Security Affairs

FEBRUARY 3, 2022

” xPack allowed threat actors to run WMI commands remotely and mount shares over SMB to transfer data from C2 servers to them. The malware was also used by the attackers to browse the web, likely using it as a proxy to mask their IP address. In some cases threat actors staged stolen data for further exfiltration. .

Manufacturing 90

Manufacturing Malware Data collection Encryption 90

Security Affairs

MAY 27, 2020

The updated Grandoreiro Malware equipped with latenbot-C2 features in Q2 2020 now extended to Portuguese banks. This piece of malware includes improvements in the way it is operating. The Grandoreiro malware has been distributed via malscan campaigns around the globe during Q2 2020. Technical Analysis. 100:51224/$rdgate?

Malware 67

Malware Banking Advertising Data collection 67

Security Affairs

DECEMBER 30, 2020

Customer proprietary network information (CPNI) is the data collected by telecommunications companies about a consumer’s telephone calls. In November 2019, the US branch of the telecommunications giant disclosed a security breach that impacted a small number of customers of its prepaid service. Pierluigi Paganini.

Data breaches 134

Data breaches Mobile Telecommunications Wireless 134

Thales Cloud Protection & Licensing

FEBRUARY 16, 2021

Mirai, Jeep Hack, etc.) There are three major threat vectors that harm IoT deployments: Devices are hijacked by malicious software; Data collected and processed in IoT ecosystems is tampered with and impacts the confidentiality, integrity and availability of the information; and, Weak user and device authentication.

IoT 96

IoT Manufacturing Energy and Utilities Data collection 96

Security Affairs

NOVEMBER 3, 2020

The scripts developed by the cyber criminal were used to parse log data collected from botnet and searched for personally identifiable information (PII) and account credentials. Brovko was involved in the illegal practice between 2007 and 2019. SecurityAffairs – hacking, Aleksandr Brovko). Pierluigi Paganini.

Accountability 102

Accountability Banking Advertising Data collection 102

Security Affairs

OCTOBER 30, 2019

The news is shocking, the Kudankulam Nuclear Power Plant (KNPP) that initially denied a malware infection, now admits the security breach. Some users are claiming on the social media that a piece of the ‘DTrack’ malware has infected the systems at the KKNPP. The NPCIL also added that the two networks were isolated.

Malware 48

Malware Cyber Attacks Advertising Data collection 48

Security Affairs

SEPTEMBER 18, 2020

Ransomware , the headliner of the previous half-year, walked off stage: only 1 percent of emails analyzed by Group-IB’s Computer Emergency Response Team (CERT-GIB) contained this kind of malware. They are followed by banking Trojans , whose share in the total amount of malicious attachments showed growth for the first time in a while.

Phishing 103

Phishing Ransomware Spyware Banking 103

Security Affairs

NOVEMBER 19, 2019

Ransomware accounted for over half of all malicious mailings in H1 2019, Troldesh aka Shade being the most popular tool among cybercriminals. The first half of 2019 saw a 10-fold increase in the number of password-protected objects, such as documents and archive files, being used to deliver malware. rar archive files.

Ransomware 70

Ransomware Antivirus Malware Banking 70

SecureList

SEPTEMBER 28, 2022

Prilex is a Brazilian threat actor that has evolved out of ATM-focused malware into modular point-of-sale malware. Active since 2014, in 2016, the group decided to give up ATM malware and focus all of their attacks on PoS systems, targeting the core of the payment industry. Evolving into PoS malware.

Malware 112

Malware Banking Software Encryption 112

Krebs on Security

JULY 18, 2022

re network uses at least two free VPN services to lure its users to install a malware-like software that achieves persistence on the user’s computer,” the researchers wrote. The Exe Clean service made malware look like goodware to antivirus products. su between 2016 and 2019. “The 911[.]re

VPN 312

VPN Computers and Electronics Antivirus Software 312

Krebs on Security

MAY 2, 2023

The leaked records indicate the network’s chief technology officer in Pakistan has been hacked for the past year, and that the entire operation was created by the principals of a Tennessee-based telemarketing firm that has promoted USPS employment websites since 2016. .” “I loved Russ deeply and he was like family.

Marketing 273

Marketing Advertising Scams Telecommunications 273

Security Affairs

MARCH 14, 2019

The malicious code was detected in early March 2019. In the course of further research it was revealed that GMO JS Sniffer has presumably been collecting customer payment data since November 2018. We dubbed this JS Sniffer family GMO because the malware uses gmo[.]li According to Alexa.com, the number of fila.co [.]uk

eCommerce 86

eCommerce Marketing Data breaches Advertising 86

Security Affairs

APRIL 14, 2021

FireEye published its M-Trend 2021 report based on the data collected during the investigation, 650 new threat groups were tracked in 2020. FireEye published its annual report, titled M-Trend 2021, which is based on the data collected during the investigation on security incidents it managed. “Just 3.4%

Data collection 62

Data collection Malware Hacking Ransomware 62

Security Affairs

NOVEMBER 28, 2020

Experts from threat intelligence firm KELA , speculate the threat actor could have obtained the credentials buying “Azor logs,” which are lots of data stolen from computers infected with the AzorUlt info-stealer trojan. SecurityAffairs – hacking, executive). Pierluigi Paganini.

Accountability 105

Accountability Cybercrime Hacking Retail 105

Security Affairs

AUGUST 14, 2020

The Threat Report Portugal: Q2 2020 compiles data collected on the malicious campaigns that occurred from April to Jun, Q2, of 2020. The Portuguese Abuse Open Feed 0xSI_f33d is an open sharing database with the ability to collect indicators from multiple sources, developed and maintained by Segurança-Informática.

Threat Reports 129

Threat Reports Phishing Banking Malware 129

Krebs on Security

DECEMBER 29, 2022

This bold about-face dumbfounded many longtime Norton users because antivirus firms had spent years broadly classifying all cryptomining programs as malware. It emerges that email marketing giant Mailchimp got hacked. Super Bowl Sunday watchers are treated to no fewer than a half-dozen commercials for cryptocurrency investing.

Cryptocurrency 238

Cryptocurrency Cybercrime Computers and Electronics Scams 238

Security Affairs

APRIL 5, 2021

Cybersecurity firm Kaspersky has published the Industrial Control System Threat Landscape report for H2 2020 which is based on statistical data collected by the distributed antivirus Kaspersky Security Network (KSN). . The same percentage was 7% in 2019, and H1 2020 compared to H2 2019. than in 2019).

Cyber Attacks 74

Cyber Attacks Ransomware Engineering Data collection 74

Security Affairs

JANUARY 26, 2021

Threat Report Portugal Q4 2020: Data related to Phishing and malware attacks based on the Portuguese Abuse Open Feed 0xSI_f33d. The Portuguese Abuse Open Feed 0xSI_f33d is an open sharing database with the ability to collect indicators from multiple sources, developed and maintained by Segurança-Informática. Malware by Numbers.

Threat Reports 113

Threat Reports Phishing Malware Banking 113

Security Affairs

APRIL 20, 2020

Threat Report Portugal Q1 2020: Phishing and malware by numbers. The Portuguese Abuse Open Feed 0xSI_f33d is a novel open sharing database with the ability to collect indicators from multiple sources, developed by Segurança-Informática. The campaigns were classified as either phishing or malware. Phishing and Malware Q1 2020.

Threat Reports 97

Threat Reports Phishing Banking Malware 97

Security Affairs

AUGUST 2, 2019

“Between July 19 and July 25, 2019, several spear-phishing emails were identified?targeting The LookBack malware is composed of a remote access Trojan (RAT) module and a proxy mechanism used for command and control (C&C) communication.? The RAT is written in C++ and relies on a proxy to relay data? The malware sets up?a?Registry?Run

Phishing 79

Phishing Malware Advertising Engineering 79

Security Affairs

NOVEMBER 6, 2020

Threat Report Portugal Q3 2020: Data related to Phishing and malware attacks based on the Portuguese Abuse Open Feed 0xSI_f33d. The Portuguese Abuse Open Feed 0xSI_f33d is an open sharing database with the ability to collect indicators from multiple sources, developed and maintained by Segurança-Informática. Malware by Numbers.

Threat Reports 83

Threat Reports Phishing Malware Banking 83

SecureList

JUNE 20, 2022

Such ‘objects’, as referred to here, point to things such as malware and hijacked servers, which, when put together and ‘manipulated’, inform the technical attribution process. within network activity logs collected by the Internet Service Provider (ISP), etc.). Tool-based attribution (i.e.,

Energy and Utilities 92

Energy and Utilities Data collection Malware Cybersecurity 92

Krebs on Security

JANUARY 11, 2022

But in more recent years, Wazawaka has focused on peddling access to organizations and to databases stolen from hacked companies. In March 2019, Wazawaka explained a lengthy absence on Exploit by saying he’d fathered a child. “Come, rob, and get dough!,” “Show them who is boss.” ” WHO IS WAZAWAKA?

DDOS 271

DDOS Accountability Cybercrime Ransomware 271

Security Affairs

JULY 21, 2019

SAP Patch Day – July 2019 addresses a critical flaw in Diagnostics Agent. CVE-2019-6342 flaw allows hackers to fully compromise Drupal 8.7.4 Israel surveillance firm NSO group can mine data from major social media. Poland and Lithuania fear that data collected via FaceApp could be misused. Paper Copy.

Small Business 55

Small Business Media Spyware DNS 55

eSecurity Planet

JUNE 4, 2021

The organizations hacked hadn’t gotten around to deploying the patches. Integrates with a variety of vulnerability scanners to collect data for IT resources both on-premises and in the cloud. Value Proposition: IBM sold BigFix to HCL in 2019. Yet patches have existed for months, or even years in some cases.

Software 88

Software Antivirus Risk Backups 88

Security Affairs

JULY 15, 2020

CIA orchestrated dozens of hacking operations against targets worldwide, including APT34 and FSB hacks, states an exclusive report from Yahoo News. ” President Trump extended the powers granted to the CIA, which was involved in is offensive cyber operations along with surveillance and data collection activities.

Banking 102

Banking Hacking Advertising Media 102