2017, Cyber Attacks, Information Security and Malware

Unprecedented cyber attack hit State Infrastructure of Montenegro

Security Affairs

AUGUST 27, 2022

The state Infrastructure of Montenegro was hit by a massive and “unprecedented” cyber attack, authorities announced. An unprecedented cyber attack hit the Government digital infrastructure in Montenegro, the government has timely adopted measures to mitigate its impact. Embassy in the capital Podgorica.

Cyber Attacks

Cyber Attacks Government Telecommunications Malware

Merck settles with insurers regarding a $1.4 billion claim over NotPetya damages

Security Affairs

JANUARY 6, 2024

billion claim arising from the NotPetya malware incident. billion insurance claim for the losses caused by the NotPetya attack that took place in 2017. In August 2017, the pharmaceutical company revealed that the massive NotPetya cyberattack disrupted its worldwide operations. Merck & Co., Merck filed a $1.4

Insurance

Insurance Manufacturing Ransomware Healthcare

Wannacry, the hybrid malware that brought the world to its knees

Security Affairs

OCTOBER 31, 2022

Reflecting on the Wannacry ransomware attack, which is the lesson learnt e why most organizations are still ignoring it. In the second phase, once access was gained to a computer, the malware would create and execute a copy of itself on the system.In The infection chain. What should we learn from this?

Malware

Malware Computers and Electronics Encryption Ransomware

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Australian ACSC ‘s report confirms the use of Chinese malware in recent attacks

Security Affairs

JUNE 28, 2020

Warning Australians of “specific risks” and an increased frequency of attacks, the Australian government is working on “specific risks” related to a significant increase in the number of targeted cyber attacks against sensitive institutions and organizations in almost any industry, Morrison told an organised press conference.

Malware

Malware Advertising Government Cyber Attacks

Purple Lambert, a new malware of CIA-linked Lambert APT group

Security Affairs

APRIL 29, 2021

Cybersecurity firm Kaspersky discovered a new strain of malware that is believed to be part of the arsenal of theUS Central Intelligence Agency (CIA). Cybersecurity firm Kaspersky has discovered a new malware that experts attribute to the US Central Intelligence Agency. We therefore named this malware Purple Lambert.”

Malware

Malware Hacking Government Telecommunications

New MATA Multi-platform malware framework linked to NK Lazarus APT

Security Affairs

JULY 23, 2020

North Korea-linked Lazarus APT Group has used a new multi-platform malware framework, dubbed MATA, to target entities worldwide. The MATA malware framework could target Windows, Linux, and macOS operating systems. The malware framework implements a wide range of features that allow attackers to fully control the infected systems.

Malware

Malware Ransomware Advertising Encryption

Ukraine intelligence doxed 5 FSB Officers that are members of Gamaredon APT Group

Security Affairs

NOVEMBER 5, 2021

This ‘line of work’ is coordinated by the FSB’s 18th Center (Information Security Center) based in Moscow.” The group relied on both legitimate, publicly available software products and custom malware, such as the Pterodo/Pteranodon backdoor. “The SSU Cyber ?? ” reads the report published by the SSU.

Government

Government Software Cyber threats Cyber Attacks

Two hacker groups are back in the news, LockBit 3.0 Black and BlackCat/AlphV

Security Affairs

OCTOBER 3, 2023

Like all ransomware, this is a type of malware that, once introduced into an organization, encrypts the data and then requires the victim to pay a ransom in order to decrypt it. Black attack analyzed by TG Soft ‘s CRAM researchers, showed that access by cyber criminals was via exposed RDP. Black The LockBit 3.0

Ransomware

Ransomware Encryption Technology Backups

Czech intelligence report warns of Russian and Chinese activity in the country

Security Affairs

NOVEMBER 26, 2019

According to a report published by the NUKIB Czech National Cyber and Information Security Agency (NUKIB) in September, China carried out a major cyber attack on a key government institution in the Czech Republic last year. The Czech experts discovered the security breach in early January 2017.

Cyber Attacks

Cyber Attacks Advertising Information Security Government

FBI is helping Montenegro in investigating the ongoing cyberattack

Security Affairs

SEPTEMBER 1, 2022

A team of cybersecurity experts from the FBI is heading to Montenegro to help local authorities in investigating the recent massive cyber attack that hit the government infrastructure last week. A persistent and ongoing cyber-attack is in process in Montenegro,” reported the website of the U.S.

Government

Government Cyber Attacks Telecommunications Malware

Russia-linked Sandworm continues to conduct attacks against Ukraine

Security Affairs

MAY 21, 2022

Security experts from ESET reported that the Russia-linked cyberespionage group Sandworm continues to launch cyber attacks against entities in Ukraine. The group is also the author of the NotPetya ransomware that hit hundreds of companies worldwide in June 2017, causing billions worth of damage.

Malware

Malware Government Cyber Attacks Hacking

Nissan Oceania data breach impacted roughly 100,000 people

Security Affairs

MARCH 14, 2024

The ransomware attack that hit the systems of Nissan Oceania in December 2023 impacted roughly 100,000 individuals. Nissan Oceania, the regional division of the multinational carmaker, announced in December 2023 that it had suffered a cyber attack and launched an investigation into the incident.

Data breaches

Data breaches Identity Theft Financial Services Cybercrime

Millions of devices could be hacked exploiting flaws targeted by tools stolen from FireEye

Security Affairs

DECEMBER 24, 2020

Millions of devices are potential exposed to attacks targeting the vulnerabilities exploited by the tools stolen from the arsenal of FireEye. Security experts from Qualys are warning that more than 7.5 As a result of the recent SolarWinds supply chain attack, multiple organizations were compromised, including FireEye.

Hacking

Hacking Cyber Attacks Passwords Software

U.S. Charges Russia GRU Intelligence Officers for notorious attacks, including NotPetya

Security Affairs

OCTOBER 20, 2020

According to the indictment, the GRU officers were involved in attacks on Ukraine, including the attacks aimed at the country’s power grid in 2015 and 2016 that employed the BlackEnergy and Industroyer malware. Pavel Valeryevich Frolov · Developed components of the KillDisk and NotPetya malware.

Identity Theft

Identity Theft Malware Hacking Advertising

OT attacks increased by over 2000 percent in 2019, IBM reports

Security Affairs

FEBRUARY 11, 2020

According to IBM, OT attacks increased by over 2000 percent in 2019, most of them involved the Echobot IoT malware. IBM’s 2020 X-Force Threat Intelligence Index report analyzes the threat landscape in 2019, the experts observed a spike in the number of OT attacks. “ OT attacks hit an all-time high.

Advertising

Advertising Malware IoT Technology

US gov agencies e private firms warn nation-state actors are targeting ICS & SCADA devices

Security Affairs

APRIL 14, 2022

According to the advisory that was issued with the help of leading cybersecurity firms (Dragos, Mandiant, Microsoft, Palo Alto Networks, and Schneider Electric), nation-state hacking groups were able to hack multiple industrial systems using a new ICS-focused malware toolkit dubbed PIPEDREAM that was discovered in early 2022.

Passwords

Passwords Architecture Backups Cyber Attacks

NASA Audit: Cyber Risk Skyrockets with 'Work from Home'

SecureWorld News

MAY 27, 2021

A new security audit reveals that cyber bad actors hit the National Aeronautics and Space Administration (NASA) with more than 6,000 attacks during the last four years. And the audit found that attackers did successfully introduce malware into agency systems.

Cyber Risk

Cyber Risk Risk Architecture Cyber threats

NSA/CISA joint report warns on attacks on critical industrial systems

Security Affairs

JULY 26, 2020

NSA is warning of cyber attacks launched by foreign threat actors against organizations in the critical infrastructure sector across the U.S. National Security Agency (NSA) and the Cybersecurity and Infrastructure Security Agency (CISA) issued an alert warning of cyber attacks targeting critical infrastructure across the U.S.

Cyber Attacks

Cyber Attacks Internet Internet Advertising

Norway ‘s Parliament, Stortinget, discloses a security breach

Security Affairs

SEPTEMBER 1, 2020

Norway’s parliament announced Tuesday that it was the target of a major cyber-attack that allowed hackers to access emails and data of a small number of parliamentary representatives and employees. “The parliament has recently been targetted in a vast cyber attack,” reads a statement from Norway’s parliament.

Healthcare

Healthcare Cyber Attacks Advertising Phishing

The British government aims at improving its offensive cyber capability

Security Affairs

OCTOBER 13, 2020

Intelligence experts pointed out that the British government already conducted offensive hacking operations, including the one that targeted the ISIS in 2017. ” reported The Guardian.

Government

Government Advertising Hacking Cyber Attacks

US agencies offer $2M in reward for Ukrainian hackers that breached the SEC

Security Affairs

JULY 22, 2020

The two hackers are Viacheslavovich Radchenko and Oleksandr Vitalyevich Ieremenko, US authorities aim at receiving information that could lead to their arrest. In the second half of 2017, the United States Securities and Exchange Commission (SEC) disclosed it was the victim of a cyber-attack in 2016.

Advertising

Advertising Hacking Government Cyber Attacks

EU has imposed sanctions on foreign actors for the first time ever

Security Affairs

JULY 31, 2020

For the first-ever time, the EU has imposed economical sanctions on Russia, China, and North Korea following cyber-attacks aimed at the EU and its member states. “The Council today decided to impose restrictive measures against six individuals and three entities responsible for or involved in various cyber-attacks.

Cyber Attacks

Cyber Attacks Hacking Advertising Government

Centreon says that recently disclosed campaigns only targeted obsolete versions of its open-source software

Security Affairs

FEBRUARY 17, 2021

The French security agency ANSSI recently warned of a series of attacks targeting Centreon monitoring software used by multiple French organizations and attributes them to the Russia-linked Sandworm APT group. The first attack spotted by ANSSI experts dates back to the end of 2017 and the campaign continued until 2020.

Software

Software Hacking Cyber Attacks Internet

The US Treasury placed sanctions on North Korea linked APT Groups

Security Affairs

SEPTEMBER 13, 2019

The groups are behind several hacking operations that resulted in the theft of hundreds of millions of dollars from financial institutions and cryptocurrency exchanges worldwide and destructive cyber-attacks on infrastructure. Lazarus Group is also considered the threat actors behind the 2018 massive WannaCry attack.

Cyber Attacks

Cyber Attacks Cryptocurrency Hacking Banking

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

The Last Watchdog

JUNE 21, 2020

Balaban This ransomware was doing the rounds over spam generated by the Gameover ZeuS botnet, which had been originally launched in 2011 as a toolkit for stealing victim’s banking credentials and was repurposed for malware propagation. WannaCry and NotPetya cyber-attacks have since been attributed to state-funded threat actors.

Ransomware

Ransomware Hacking Encryption Penetration Testing

Russia-linked Sandworm APT uses WinRAR in destructive attacks on Ukraine’s public sector

Security Affairs

MAY 4, 2023

The group is also the author of the NotPetya ransomware that hit hundreds of companies worldwide in June 2017. In 2022, the Russian APT used multiple wipers in attacks aimed at Ukraine, including AwfulShred , CaddyWiper , HermeticWiper , Industroyer2 , IsaacWiper , WhisperGate , Prestige , RansomBoggs , and ZeroWipe. .

VPN

VPN Education Accountability Cyber Attacks

Frankenstein campaign: threat actors put together open-source tools for highly-targeted attacks

Security Affairs

JUNE 8, 2019

Attackers behind the Frankenstein campaign carried out several malware-based attacks between January and April 2019. Talos researchers discovered a low volume of documents in various malware repositories. ” Researchers at Talos team believe the attackers are moderately sophisticated but highly resourceful.

Malware

Malware Advertising Encryption Cyber Attacks

Playing Cat and Mouse: Three Techniques Abused to Avoid Detection

Security Affairs

MAY 23, 2019

During our analysis we constantly run into the tricks cyber-attackers use to bypass companies security defences, sometimes advanced, others not. Many times, despite their elegance (or lack of it), these techniques are effective and actually help the cyber criminals to get into victim computers and penetrate company networks.

Antivirus

Antivirus Malware Advertising Cyber Attacks

Microsoft Patch Tuesday addresses dangerous RDS flaw that opens to WannaCry-like attacks

Security Affairs

MAY 15, 2019

The vulnerability tracked as CVE-2019-0863 could be exploited by an attacker with low-privileged access to the targeted system to deliver a malware. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. .” The thought is for the WannaCry attack.

Malware

Malware Authentication Advertising Accountability

North Korea-linked ScarCruft APT adds Bluetooth Harvester to its arsenal

Security Affairs

MAY 14, 2019

ScarCruft has been active since at least 2012, it made the headlines in early February 2018 when researchers revealed that the APT group leveraged a zero-day vulnerability in Adobe Flash Player to deliver malware to South Korean users. This malware is responsible for stealing Bluetooth device information.”

Malware

Malware Advertising Government Manufacturing

Gulf countries came under hackers’ spotlight in 2018, with more than 130 000 payment cards compromised

Security Affairs

APRIL 8, 2019

This data comes not only from the analysis of underground forums and phishing websites, but also from the analysis of cybercriminals’ infrastructure (including but not limited to C&Cs) and malware disassembling. According to Group-IB’s annual Hi-Tech Crime Trends 2018 report, on average, from June 2017 to August 2018, the details of 1.8

Artificial Intelligence

Artificial Intelligence Government Banking Advertising

Frankenstein campaign: threat actors put together open-source tools for highly-targeted attacks

Security Affairs

JUNE 8, 2019

Attackers behind the Frankenstein campaign carried out several malware-based attacks between January and April 2019. Talos researchers discovered a low volume of documents in various malware repositories. ” Researchers at Talos team believe the attackers are moderately sophisticated but highly resourceful.

Malware

Malware Advertising Encryption Cyber Attacks

PoC Exploits for CVE-2019-0708 wormable Windows flaw released online

Security Affairs

MAY 23, 2019

As explained by Microsoft, this vulnerability could be exploited by malware with wormable capabilities, it could be exploited without user interaction, making it possible for malware to spread in an uncontrolled way into the target networks. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Advertising

Advertising Malware Authentication Risk

The number of cyber attacks on Saudi Aramco is increasing

Security Affairs

FEBRUARY 9, 2020

Saudi Aramco, the Saudi Arabian national p etroleum and natural gas company, revealed that it has seen an increase in attempted cyber attacks since the Q4 2019. The energy industry is under attack, Saudi Aramco announced it has seen an increase in attempted cyber attacks since the final quarter of 2019.

Cyber Attacks

Cyber Attacks Malware Advertising Information Security

US DoJ wants the funds stored by North Korea in 280 BTC and ETH

Security Affairs

AUGUST 30, 2020

The groups are behind several hacking operations that resulted in the theft of hundreds of millions of dollars from financial institutions and cryptocurrency exchanges worldwide and destructive cyber-attacks on infrastructure. Lazarus Group is also considered the threat actors behind the 2018 massive WannaCry attack.

Cryptocurrency

Cryptocurrency Hacking Advertising Accountability

Security Affairs newsletter Round 261

Security Affairs

APRIL 26, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Spyware

Spyware Hacking Advertising Antivirus

US DoJ charges three members of the North Korea-linked Lazarus APT group

Security Affairs

FEBRUARY 17, 2021

Justice Department indicted three North Korean military intelligence officials, members of the Lazarus APT group, for their involvement in cyber-attacks, including the theft of $1.3 Cyber-Enabled ATM Cash-Out Thefts : Thefts through ATM cash-out schemes – referred to by the U.S.

Cryptocurrency

Cryptocurrency Banking Hacking Ransomware

T-Mobile customers were hit with SIM swapping attacks

Security Affairs

FEBRUARY 27, 2021

In 2017, hackers stole some personal information belonging to T-Mobile customers by exploiting a well-known vulnerability. Exploiting the vulnerability attackers were able to access certain customers’ data, including email addresses, billing account numbers, and the phone’s IMSI numbers.

Mobile

Mobile Telecommunications Data breaches Identity Theft

Security Affairs newsletter Round 218 – News of the week

Security Affairs

JUNE 15, 2019

Millions of Exim mail servers vulnerable to cyber attacks. Microsoft warns of spam campaign exploiting CVE-2017-11882 flaw. Facebook is going to stop Huawei pre-installing apps on mobile devices. CIA sextortion campaign, analysis of a well-organized scam. Retro video game website Emuparadise suffered a data breach.

DDOS

DDOS Hacking Scams Data breaches

Group-IB: More than 70% of Russian banks are not ready for cyberattacks

Security Affairs

FEBRUARY 19, 2019

Group-IB , an international company that specializes in preventing cyberattacks , has conducted high-tech cybercrimes research based on an analysis of responses to information security incidents carried out by Group-IB Incident Response team in 2018. How cyber attacks in Russia impact banks in Europe?

Banking

Banking Marketing Cybercrime Information Security

GUEST ESSAY: The story behind how DataTribe is helping to seed ‘Cybersecurity Valley’ in Maryland

The Last Watchdog

JUNE 4, 2019

Maryland was one of the very first states to recognize the importance of information security, not only as a critical issue for the nation, but also as a strategic industry for the state,” said Governor Larry Hogan. According to the U.S. This made it the nation’s eighth-largest technology hub.

Cybersecurity

Cybersecurity Computers and Electronics Technology Marketing

Cyber Security Awareness and Risk Management

Spinone

DECEMBER 26, 2018

Today, c yber security incidents lead to significant damage, alarming organizations of all types and sizes in different geographic locations. Social engineering attacks , including phishing, spam, and viruses introduced via clickable links within e-mail affected 80% of the banking institutions in 2016.

Security Awareness

Security Awareness Risk Cyber threats Cyber Risk

Top 5 Cybersecurity and Computer Threats of 2017

NopSec

FEBRUARY 9, 2017

The year 2016 will be remembered for some big moments in the world of cybersecurity: the largest known distributed denial of service (DDoS) attack, a phishing attack on a United States presidential candidate’s campaign, and ransomware attacks on major healthcare organizations are just a few. Malware linked to the U.S.

Cybersecurity

Cybersecurity DDOS IoT Social Engineering

The Most Common Types of Malware in 2021

CyberSecurity Insiders

JANUARY 31, 2021

Regardless of how familiar you are with Information Security, you’ve probably come across the term ‘malware’ countless times. From accessing your business-critical resources and sensitive information to halting business operations and services, a malware infection can quickly become an organization’s worst nightmare come true.

Malware

Malware Computers and Electronics Adware Spyware

Unprecedented cyber attack hit State Infrastructure of Montenegro

Merck settles with insurers regarding a $1.4 billion claim over NotPetya damages

Webinars

Trending Sources

Wannacry, the hybrid malware that brought the world to its knees

Webinars

Australian ACSC ‘s report confirms the use of Chinese malware in recent attacks

Purple Lambert, a new malware of CIA-linked Lambert APT group

New MATA Multi-platform malware framework linked to NK Lazarus APT

Ukraine intelligence doxed 5 FSB Officers that are members of Gamaredon APT Group

Two hacker groups are back in the news, LockBit 3.0 Black and BlackCat/AlphV

Czech intelligence report warns of Russian and Chinese activity in the country

FBI is helping Montenegro in investigating the ongoing cyberattack

Russia-linked Sandworm continues to conduct attacks against Ukraine

Nissan Oceania data breach impacted roughly 100,000 people

Millions of devices could be hacked exploiting flaws targeted by tools stolen from FireEye

U.S. Charges Russia GRU Intelligence Officers for notorious attacks, including NotPetya

OT attacks increased by over 2000 percent in 2019, IBM reports

US gov agencies e private firms warn nation-state actors are targeting ICS & SCADA devices

NASA Audit: Cyber Risk Skyrockets with 'Work from Home'

NSA/CISA joint report warns on attacks on critical industrial systems

Norway ‘s Parliament, Stortinget, discloses a security breach

The British government aims at improving its offensive cyber capability

US agencies offer $2M in reward for Ukrainian hackers that breached the SEC

EU has imposed sanctions on foreign actors for the first time ever

Centreon says that recently disclosed campaigns only targeted obsolete versions of its open-source software

The US Treasury placed sanctions on North Korea linked APT Groups

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

Russia-linked Sandworm APT uses WinRAR in destructive attacks on Ukraine’s public sector

Frankenstein campaign: threat actors put together open-source tools for highly-targeted attacks

Playing Cat and Mouse: Three Techniques Abused to Avoid Detection

Microsoft Patch Tuesday addresses dangerous RDS flaw that opens to WannaCry-like attacks

North Korea-linked ScarCruft APT adds Bluetooth Harvester to its arsenal

Gulf countries came under hackers’ spotlight in 2018, with more than 130 000 payment cards compromised

Frankenstein campaign: threat actors put together open-source tools for highly-targeted attacks

PoC Exploits for CVE-2019-0708 wormable Windows flaw released online

The number of cyber attacks on Saudi Aramco is increasing

US DoJ wants the funds stored by North Korea in 280 BTC and ETH

Security Affairs newsletter Round 261

US DoJ charges three members of the North Korea-linked Lazarus APT group

T-Mobile customers were hit with SIM swapping attacks

Security Affairs newsletter Round 218 – News of the week

Group-IB: More than 70% of Russian banks are not ready for cyberattacks

GUEST ESSAY: The story behind how DataTribe is helping to seed ‘Cybersecurity Valley’ in Maryland

Cyber Security Awareness and Risk Management

Top 5 Cybersecurity and Computer Threats of 2017

The Most Common Types of Malware in 2021

Stay Connected