2015 and Architecture - Cyber Security Informer

DOGE as a National Cyberattack

Schneier on Security

FEBRUARY 13, 2025

The Chinese government’s 2015 breach of OPM was a significant US security failure, and it illustrated how personnel data could be used to identify intelligence officers and compromise national security.

Government

Government Artificial Intelligence Banking Software

Experts warn of a surge in activity associated FICORA and Kaiten botnets

Security Affairs

DECEMBER 27, 2024

Some of the vulnerabilities exploited by the botnets are CVE-2015-2051 , CVE-2019-10891 , CVE-2022-37056 , and CVE-2024-33112. It first terminates processes with the same file extension as “FICORA” and then downloads and executes the malware targeting multiple Linux architectures.

Architecture

Architecture Malware DNS DDOS

AI Appreciation Day Recognizes Positive Contributions

SecureWorld News

JULY 16, 2025

Fast forward to 2015, and more than 2,700 software projects within Google alone were integrating some form of AI. As organizations scale and adopt multi-cloud architectures, traditional access controls often fall short, lacking the agility and context awareness needed to keep pace.

Artificial Intelligence

Artificial Intelligence Technology Government Scams

How Real Is the Threat of Adversarial AI to Cybersecurity?

SecureWorld News

JUNE 18, 2025

Google researchers in 2015 showed that an image of a panda could be imperceptibly modified so that a neural network misclassified it as a gibbon, while to the human eye both images are clearly pandas. Secure AI architecture and governance Your AI systems should be designed with layered security from the outset.

Cybersecurity

Cybersecurity Artificial Intelligence Risk Healthcare

Fortinet vs Palo Alto NGFWs 2025: Comparison Guide

eSecurity Planet

MARCH 28, 2025

Palo Altos unified network security architecture secures virtual, on-premises, and containerized environments, making it ideal for large companies with strong IT and security teams. Its zero-trust security and single-pass parallel processing architecture provide scalable, user-centric policies and improve performance maintenance over time.

Firewall

Firewall Small Business Architecture Spyware

Feedify cloud service architecture compromised by MageCart crime gang

Security Affairs

SEPTEMBER 16, 2018

The group has been active since at least 2015 and compromised many e-commerce websites to steal payment card and other sensitive data. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. The post Feedify cloud service architecture compromised by MageCart crime gang appeared first on Security Affairs.

Architecture

Architecture Advertising Cybercrime Malware

NIST’s Post-Quantum Cryptography Standards

Schneier on Security

AUGUST 8, 2022

NIST is an old hand at this competitive process, having previously done this with symmetric algorithms (AES in 2001) and hash functions (SHA-3 in 2015). It took a couple of decades to fully understand von Neumann computer architecture; expect the same learning curve with quantum computing.

Encryption

Encryption Architecture Engineering Information Security

Evaluating the NSA's Telephony Metadata Program

Schneier on Security

AUGUST 12, 2019

The Snowden disclosures and the public controversy that followed led Congress in 2015 to end bulk collection and amend the CDR authorities with the adoption of the USA FREEDOM Act (UFA). Second, we show how the architecture of modern telephone communications might cause collection errors that fit the reported reasons for the 2018 purge.

Surveillance

Surveillance Architecture Encryption Technology

ENISA publishes a Threat Landscape for 5G Networks

Security Affairs

NOVEMBER 21, 2019

Today’s ENISA 5G Threat landscape complements the Coordinated Risk Assessment with a more technical and more detailed view on the 5G architecture, the assets and the cyber threats for those assets. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Understanding threat exposure. Pierluigi Paganini.

Architecture

Architecture Risk Telecommunications Advertising

Diavol Ransomware Appears to Have Connections with TrickBot

Heimadal Security

JANUARY 21, 2022

TrickBot is a distant descendent of the ZeuS banking Trojan, which first appeared in 2005, although it is most commonly associated with Dyre or Dyreza, which went down in 2015. TrickBot appeared in 2016, replicating parts of Dyre’s malware while preserving its banking credential harvesting and web inject architecture.

Ransomware

Ransomware Banking Architecture Malware

GUEST ESSAY: Pentagon’s security flaws highlighted in GAO audit — and recent data breach

The Last Watchdog

OCTOBER 17, 2018

Don’t be surprised if the number of victims climbs higher, as we learned from the 2015 hack of 21.5 Traditionally, systems were designed, built and operated based on architectural and technical limitation decisions years ago, and as such, trust was decided upon contract award. military and civilian personnel were compromised.

Data breaches

Data breaches Architecture Government Accountability

Hackers targeted ICS/SCADA systems at water facilities, Israeli government warns

Security Affairs

APRIL 27, 2020

The experts discovered a desolating situation, a number of systems affected by critical vulnerabilities were publicly exposed on the Internet and the overall architecture was including outdated operation technology (OT) systems. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Energy and Utilities

Energy and Utilities Government Cyber Attacks Architecture

AMD is going to patch UEFI SMM callout privilege escalation flaw

Security Affairs

JUNE 22, 2020

If this level of access is acquired, an attacker could potentially manipulate the AMD Generic Encapsulated Software Architecture (AGESA) to execute arbitrary code undetected by the operating system.” Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. ” reads the analysis published by Odler.

Firmware

Firmware Architecture Advertising Manufacturing

2021 Threat Intelligence Use Cases

Anton on Security

MARCH 19, 2021

Admittedly, it is related to the threat research, and is typically seen at even higher maturity levels (as I discuss here, back in 2015 ). Intel-supported or threat-informed decisions may be about changes in defense approaches, security architecture changes, activity prioritization, etc.

Firewall

Firewall Architecture Threat Detection Cyber threats

US Government is asking allies to ban Huawei equipment

Security Affairs

NOVEMBER 24, 2018

US Government is inviting its allies to exclude Huawei equipment from critical infrastructure and 5G architectures, reports the Wall Street Journal. The Wall Street Journal reported that the US Government is urging its allies to exclude Huawei from critical infrastructure and 5G architectures. Pierluigi Paganini.

Government

Government Architecture Advertising Internet

New HEH botnet wipes devices potentially bricking them

Security Affairs

OCTOBER 7, 2020

Experts noticed that the malware supports multiple CPU architectures, including x86(32/64), ARM(32/64), MIPS(MIPS32/MIPS-III) and PPC, it is written in the Go open-source programming language. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. ” concludes the post.

IoT

IoT Architecture Malware Advertising

Experts spotted a new Mirai variant that targets new processors

Security Affairs

APRIL 10, 2019

Palo Alto Networks researchers discovered a new variant of the Mirai malware that is targeting more processor architectures than previous ones. Mirai botnet continues to be one of the most dangerous malware in the threat landscape, experts at Palo Alto Networks discovered a new variant that targets more processor architectures than before.

Architecture

Architecture DDOS IoT Internet

Second-ever UEFI rootkit used in North Korea-themed attacks

Security Affairs

OCTOBER 5, 2020

In 2015, the hacker who breached the systems of the Italian surveillance firm Hacking Team leaked a 400GB package containing hacking tools and exploits codes. The MosaicRegressor framework was developed for cyber espionage purposes, its modular architecture allows operators to perform multiple actions. Pierluigi Paganini.

Firmware

Firmware Spyware Surveillance Hacking

Aerial Direct, the O2’s largest UK partner suffered a data breach

Security Affairs

MARCH 16, 2020

The company announced that is currently working to further enhance the security of its architecture with the help of “relevant experts” Customers can contact the support website to receive information about the security breach, the company is recommending them to change their passwords.

Data breaches

Data breaches Telecommunications Passwords Advertising

Enemybot, a new DDoS botnet appears in the threat landscape

Security Affairs

APRIL 17, 2022

The botnet targets multiple architectures, including arm, bsd, x64, and x86. Then the script downloads the actual Enemybot binary which is compiled for the target device’s architecture. The researchers attribute the botnet to the cybercrime group Keksec which focuses on DDoS-based extortion.

DDOS

DDOS Architecture Malware Cybercrime

VMware addressed flaws in its Workstation and Tools

Security Affairs

JUNE 6, 2019

The second issue, tracked as CVE-2019-5525, is a use-after-free bug affecting the Advanced Linux Sound Architecture (ALSA) backend in Workstation 15.x. “VMware Workstation contains a use-after-free vulnerability in the Advanced Linux Sound Architecture (ALSA) backend. ” states the advisory. for Linux. .”

Architecture

Architecture Advertising Software Hacking

Crooks leverage Zoom’s popularity in Coronavirus outbreak to serve malware

Security Affairs

MARCH 30, 2020

Prevent zero-day attacks with a holistic, end to end cyber architecture. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. One way to do this is NOT to click on promotional links in emails, and instead, Google your desired retailer and click the link from the Google results page. Pierluigi Paganini.

Malware

Malware Advertising Architecture Retail

Hackers for hire group target organizations via 3ds Max exploit

Security Affairs

AUGUST 26, 2020

2] It has modeling capabilities and a flexible plugin architecture and must be used on the Microsoft Windows platform. 3Ds Max is used by engineering, architecture, gaming, or software organizations. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. ” reads the security alert.

Architecture

Architecture Malware Advertising Software

AMD admits hacker stole source code files related to its GPUs

Security Affairs

MARCH 28, 2020

The hacker claims to have obtained files related to several AMD graphics processing units (GPUs), including the Navi 10 architecture and the upcoming Navi 21, and Arden. ” ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. ” concludes TorrentFreak. Pierluigi Paganini.

Advertising

Advertising Architecture Hacking Data breaches

Hackers are using Zerologon exploits in attacks in the wild

Security Affairs

SEPTEMBER 24, 2020

The Netlogon service is an Authentication Mechanism used in the Windows Client Authentication Architecture which verifies logon requests, and it registers, authenticates, and locates Domain Controllers. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Don’t waste time, patch your system now!

Security Intelligence

Security Intelligence Authentication Advertising Architecture

US officials claim Huawei Equipment has secret backdoor for spying

Security Affairs

FEBRUARY 13, 2020

In November 2018, the Wall Street Journal reported that the US Government was urging its allies to exclude Huawei from critical infrastructure and 5G architectures. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Manufacturing

Manufacturing Surveillance Advertising Architecture

Multiple threat actors are targeting Elasticsearch Clusters

Security Affairs

FEBRUARY 27, 2019

and lower) to compromise them and install the malicious code the exploit the CVE-2014-3120 and CVE-2015-1427 vulnerabilities. These attacks leverage CVE-2014-3120 and CVE-2015-1427, both of which are only present in old versions of Elasticsearch and exploit the ability to pass scripts to search queries.” Pierluigi Paganini.

Cryptocurrency

Cryptocurrency Advertising DDOS Malware

Kaspersky links GreyEnergy and Zebrocy activities

Security Affairs

JANUARY 24, 2019

GreyEnergy has been active at least since 2015, it conducted reconnaissance and cyber espionage activities in Ukraine and Poland, it focused its activities on energy and transportation industries, and other high-value targets. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Malware

Malware Advertising Architecture Phishing

Massive increase in XorDDoS Linux malware in last six months

Malwarebytes

MAY 25, 2022

Based on a case study in 2015 , Akamai strengthened the theory that the malware may be of Asian origin based on its targets. The only simple (yet effective) tactic it uses is to brute force its way to gain root access to various Linux architectures. MMD believed the Linux Trojan originated in China.

Malware

Malware IoT DDOS DNS

Unknown FinSpy Mac and Linux versions found in Egypt

Security Affairs

SEPTEMBER 27, 2020

It extracts the binary for the relevant architecture in /tmp/udev2 and executes it. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Below the infection chain for the FinSpy for Linux, descrived by the researchers. Like its Mac OS counterpart, FinSpy for Linux is also obfuscated using LLVM-Obfuscator.”

Spyware

Spyware Surveillance Advertising Mobile

Mozi Botnet is responsible for most of the IoT Traffic

Security Affairs

SEPTEMBER 20, 2020

. “Our analysis of this particular sample indicates the file executes on microprocessor without interlocked pipelined stages (MIPS) architecture. This is an extension understood by machines running reduced instruction set computer (RISC) architecture, which is prevalent on many IoT devices.” ” continues the analysis.

IoT

IoT DDOS Architecture Passwords

LastPass: Password Manager Review for 2021

eSecurity Planet

JULY 23, 2021

in 2015, it became part of a suite of cloud-based collaboration tools. In 2015, LastPass admins detected another instance of suspicious activity , which led to a more serious security breach. Those issues have created an opening for competitors who claim to have an impenetrable security architecture. LastPass pricing.

Password Management

Password Management Passwords Authentication Architecture

'Downfall' Vulnerability Unveiled as New Security Risk in Intel CPUs

SecureWorld News

AUGUST 8, 2023

Understanding the Downfall vulnerability The Downfall vulnerability centers around an architectural feature found in Intel's CPUs, specifically in the x86 architecture. This architecture relies on a technique known as the "gather" instruction to speed up memory access and processing.

Risk

Risk Architecture Data breaches Encryption

GreyEnergy: Welcome to 2019

Security Affairs

JANUARY 16, 2019

This kind of threat, previously analyzed by third party firms, contains similarities with the infamous BlackEnergy malware, used in the attacks against the Ukrainian energy industry back in 2015. The entire malware architecture is modular and very difficult to neutralize. Background – Past Research. and “KdfrJKN”. Pierluigi Paganini.

Architecture

Architecture Malware InfoSec Advertising

Steelcase office furniture giant hit by Ryuk ransomware attack

Security Affairs

OCTOBER 28, 2020

Steelcase is a US-based furniture company that produces office furniture, architectural and technology products for office environments and the education, health care and retail industries. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. It is the largest office furniture manufacturer in the world.

Ransomware

Ransomware Computers and Electronics Manufacturing Advertising

Samba addresses the CVE-2020-1472 Zerologon Vulnerability

Security Affairs

SEPTEMBER 23, 2020

The Netlogon service is an Authentication Mechanism used in the Windows Client Authentication Architecture which verifies logon requests, and it registers, authenticates, and locates Domain Controllers. “An Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Vendors supporting Samba 4.7 Pierluigi Paganini.

Authentication

Authentication Advertising Architecture Hacking

CVE-2019-0090 flaw affects Intel Chips released in the last 5 years

Security Affairs

MARCH 7, 2020

Like all security architectures, Intel’s had a weakness: the boot ROM, in this case. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. “Unfortunately, no security system is perfect. ” The CVE-2019-0090 vulnerability affects Intel CSME versions 11. x, SPS_E3_05.00.04.027.0.

Firmware

Firmware Technology Advertising Authentication

Orange Business Services hit by Nefilim ransomware operators

Security Affairs

JULY 17, 2020

“The leaked documents related to ATR seem to include multiple aircraft architecture designs, email conversations, transfer of responsibility documents, and much more.” Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. ” reads the post published by Cyble. Pierluigi Paganini.

Business Services

Business Services Ransomware Mobile Telecommunications

Threat actors are actively exploiting Zerologon flaw, Microsoft warns

Security Affairs

OCTOBER 30, 2020

The Netlogon service is an Authentication Mechanism used in the Windows Client Authentication Architecture which verifies logon requests, and it registers, authenticates, and locates Domain Controllers. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Authentication

Authentication Advertising Architecture Cybercrime

Torii botnet, probably the most sophisticated IoT botnet of ever

Security Affairs

SEPTEMBER 29, 2018

According to experts from Avast, the Torii bot has been active since at least December 2017, it could targets a broad range of architectures, including ARM, MIPS, x86, x64, PowerPC, and SuperH. The Torii IoT botnet stands out for the largest sets of architectures it is able to target. ” reads the analysis published by Avast.

IoT

IoT Architecture Advertising DDOS

Companies paid $4.2M bug bounties for XSS flaws in 2020

Security Affairs

OCTOBER 31, 2020

In the third place there are SSRF (Server Side Request Forgery) flaws, experts pointed out that the advent of cloud architecture and unprotected metadata endpoints has rendered these vulnerabilities increasingly critical. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. million / €33.4 million / ¥273.7

Accountability

Accountability Advertising Architecture Hacking

Kali Linux is now available for Raspberry Pi 4

Security Affairs

JULY 10, 2019

.” Linux Kali distro for the Raspberry Pi 4 also supports an onboard Wi-Fi monitor mode and frame injection support, but it is only available for 32-bit architecture. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Offensive security plans to release a 64-bit version in the near future.

Advertising

Advertising Architecture Hacking Information Security

Maastricht University finally paid a 30 bitcoin ransom to crooks

Security Affairs

FEBRUARY 9, 2020

During the investigation, traces were found that show that the attacker collected data regarding the topology of the network, usernames, and passwords of multiple accounts, and other network architecture information,” reads the report. ” ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Ransomware

Ransomware Cyber Attacks Backups Architecture

Dark Nexus, a new IoT botnet that targets a broad range of devices

Security Affairs

APRIL 8, 2020

“For example, payloads are compiled for 12 different CPU architectures and dynamically delivered based on the victim’s configuration.” The experts discovered at customized payloads for at least 12 different CPU architectures. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

IoT

IoT DDOS Architecture Advertising

DOGE as a National Cyberattack

Experts warn of a surge in activity associated FICORA and Kaiten botnets

Trending Sources

AI Appreciation Day Recognizes Positive Contributions

How Real Is the Threat of Adversarial AI to Cybersecurity?

Fortinet vs Palo Alto NGFWs 2025: Comparison Guide

Feedify cloud service architecture compromised by MageCart crime gang

NIST’s Post-Quantum Cryptography Standards

Evaluating the NSA's Telephony Metadata Program

ENISA publishes a Threat Landscape for 5G Networks

Diavol Ransomware Appears to Have Connections with TrickBot

GUEST ESSAY: Pentagon’s security flaws highlighted in GAO audit — and recent data breach

Hackers targeted ICS/SCADA systems at water facilities, Israeli government warns

AMD is going to patch UEFI SMM callout privilege escalation flaw

2021 Threat Intelligence Use Cases

US Government is asking allies to ban Huawei equipment

New HEH botnet wipes devices potentially bricking them

Experts spotted a new Mirai variant that targets new processors

Second-ever UEFI rootkit used in North Korea-themed attacks

Aerial Direct, the O2’s largest UK partner suffered a data breach

Enemybot, a new DDoS botnet appears in the threat landscape

VMware addressed flaws in its Workstation and Tools

Crooks leverage Zoom’s popularity in Coronavirus outbreak to serve malware

Hackers for hire group target organizations via 3ds Max exploit

AMD admits hacker stole source code files related to its GPUs

Hackers are using Zerologon exploits in attacks in the wild

US officials claim Huawei Equipment has secret backdoor for spying

Multiple threat actors are targeting Elasticsearch Clusters

Kaspersky links GreyEnergy and Zebrocy activities

Massive increase in XorDDoS Linux malware in last six months

Unknown FinSpy Mac and Linux versions found in Egypt

Mozi Botnet is responsible for most of the IoT Traffic

LastPass: Password Manager Review for 2021

'Downfall' Vulnerability Unveiled as New Security Risk in Intel CPUs

GreyEnergy: Welcome to 2019

Steelcase office furniture giant hit by Ryuk ransomware attack

Samba addresses the CVE-2020-1472 Zerologon Vulnerability

CVE-2019-0090 flaw affects Intel Chips released in the last 5 years

Orange Business Services hit by Nefilim ransomware operators

Threat actors are actively exploiting Zerologon flaw, Microsoft warns

Torii botnet, probably the most sophisticated IoT botnet of ever

Companies paid $4.2M bug bounties for XSS flaws in 2020

Kali Linux is now available for Raspberry Pi 4

Maastricht University finally paid a 30 bitcoin ransom to crooks

Dark Nexus, a new IoT botnet that targets a broad range of devices

Stay Connected