affairs

JULY 20, 2020

Telecom Argentina , one of the largest internet service providers in Argentina, was hit by a ransomware attack. Immediately after the attack was detected by the internal IT staff, the company warned its employees of not connecting its internal VPN network and avoiding opening emails with suspicious archive attachments. million ransom.

Ransomware

Ransomware VPN Advertising Internet

SHARED INTEL: Coming very soon — ‘passwordless authentication’ as a de facto security practice

The Last Watchdog

NOVEMBER 11, 2020

For most of the Internet era, we’ve learned to live with these tradeoffs. VPN attack surface It’s notable that even without Covid-19 pressure was intensifying for Apple to join FIDO. Threat intelligence firm KELA verified the authenticity of this list, which included last-used VPN logins and VPN session cookies.

Authentication

Authentication VPN Passwords Hacking

Giving a Face to the Malware Proxy Service ‘Faceless’

Krebs on Security

APRIL 18, 2023

Riley Kilmer is co-founder of Spur.us , a company that tracks thousands of VPN and proxy networks, and helps customers identify traffic coming through these anonymity services. as a media sharing device on a local network that was somehow exposed to the Internet. 2012, from an Internet address in Magnitogorsk, RU.

Malware

Malware Passwords Accountability Advertising

Russian govn blocked Tutanota service in Russia to stop encrypted communication

Security Affairs

FEBRUARY 17, 2020

Since early February, the Russian government has blocked other encrypted email and VPN services in Russia, including ProtonMail and ProtonVPN VPN service. The Russian government asks all Internet service providers and VPN providers operating in the country to provide information about their users. Pierluigi Paganini.

Encryption

Encryption VPN Government Internet

5 Ways to Protect Yourself from IP Address Hacking

Security Affairs

AUGUST 20, 2019

Your IP or Internet Protocol address is your digital identity on the internet. It may be used to download unauthorized stuff or may be used for uploading disputed content on the internet. VPN or Virtual Private Network is the most secure way of connecting with the online world. Ways of Protecting IP Address from Hackers.

Hacking

Hacking VPN Internet Internet

CISA says federal agency compromised by malicious cyber actor

Security Affairs

SEPTEMBER 25, 2020

The threat actors initially leveraged compromised credentials for Microsoft Office 365 (O365) accounts, domain administrator accounts, and credentials for the agency’s Pulse Secure VPN server. “First the threat actor logged into a user’s O365 account from Internet Protocol (IP) address 91.219.236[.]166 Pierluigi Paganini.

VPN

VPN Malware Cyber threats Accountability

Interview With a Crypto Scam Investment Spammer

Krebs on Security

MAY 22, 2023

Chaput said the spammers used more than 1,500 Internet addresses across 400 providers to register new accounts, which then followed popular accounts on Mastodon and sent private mentions to the followers of those accounts. that were created from different Internet addresses in Vienna, Austria. A DIRECT QUOT The domain quot[.]pw

Scams

Scams DDOS Cryptocurrency Accountability

Sophos fixed a critical vulnerability in Cyberoam firewalls

Security Affairs

OCTOBER 10, 2019

. “The vulnerability can be potentially exploited by sending a malicious request to either the Web Admin or SSL VPN consoles, which would enable an unauthenticated remote attacker to execute arbitrary commands.” Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. said the spokesperson.

Firewall

Firewall VPN Passwords Internet

NASA warns of a significant increase in cyber attacks during Coronavirus outbreak

Security Affairs

APRIL 8, 2020

The memo invited NASA personnel to use VPN and regularly visit a dedicated website that provides information related to working during the COVID-19 outbreak. Below the list of suggestions included in the agency’s memo: Use the NASA VPN, prior to beginning to work. Pierluigi Paganini. SecurityAffairs – hacking, Coronavirus).

Cyber Attacks

Cyber Attacks Computers and Electronics VPN Phishing

The War in Technology: A Digital Iron Curtain Goes Up

SecureWorld News

MARCH 10, 2022

Many threats that have until now been theoretical—like creation of a "Ru-net" as an alternative to the Internet—are becoming a reality. Cutting off Internet access to a country the size of Texas is not as simple as cutting a few cables or bombing a few cell towers. There are many tech angles to the war in Ukraine.

Technology

Technology Internet Internet Telecommunications

Iran-linked APT group Pioneer Kitten sells access to hacked networks

Security Affairs

SEPTEMBER 1, 2020

The Iranian hacker group has been attacking corporate VPNs over the past months, they have been hacking VPN servers to plant backdoors in companies around the world targeting Pulse Secure , Fortinet , Palo Alto Networks , and Citrix VPNs. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Hacking

Hacking VPN Advertising Financial Services

Hackers are targeting teleworkers with vishing campaign, CISA and FBI warn

Security Affairs

AUGUST 21, 2020

The campaign is worrisome due to the ongoing COVID-19 pandemic that caused the spike in the number of employees working from home and the increase in the use of corporate VPN and elimination of in-person verification. Restrict VPN access hours, where applicable, to mitigate access outside of allowed times.

Social Engineering

Social Engineering VPN Phishing Authentication

Security Affairs newsletter Round 283

Security Affairs

SEPTEMBER 27, 2020

fitness chains Town Sports leaked online Group-IB detects a series of ransomware attacks by OldGremlin HOW DO PROVIDERS IMPLEMENT INTERNET BLOCKING IN BELARUS? Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

IoT

IoT Banking Advertising Ransomware

Experts saw 100k+ daily brute-force attacks on RDP during COVID-19 lockdown

Security Affairs

JUNE 29, 2020

Below the recommendations provided by ESET on how to configure remote access correctly: Disable internet-facing RDP. If that is not possible, minimize the number of users allowed to connect directly to the organization’s servers over the internet. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Passwords

Passwords Internet Internet Advertising

Russia-linked APT28 has been scanning vulnerable email servers in the last year

Security Affairs

MARCH 20, 2020

The nation-state hackers are scanning the entire internet, in search of vulnerable webmail and Microsoft Exchange Autodiscover servers that expose TCP ports 445 and 1433. Trend Micro investigated waves of the APT28’s targeted credential phishing attacks and collected thousands of email samples sent out by the group since 2014.

Phishing

Phishing Accountability Advertising DNS

Security Affairs newsletter Round 269

Security Affairs

JUNE 21, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. authorities sanction six Nigerian nationals for BEC and Romance Fraud. Pierluigi Paganini. SecurityAffairs – hacking, newsletter).

DDOS

DDOS Spyware Mobile Advertising

15 SUREFIRE Tips To Protect Your Privacy Online

SecureBlitz

MAY 25, 2021

In 2014, over 5 million Google account passwords were leaked online after a successful data breach. According to Statista, only 12% of US internet users were confident of their online privacy in. I will show you tips to protect your privacy online as well as social networking platforms like Twitter, Facebook, etc. in this post.

Data breaches

Data breaches Passwords Internet Internet

A Deep Dive on the Recent Widespread DNS Hijacking Attacks

Krebs on Security

FEBRUARY 18, 2019

This post seeks to document the extent of those attacks, and traces the origins of this overwhelmingly successful cyber espionage campaign back to a cascading series of breaches at key Internet infrastructure providers. federal civilian agencies to secure the login credentials for their Internet domain records. That changed on Jan.

DNS

DNS Internet Internet Government

CLOP Ransomware operators hacked Indian conglomerate IndiaBulls Group

Security Affairs

JUNE 23, 2020

According to Cyberintelligence firm Bad Packets , hackers allegedly exploited the CVE-2019-19781 vulnerability in the Citrix Netscaler ADC VPN gateway exposed by Indiabulls. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Hacking

Hacking Ransomware Banking Mobile

LW ROUNDTABLE: Cybersecurity takeaways of 2023 — and what’s ahead in 2024 ( part 2)

The Last Watchdog

DECEMBER 14, 2023

“Kerberoasting” and “Golden Ticket” attacks were both introduced in 2014 and yet enterprises continue to have hundreds of accounts configured with unconstrained delegation. Acohido is dedicated to fostering public awareness about how to make the Internet as private and secure as it ought to be. (LW In 2024 we’ll see more of the same.

Cybersecurity

Cybersecurity Risk Cyber threats CSO

Breach Exposes Users of Microleaves Proxy Service

Krebs on Security

JULY 28, 2022

Launched in 2013, Microleaves is a service that allows customers to route their Internet traffic through PCs in virtually any country or city around the globe. Microleaves works by changing each customer’s Internet Protocol (IP) address every five to ten minutes. I can’t say more and I won’t get into details.”

Advertising

Advertising Software Computers and Electronics Internet

Facebook paid teens $20 to install a Research App that spies on them

Security Affairs

JANUARY 30, 2019

Facebook is paying teens $20 a month to use its VPN app, called Facebook Research, that monitors their activity via their mobile devices. Facebook is paying teens $20 a month to use its VPN app, called Facebook Research, that monitors their activity via the mobile devices. ” reads the report published by Techcrunch.

VPN

VPN Mobile Media Advertising

An SSRF flaw in Maximo Asset Management could be used to target corporate networks

Security Affairs

JUNE 19, 2020

So if our ‘warehouse worker’ or equivalent connects through a properly configured VPN, that person’s access within the corporate network is restricted to what they need— from that particular system and email, for example. ” ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

VPN

VPN Advertising Authentication Passwords

How Cybercriminals are Targeting free Wi-Fi Users?

Security Affairs

OCTOBER 16, 2018

Another very brutal attack is the interception of users’ internet data when they are on these unsecured public Wi-Fi hotspots. The internet data transmitted on these networks is not encrypted. How to stay protected with VPN on Public Wi-Fi Networks? Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

VPN

VPN Encryption Banking Advertising

The Dangers of Using Unsecured Wi-Fi Networks

Security Affairs

AUGUST 22, 2019

The answer is a virtual private network (VPN) which creates a private tunnel between your device and the internet and encrypts your data. BullGuard VPN for instance uses military grade encryption which would take more than a lifetime to crack. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

VPN

VPN Encryption Passwords Small Business

Security Affairs newsletter Round 243

Security Affairs

DECEMBER 8, 2019

Europol seized 30,506 Internet domain names for IP Infringement. CVE-2019-14899 flaw allows hijacking VPN connections on Linux, Unix systems. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. . Pierluigi Paganini.

Advertising

Advertising DDOS VPN Authentication

Flaws in leading industrial remote access systems allow disruption of operations

Security Affairs

OCTOBER 1, 2020

CISA also published a security advisory for these vulnerabilities, the US agency provided the following recommendations to the users: Minimize network exposure for all control system devices and/or systems, and ensure that they are not accessible from the Internet. Also recognize that VPN is only as secure as the connected devices.

Advertising

Advertising Authentication VPN Firewall

A mysterious code prevents QNAP NAS devices to be updated

Security Affairs

FEBRUARY 11, 2019

“Exposing your NAS on the internet (allowing remote access) is always a high risk thing to do (at least without a properly deployed remote access VPN and/or 2FA on all existing user accounts)!” ” ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. ” wrote the user P3R.

Antivirus

Antivirus Firmware Advertising VPN

Hackers target Docker servers to deploy the new Kinsing cryptocurrency miner

Security Affairs

APRIL 6, 2020

Cloud security firm Aqua Security uncovered a hacking campaign carried out during the past months, hackers are scanning the Internet for Docker servers running API ports exposed without a password. Experts also recommend to access admin endpoints only through firewall or VPN gateway. ” concludes the experts. Pierluigi Paganini.

Cryptocurrency

Cryptocurrency Malware Advertising VPN

SANDMAN AND FINEPROXY BEHIND THE DDOS ATTACKS AGAINST TIMETV.LIVE

Security Affairs

APRIL 28, 2020

After reviewing the attack logs of the Denial of Service, Qurium could quickly determine that the attacker was using Fineproxy VPN service to build a botnet to flood the website. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

DDOS

DDOS Media VPN Advertising

MyBook Users Urged to Unplug Devices from Internet

Hacker leaks passwords for 900+ Pulse Secure VPN enterprise servers

Webinars

Trending Sources

Stark Industries Solutions: An Iron Hammer in the Cloud

Webinars

Almost 800,000 SonicWall VPN appliances online are vulnerable to CVE-2020-5135

DarkHotel APT uses VPN zero-day in attacks on Chinese government agencies

APT groups chain VPN and Windows Zerologon bugs to attack US government networks

7 VPN services left data of millions of users exposed online

VPN vs. proxy: which is better to stay anonymous online?

The strengths and weaknesses of different VPN protocols

Chinese police arrested the operator of unauthorized VPN service that made $1.6 million from his activity

335,923 out of 489,337 Fortinet firewalls vulnerable to CVE-2023-27997

Security expert discovered a bug that affects million Kaspersky VPN users

The Russian Government blocked ProtonMail and ProtonVPN

VPNpro research: this Chinese-linked company secretly owns 10 VPNs with 86 million installs

REVil ransomware infected 18,000 computers at Telecom Argentina

SHARED INTEL: Coming very soon — ‘passwordless authentication’ as a de facto security practice

Giving a Face to the Malware Proxy Service ‘Faceless’

Russian govn blocked Tutanota service in Russia to stop encrypted communication

5 Ways to Protect Yourself from IP Address Hacking

CISA says federal agency compromised by malicious cyber actor

Interview With a Crypto Scam Investment Spammer

Sophos fixed a critical vulnerability in Cyberoam firewalls

NASA warns of a significant increase in cyber attacks during Coronavirus outbreak

The War in Technology: A Digital Iron Curtain Goes Up

Iran-linked APT group Pioneer Kitten sells access to hacked networks

Hackers are targeting teleworkers with vishing campaign, CISA and FBI warn

Security Affairs newsletter Round 283

Experts saw 100k+ daily brute-force attacks on RDP during COVID-19 lockdown

Russia-linked APT28 has been scanning vulnerable email servers in the last year

Security Affairs newsletter Round 269

15 SUREFIRE Tips To Protect Your Privacy Online

A Deep Dive on the Recent Widespread DNS Hijacking Attacks

CLOP Ransomware operators hacked Indian conglomerate IndiaBulls Group

LW ROUNDTABLE: Cybersecurity takeaways of 2023 — and what’s ahead in 2024 ( part 2)

Breach Exposes Users of Microleaves Proxy Service

Facebook paid teens $20 to install a Research App that spies on them

An SSRF flaw in Maximo Asset Management could be used to target corporate networks

How Cybercriminals are Targeting free Wi-Fi Users?

The Dangers of Using Unsecured Wi-Fi Networks

Security Affairs newsletter Round 243

Flaws in leading industrial remote access systems allow disruption of operations

A mysterious code prevents QNAP NAS devices to be updated

Hackers target Docker servers to deploy the new Kinsing cryptocurrency miner

SANDMAN AND FINEPROXY BEHIND THE DDOS ATTACKS AGAINST TIMETV.LIVE

Stay Connected