2015, Encryption, Hacking and Information Security

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

The Last Watchdog

JUNE 21, 2020

Although most people think of ransomware as a dodgy application that encrypts data and holds it for ransom, the concept is much more heterogeneous than that. File encryption 2013 – 2015. It emerged in September 2013 and paved the way for hundreds of file-encrypting menaces that have splashed onto the scene ever since.

Ransomware

Ransomware Hacking Encryption Penetration Testing

Zoom now supports end-to-end encrypted (E2EE) calls

Security Affairs

OCTOBER 15, 2020

The Video conferencing platform Zoom announced the implementation of end-to-end encryption (E2EE) and its availability starting next week. The popular Video conferencing platform Zoom announced the availability of the end-to-end encryption (E2EE) starting next week. SecurityAffairs – hacking, Zoom). Pierluigi Paganini.

Encryption

Encryption Advertising Accountability Hacking

Author Q&A: In modern cyberwarfare ‘information security’ is one in the same with ‘national security’

The Last Watchdog

AUGUST 16, 2021

Meanwhile, nation-states — the superpowers and second-tier nations alike — are hotly pursuing strategic advantage by stealing intellectual property, hacking into industrial controls, and dispersing political propaganda at an unheard-of scale. Keep info moving around in the Cloud – and keep it strongly encrypted.

Information Security

Information Security Government Artificial Intelligence Encryption

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

German encrypted email service Tutanota suffers DDoS attacks

Security Affairs

SEPTEMBER 19, 2020

The popular encrypted email service Tutanota was hit with a series of DDoS attacks this week targeting its website fist and its DNS providers later. Encrypted email service, Tutanota suffered a series of DDoS attacks that initially targeted the website and later its DNS providers. SecurityAffairs – hacking, Tutanota).

DDOS

DDOS Encryption DNS Advertising

REvil ransomware gang hacked gaming firm Gaming Partners International

Security Affairs

OCTOBER 31, 2020

The REvil ransomware operators made the headlines again, this time the gang claims to have hacked the Gaming Partners International (GPI). The REvil ransomware gang (aka Sodinokibi) claims to have stolen info from the systems at the company before encrypting them. SecurityAffairs – hacking, Gaming Partners International (GPI)).

Hacking

Hacking Ransomware Advertising Encryption

Some Fortinet products used hardcoded keys and weak encryption for communications

Security Affairs

NOVEMBER 26, 2019

Researchers at SEC Consult Vulnerability Lab discovered multiple issues in several security products from Fortinet, including hardcoded key and encryption for communications. “The messages are encrypted using XOR “encryption” with a static key.” SecurityAffairs – Fortinet, hacking). Pierluigi Paganini.

Encryption

Encryption Antivirus DNS Advertising

GravityRAT returns disguised as an end-to-end encrypted chat app

Security Affairs

NOVEMBER 13, 2021

Threat actors are distributing the GravityRAT remote access trojan masqueraded as an end-to-end encrypted chat application named SoSafe Chat. Threat actors are distributing the GravityRAT RAT masqueraded as an end-to-end encrypted chat application named SoSafe Chat. SecurityAffairs – hacking, GravityRAT). Pierluigi Paganini.

Encryption

Encryption Malware Media Authentication

Asian media firm E27 hacked, attackers asked for a “donation”

Security Affairs

JUNE 28, 2020

Asian media firm E27 suffered a security breach and hackers asked for a “donation” to provide information on the flaws they exploited in the attack. If you use the legacy email and password login, your passwords are encrypted, but we highly encourage that you change it. SecurityAffairs – hacking, E27).

Media

Media Hacking Passwords Data breaches

Let’s Encrypt CA is revoking over 3 Million TLS certificates due to a bug

Security Affairs

MARCH 4, 2020

Let’s Encrypt is going to revoke over 3 million certificates today due to a flaw in the software used to verify users and their domains before issuing a certificate. A bug in Let’s Encrypt’s certificate authority (CA) software, dubbed Boulder, caused the correct validation for some certificates. Pierluigi Paganini.

Encryption

Encryption Advertising DNS Software

Five Eyes nations plus India and Japan call for encryption backdoor once again

Security Affairs

OCTOBER 13, 2020

Members of the Five Eyes intelligence alliance once again call for tech firms to engineer backdoors into end-to-end and device encryption. The statements reinforce the importance of the encryption in protecting data, privacy, and IP, but highlights the risks of abusing it for criminal and terrorist purposes. Pierluigi Paganini.

Encryption

Encryption Data privacy Advertising Technology

5 Ways artificial intelligence Is Being Used to Keep Sensitive Information Secure

Security Affairs

FEBRUARY 19, 2020

With this technique, the system runs with as much efficiency as possible without sacrificing security, especially since there are measures in place at all times. Encryption. When information is moving from one source to another, it’s particularly susceptible to attacks and theft. Password Protection & Authentication.

Artificial Intelligence

Artificial Intelligence Information Security Passwords Encryption

Ragnar Ransomware encrypts files from virtual machines to evade detection

Security Affairs

MAY 25, 2020

Ransomware encrypts from virtual machines to evade antivirus. Ragnar Locker deploys Windows XP virtual machines to encrypt victim’s files, the trick allows to evaded detection from security software. Mounting all the shared drives to encrypt. SecurityAffairs – Ragnar Locker ransomware, hacking).

Encryption

Encryption Ransomware Energy and Utilities Advertising

Popular Webkinz World online children’s game hacked, 23M credentials leaked

Security Affairs

APRIL 19, 2020

A hacker has leaked the usernames and passwords of nearly 23 million players of Webkinz World on a well-known hacking forum. . “ZDNet has learned that details about the vulnerability have been circulating online before today’s leak for months, both on hacking forums and on online IM chat groups.” Pierluigi Paganini.

Hacking

Hacking Passwords Data breaches Advertising

The forum of the popular Albion Online game was hacked

Security Affairs

OCTOBER 19, 2020

On top of that, the attacker gained access to encrypted passwords (in technical terms: hashed and salted passwords).” ” The moderator of the forum pointed out that the intruder did not access to payment information. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Hacking

Hacking Data breaches Passwords Advertising

3.4 Million user records from LiveAuctioneers hack available for sale

Security Affairs

JULY 14, 2020

.” According to the company, attackers accessed personal details of the users, including names, email addresses, mailing addresses, phone numbers, and also encrypted passwords. The company confirmed that the an investigation into the hack is still ongoing. SecurityAffairs – hacking, LiveAuctioneers ). Pierluigi Paganini.

Hacking

Hacking Data breaches Identity Theft Advertising

Kr00k Wi-Fi Encryption flaw affects more than a billion devices

Security Affairs

FEBRUARY 26, 2020

A high-severity hardware vulnerability, dubbed Kr00k , in Wi-Fi chips manufactured by Broadcom and Cypress expose over a billion devices to hack. This serious flaw, assigned CVE-2019-15126, causes vulnerable devices to use an all-zero encryption key to encrypt part of the user’s communication.” ” continues ESET.

Encryption

Encryption Wireless Manufacturing Advertising

Russia-linked Turla APT hacked European government organization

Security Affairs

OCTOBER 29, 2020

Russia-linked APT Turla has hacked into the systems of an undisclosed European government organization according to Accenture. According to a report published by Accenture Cyber Threat Intelligence (ACTI), Russia-linked cyber-espionage group Turla has hacked into the systems of an undisclosed European government organization.

Government

Government Hacking Advertising Encryption

Ryuk Ransomware evolution avoid encrypting Linux folders

Security Affairs

DECEMBER 26, 2019

Experts spotted a new strain of the Ryuk Ransomware that was developed to avoid encrypting folders commonly seen in *NIX operating systems. Kremez noticed that the ransomware doesn’t encrypt folders that are associated with *NIX operating systems. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Encryption

Encryption Ransomware Malware Advertising

Chinese Tropic Trooper APT spreads a hacking tool laced with a backdoor

Security Affairs

JUNE 23, 2022

The Tropic Trooper APT has been active at least since 2012, it was first spotted by security experts at Trend Micro in 2015, when the threat actors targeted government ministries and heavy industries in Taiwan and the military in the Philippines. The collected information is formatted and sent to the C&C server.

Hacking

Hacking Wireless Encryption Passwords

Sonicwall warns of a spike in the number of attacks involving encrypted malware and IoT malware

Security Affairs

JULY 29, 2019

According to experts at Sonicwall, scanning of random ports and the diffusion of encrypted malware are characterizing the threat landscape. Most of the attacks targeted non-standard ports and experts observed a spike in the number of encrypted malware. million encrypted malware attacks, +27% over the previous year. .”

IoT

IoT Encryption Malware Advertising

Russian govn blocked Tutanota service in Russia to stop encrypted communication

Security Affairs

FEBRUARY 17, 2020

Tutanota , the popular free and open-source end-to-end encrypted email software, has been blocked by Russian authorities. The popular free and open-source end-to-end encrypted email service Tutanota has been blocked in Russia on Friday evening. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Encryption

Encryption VPN Government Internet

Source code of Dharma ransomware now surfacing on public hacking forums

Security Affairs

MARCH 29, 2020

The source code of the infamous Dharma ransomware is now available for sale on two Russian-language hacking forums. The source code of one of the most profitable ransomware families, the Dharma ransomware , is up for sale on two Russian-language hacking forums. ” concluded ZDNet. Pierluigi Paganini.

Ransomware

Ransomware Hacking Advertising Malware

Two hacker groups are back in the news, LockBit 3.0 Black and BlackCat/AlphV

Security Affairs

OCTOBER 3, 2023

Like all ransomware, this is a type of malware that, once introduced into an organization, encrypts the data and then requires the victim to pay a ransom in order to decrypt it. Encrypted file structure ransomware BlackCat / ALPHV: [ORIGINAL_FILENAME].[ORIGINAL_extension].specific/different Black The LockBit 3.0 ORIGINAL_extension].specific/different

Ransomware

Ransomware Encryption Technology Backups

Developer hacked back Muhstik ransomware crew and released keys

Security Affairs

OCTOBER 8, 2019

One of the victims of the Muhstik ransomware gang who initially paid the ransomware, decided to hack back the crooks and released their decryption keys. The expert hacked the server used by the Muhstik ransomware gang and released the decryption keys for all the victims of the group. SecurityAffairs – Muhstik ransomware, hacking).

Hacking

Hacking Ransomware Advertising Passwords

DRAGONBLOOD flaws allow hacking WPA3 protected WiFi passwords

Security Affairs

AUGUST 3, 2019

Dragonblood researchers found two new weaknesses in WPA3 protocol that could be exploited to hack WPA3 protected WiFi passwords. A group of researchers known as Dragonblood (Mathy Vanhoef and Eyal Ronen ) devised new methods to hack WPA3 protected WiFi passwords by exploiting two new vulnerabilities dubbed Dragonblood flaws.

Passwords

Passwords Hacking Wireless Authentication

Chinese Military personnel charged with hacking into credit reporting agency Equifax

Security Affairs

FEBRUARY 10, 2020

The United States Department of Justice charged 4 Chinese military hackers with hacking into credit reporting agency Equifax. The United States Department of Justice officially charged 4 members of the China’s PLA’s 54th Research Institute, a division of the Chinese military, with hacking into credit reporting agency Equifax.

Hacking

Hacking Data breaches Advertising Encryption

Fortinet VPN with default certificate exposes 200,000 businesses to hack

Security Affairs

SEPTEMBER 25, 2020

According to SAM Seamless Network , over 200,000 businesses are using Fortigate VPN with default settings, exposing them to the risk of a hack. The configuration of the VPN solutions is important to keep organizations secure and to avoid dangerous surprises. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

VPN

VPN Hacking IoT Advertising

Apple Mail stores parts of encrypted emails in plaintext DB

Security Affairs

NOVEMBER 10, 2019

The Apple Mail app available on macOS stores leave s a portion of users encrypted emails in plaintext in a database called snippets. The Apple expert Bob Gendler discovered that the Apple Mail app available on macOS stores leaves a portion of users encrypted emails in plaintext in a database called snippets. ” continues the post.

Encryption

Encryption Advertising Data collection Hacking

Experts developed a free decryptor for the Lorenz ransomware

Security Affairs

JUNE 29, 2021

Like other ransomware gangs, Lorenz operators also implement double-extortion model by stealing data before encrypting it and threatening them if the victim doesn’t pay the ransom. Lorenz sends the name of the infected system to a C2 before encrypting the file. Lorenz places a header before the encrypted file instead.

Ransomware

Ransomware Encryption Passwords Malware

DeathRansom ransomware evolves encrypting files, but experts identified its author

Security Affairs

JANUARY 5, 2020

DeathRansom was considered fake ransomware due to the fact that it did not implement an effective encryption process, but now things are changing. DeathRansom is a ransomware family that was initially classified as a joke because it did not implement an effective encryption scheme. Pierluigi Paganini.

Encryption

Encryption Ransomware Malware Scams

Tyler Technologies finally paid the ransom to receive the decryption key

Security Affairs

OCTOBER 11, 2020

Tyler Technologies has finally decided to paid a ransom to obtain a decryption key and recover files encrypted in a recent ransomware attack. According to BleepingComputer, which cited a source informed on the event, Tyler Technologies paid a ransom of an unspecified amount to receive the decryption key and recover encrypted files.

Technology

Technology Ransomware Encryption Advertising

University of Utah pays a $457,000 ransom to ransomware gang

Security Affairs

AUGUST 21, 2020

The university notified appropriate law enforcement entities, and the university’s Information Security Office (ISO) investigated and resolved the incident in consultation with an external firm that specializes in responding to ransomware attacks.” Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Ransomware

Ransomware Cyber Insurance Insurance Advertising

5 Ways to Protect Yourself from IP Address Hacking

Security Affairs

AUGUST 20, 2019

Your IP address represents your digital identity online, hacking it not only allows attackers to access your device or your accounts, but it may cause even bigger damage. Cybercriminals are interested in hacking your IP address for various reasons. The hacked and stolen IPs are often used for carrying out illegal activities.

Hacking

Hacking VPN Internet Internet

Hacking campaign is wiping Iomega NAS Devices exposed online

Security Affairs

JULY 30, 2019

txt and state that the user’s files have been encrypted and moved to a safe location.” YOUR FILES HAVE BEEN ENCRYPTED AND MOVED TO A SAFE LOCATION. QNAP published a security advisory to explain to its users how to secure their NAS devices. ” reported BleepingComputer. IF YOU NEED THEM BACK PLEASE SEND 0.01

Hacking

Hacking Advertising Encryption Software

Jeff Bezos phone was hacked by Saudi crown prince

Security Affairs

JANUARY 22, 2020

The phone of the Amazon billionaire Jeff Bezos was hacked in 2018 after receiving a WhatsApp message from the personal account of the crown prince of Saudi Arabia. Gavin de Becker explained that the hack wa s linked to the coverage by The Washington Post newspaper, that is owned by Bezos, of the murder of Saudi journalist Jamal Khashoggi.

Hacking

Hacking Mobile Media Advertising

Google TAG warns that Russian COLDRIVER APT is using a custom backdoor

Security Affairs

JANUARY 18, 2024

The ColdRiver APT (aka “ Seaborgium “, “Callisto”, “Star Blizzard”, “TA446”) is a Russian cyberespionage group that has been targeting government officials, military personnel, journalists and think tanks since at least 2015. When the victims opens the PDF, an encrypted text is displayed. ” concludes the report.

Phishing

Phishing Malware Encryption Accountability

Crooks hit Puerto Rico Firefighting Department Servers

Security Affairs

OCTOBER 15, 2020

The department received an email from the threat actors that notifies it that they had encrypted its servers and demanded the payment of a ransom to release them. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. SecurityAffairs – hacking, Puerto Rico’s firefighting department). Pierluigi Paganini.

Advertising

Advertising Encryption Hacking Information Security

Texas attackers demand $2.5 million to allow towns to access encrypted data

Security Affairs

AUGUST 22, 2019

million to allow victims to access encrypted data. million to allow victims to access encrypted data. The attacks started in the morning of August 16 and security experts investigating the incidents believe that it was a coordinated attack carried out by a single cyber crime gang. Pierluigi Paganini.

Encryption

Encryption Ransomware Government Advertising

Emsisoft releases a second decryptor in a few days, this time for ZeroFucks ransomware

Security Affairs

JULY 21, 2019

ZeroFucks ransomware encrypts files with AES-256 and replaces the extension in the filename with “. When the ransomware encrypts files the following GUI is displayed to the victims, crooks demand a €400 ransom worth of Bitcoins. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. zerofucks ” (i.e.

Ransomware

Ransomware Encryption Advertising Malware

Mount Locker ransomware operators demand multi-million dollar ransoms

Security Affairs

SEPTEMBER 28, 2020

A new ransomware gang named Mount Locker has started its operations stealing victims’ data before encrypting. According to the popular malware researchers Michael Gillespie , the Mount Locker uses ChaCha20 to encrypt the files and an embedded RSA-2048 public key to encrypt the encryption key. Pierluigi Paganini.

Ransomware

Ransomware Encryption Advertising Engineering

USBAnywhere BMC flaws expose Supermicro servers to hack

Security Affairs

SEPTEMBER 3, 2019

When accessed remotely, the virtual media service allows plaintext authentication, sends most traffic unencrypted, uses a weak encryption algorithm for the rest, and is susceptible to an authentication bypass. “ ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Hacking

Hacking Firmware Media Authentication

Maze ransomware uses Ragnar Locker virtual machine technique

Security Affairs

SEPTEMBER 17, 2020

The Maze ransomware operators now use a virtual machine to encrypt a computer, a tactic previously adopted by the Ragnar Locker malware. The Maze ransomware operators have adopted a new tactic to evade detection, their malware now encrypts a computer from within a virtual machine. SecurityAffairs – hacking, Maze ransomware).

Ransomware

Ransomware Encryption Advertising Malware

Unknown FinSpy Mac and Linux versions found in Egypt

Security Affairs

SEPTEMBER 27, 2020

The new versions of FinSpy spyware were used by a new unknown hacking group, Amnesty International speculates the involvement of a nation-state actor that employed them since September 2019. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. SecurityAffairs – hacking, FinSpy). Pierluigi Paganini.

Spyware

Spyware Surveillance Mobile Advertising

Maze Ransomware operators claim to have stolen millions of credit cards from Banco BCR

Security Affairs

MAY 1, 2020

Maze Ransomware operators claim to have hacked the network of the state-owned Bank of Costa Rica Banco BCR and to have stolen internal data, including 11 million credit card credentials. Please vote Security Affairs for European Cybersecurity Blogger Awards – VOTE FOR YOUR WINNERS [link]. SecurityAffairs – Banco BCR, hacking).

Ransomware

Ransomware Banking Cyber Insurance Advertising

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

Zoom now supports end-to-end encrypted (E2EE) calls

Webinars

Trending Sources

Author Q&A: In modern cyberwarfare ‘information security’ is one in the same with ‘national security’

Webinars

German encrypted email service Tutanota suffers DDoS attacks

REvil ransomware gang hacked gaming firm Gaming Partners International

Some Fortinet products used hardcoded keys and weak encryption for communications

GravityRAT returns disguised as an end-to-end encrypted chat app

Asian media firm E27 hacked, attackers asked for a “donation”

Let’s Encrypt CA is revoking over 3 Million TLS certificates due to a bug

Five Eyes nations plus India and Japan call for encryption backdoor once again

5 Ways artificial intelligence Is Being Used to Keep Sensitive Information Secure

Ragnar Ransomware encrypts files from virtual machines to evade detection

Popular Webkinz World online children’s game hacked, 23M credentials leaked

The forum of the popular Albion Online game was hacked

3.4 Million user records from LiveAuctioneers hack available for sale

Kr00k Wi-Fi Encryption flaw affects more than a billion devices

Russia-linked Turla APT hacked European government organization

Ryuk Ransomware evolution avoid encrypting Linux folders

Chinese Tropic Trooper APT spreads a hacking tool laced with a backdoor

Sonicwall warns of a spike in the number of attacks involving encrypted malware and IoT malware

Russian govn blocked Tutanota service in Russia to stop encrypted communication

Source code of Dharma ransomware now surfacing on public hacking forums

Two hacker groups are back in the news, LockBit 3.0 Black and BlackCat/AlphV

Developer hacked back Muhstik ransomware crew and released keys

DRAGONBLOOD flaws allow hacking WPA3 protected WiFi passwords

Chinese Military personnel charged with hacking into credit reporting agency Equifax

Fortinet VPN with default certificate exposes 200,000 businesses to hack

Apple Mail stores parts of encrypted emails in plaintext DB

Experts developed a free decryptor for the Lorenz ransomware

DeathRansom ransomware evolves encrypting files, but experts identified its author

Tyler Technologies finally paid the ransom to receive the decryption key

University of Utah pays a $457,000 ransom to ransomware gang

5 Ways to Protect Yourself from IP Address Hacking

Hacking campaign is wiping Iomega NAS Devices exposed online

Jeff Bezos phone was hacked by Saudi crown prince

Google TAG warns that Russian COLDRIVER APT is using a custom backdoor

Crooks hit Puerto Rico Firefighting Department Servers

Texas attackers demand $2.5 million to allow towns to access encrypted data

Emsisoft releases a second decryptor in a few days, this time for ZeroFucks ransomware

Mount Locker ransomware operators demand multi-million dollar ransoms

USBAnywhere BMC flaws expose Supermicro servers to hack

Maze ransomware uses Ragnar Locker virtual machine technique

Unknown FinSpy Mac and Linux versions found in Egypt

Maze Ransomware operators claim to have stolen millions of credit cards from Banco BCR

Stay Connected