Security Affairs

OCTOBER 15, 2020

A series of messages published on Barnes & Noble’s Nook social media accounts state that it had suffered a system failure and is working to restore operations by restoring their server backups. We are continuing to experience a systems failure that is interrupting NOOK content. 1/2 — NOOK (@nookBN) October 14, 2020. (2/2)

Cyber Attacks 109

Cyber Attacks VPN Backups Ransomware 109

eSecurity Planet

MARCH 25, 2022

For the generation of remote work and operations, Check Point Remote Access VPN offers central management and policy administration for controlling access to corporate networks. The Remote Access VPN enables more robust security with the encryption of transmitted data, system compliance scanning, and multi-factor authentication.

VPN 117

VPN Software Authentication Encryption 117

Malwarebytes

MAY 11, 2021

It has been around since 2019 and in June of 2020 it got some real traction due to a malspam campaign. According to the FBI, Avaddon ransomware actors have compromised victims through remote access login credentials—such as Remote Desktop Protocol ( RDP ) and Virtual Private Networks ( VPN ). Avaddon ransomware. Additional threats.

Ransomware 107

Ransomware VPN Encryption Cybercrime 107

SC Magazine

FEBRUARY 11, 2021

That represents a fourfold increase in the number of ransomware-related vulnerabilities discovered in their last report published in 2019. The vast majority of flaws (96%) used in ransomware attacks are years old, having been publicly identified prior to 2019. Ransomware families are growing and becoming more complex as well.

Ransomware 139

Ransomware Digital transformation Media Software 139

Security Affairs

JULY 31, 2019

The list of flaws includes OS Command Injection, Unrestricted Upload of File with Dangerous Type, Cross-site Request Forgery, Small Space of Random Values, Cross-site Scripting, Exposure of Backup file to Unauthorized Control Sphere, Improper Authentication, and Use of Hard-coded Credentials. “Prima Systems FlexAir, Versions 2.3.38

Backups 56

Backups Authentication Advertising Firmware 56

Hot for Security

MARCH 29, 2021

In February 2019, cybersecurity researchers stumbled upon an unsecured public-facing database that exposed over 800 million email addresses and associated personally identifiable information (PII), including names, gender, dates of birth, phone numbers, IP addresses, job titles and employers. In short, Verifications.io

Data breaches 116

Data breaches Media Marketing Social Engineering 116

Security Affairs

APRIL 2, 2021

The threat actors are actively exploiting the following vulnerabilities in Fortinet FortiOS: CVE-2018-13379 ; CVE-2020-12812 ; CVE-2019-5591. The joint alert also states that attackers scanning also enumerated devices for the CVE-2020-12812 and CVE-2019-5591 flaws. Implement network segmentation.

Passwords 65

Passwords Government Firmware Accountability 65

Security Affairs

JUNE 29, 2020

Between December 2019 and until February 2020, the experts observed a number of attacks between 70,000 and 40,000 on a daily basis. Install a virtual private network ( VPN ) gateway to broker all RDP connections from outside your local network. The situation changed from February, when the number reached 80,000.

Passwords 123

Passwords Internet Internet Advertising 123

Security Affairs

SEPTEMBER 1, 2019

Bad Packets warns of over 14,500 Pulse secure VPN endpoints vulnerable to CVE-2019-11510. Apple released an emergency patch to address CVE-2019-8605 iOS flaw. Ransomware attack hits DDS Safe backup service used by hundreds of dental offices. Experts uncovered a hacking campaign targeting several WordPress Plugins.

eCommerce 47

eCommerce Data breaches Malware Advertising 47

Fox IT

JANUARY 12, 2021

NCC Group and Fox-IT observed this threat actor during various incident response engagements performed between October 2019 until April 2020. After obtaining a valid account, they use this account to access the victim’s VPN, Citrix or another remote service that allows access to the network of the victim.

VPN 68

VPN Accountability Passwords DNS 68

SecureList

JUNE 15, 2022

Request for access to corporate VPN. I sell VPN accounts of USA companies, revenue is 1kkk$. Access type: VPN. Access type: VPN. Sale] VPN-RDP accounts for network access. Access type: VPN-RDP. Revenue: 8kk+$ (information is current as of 2019). Access type: VPN-RDP. Access type: VPN-RDP.

VPN 97

VPN Accountability Ransomware Encryption 97

Malwarebytes

MARCH 10, 2022

Observed since: September 2019 Ransomware note: Restore-My-Files.txt Ransomware extension: lockbit Kill Chain: Brute force attack on a web server containing an outdated VPN service > LockBit Sample hash: 9feed0c7fa8c1d32390e1c168051267df61f11b048ec62aa5b8e66f60e8083af. LockBit 2.0. Mitigations. Source: IC3.gov.

Ransomware 73

Ransomware Phishing Accountability Technology 73

Security Affairs

FEBRUARY 15, 2019

The removed apps are Fast-search Lite, Battery Optimizer (Tutorials), VPN Browsers+, Downloader for YouTube Videos, Clean Master+ (Tutorials), FastTube, Findoo Browser 2019, and Findoo Mobile & Desktop Search. Make frequent backups of important data. Pay close attention to CPU and memory usage of your computer or device.

Advertising 89

Advertising VPN Backups Cryptocurrency 89

IT Security Guru

OCTOBER 3, 2022

Very few people outside of the tech community had heard of SolarWinds before late 2019 when cyber criminals gained access to the SolarWinds’ network. In December 2019, the Travelex foreign exchange company was targeted by the REvil ransomware group. SolarWinds. Travelex reportedly paid around $2.3M

Encryption 60

Encryption Cyber Attacks Data breaches Ransomware 60

Thales Cloud Protection & Licensing

APRIL 14, 2020

For example, many companies that require VPN access to monitor all access from employee devices have enabled split tunneling in order to alleviate the data traffic bottleneck on their perimeter security devices. A 2019 survey of full time workers in the U.S.

Architecture 79

Architecture Encryption VPN Backups 79

IT Security Guru

JANUARY 6, 2021

Suddenly this high performance environment is only accessible at the mercy of the VPN bandwidth or the whelping pen pains of the VDI farm. Our unprecedented circumstances force more and more of us to see the benefits of Cloud adoption, and we may be witnessing this hybridisation sooner than we thought at the end of 2019.

Backups 52

Backups Marketing Mobile VPN 52

Herjavec Group

AUGUST 23, 2021

LockBit ransomware was initially discovered in September 2019. lafand wbadmin to delete any backups . Perform frequent backups and recovery tasks based on system criticality (daily, weekly, or monthly), and keep backups offline and encrypted. vssadmin to delete shadow copies. bcdedit to disable recovery. References.

Ransomware 52

Ransomware Encryption Manufacturing Backups 52

eSecurity Planet

MAY 28, 2021

Prevent Rely solely on offline backups Disallow unnecessary file sharing. Whether it’s a VPN , firewall , or remote access server, unauthorized entry via network gateways is a problem. Initial access methods for gateways dominate the Dark Web market, with 45% using traditional initial access like RDP , VPN, and RCE.

Software 116

Software Firmware DNS VPN 116

eSecurity Planet

JANUARY 5, 2024

For example, Microsoft recommends using disk encryption to encrypt data at rest, separate database encryption, and encrypted VPN gateways for data transmission. Each later hardens the environment and further resists unauthorized decryption attempts.

Encryption 120

Encryption Wireless Passwords Education 120

Malwarebytes

MAY 28, 2021

The first is Ransom.Sodinokibi , which Malwarebytes has already profiled and has been detecting since 2019.). Below is a list of recommended mitigations from the FBI, which it issued along with an alert on Conti ransomware late last week: Regularly back up data, air gap, and password protect backup copies offline.

Healthcare 110

Healthcare Ransomware Encryption Passwords 110

eSecurity Planet

JUNE 4, 2021

Patch management has been one of those essential security features – much like backup – that typically doesn’t get the attention it deserves. No need for complex infrastructure or VPN requirements. Value Proposition: IBM sold BigFix to HCL in 2019. Automated continuous patching of OS and third-party applications.

Software 87

Software Antivirus Risk Backups 87

SecureList

MAY 25, 2021

JSWorm ransomware was discovered in 2019 and since then different variants have gained notoriety under various names such as Nemty , Nefilim , Offwhite and several others. From its creation in 2019 until the first half of 2020, JSWorm was offered as a public RaaS and was observed propagating via: RIG exploit kit. May 2019: JSWorm.

Ransomware 106

Ransomware Encryption Malware Energy and Utilities 106

eSecurity Planet

OCTOBER 27, 2021

Virtual private network ( VPN ). in 2019 and posting an A last year while topping Bitdefender in total points, 647 to 600. We’d also note that ransomware in particular requires unique data backup and recovery tools and services. Protection against sophisticated malware and zero-day attacks. A network firewall.

Antivirus 98

Antivirus Software Malware Marketing 98

McAfee

SEPTEMBER 14, 2021

At the start of the malware, it populates the list with the system’s DNS, and the OpenDNS server is only used as a backup to ensure that the C2 domain is resolved. The source IP addresses discovered belonged to two different ISP/VPN providers based in Hong-Kong. Operation 2019/2020. malware: Mozilla/5.0 Windows NT 6.3;

Malware 144

Malware DNS Accountability Manufacturing 144

SecureList

MAY 12, 2021

Hackers who are on the lookout for publicly disclosed vulnerabilities (1-days) in internet facing software, such as VPN appliances or email gateways. Since 2019, this ransomware has been advertised on underground forums and has a strong reputation as a RaaS operator. Set up offline backups that intruders cannot tamper with.

Ransomware 129

Ransomware Encryption Malware Cybercrime 129