Security Affairs

FEBRUARY 3, 2022

” xPack allowed threat actors to run WMI commands remotely and mount shares over SMB to transfer data from C2 servers to them. The malware was also used by the attackers to browse the web, likely using it as a proxy to mask their IP address. In some cases threat actors staged stolen data for further exfiltration.

Manufacturing 90

Manufacturing Malware Data collection Encryption 90

Security Affairs

SEPTEMBER 18, 2020

Ransomware , the headliner of the previous half-year, walked off stage: only 1 percent of emails analyzed by Group-IB’s Computer Emergency Response Team (CERT-GIB) contained this kind of malware. They are followed by banking Trojans , whose share in the total amount of malicious attachments showed growth for the first time in a while.

Phishing 103

Phishing Ransomware Spyware Banking 103

Security Affairs

OCTOBER 30, 2019

The news is shocking, the Kudankulam Nuclear Power Plant (KNPP) that initially denied a malware infection, now admits the security breach. Some users are claiming on the social media that a piece of the ‘DTrack’ malware has infected the systems at the KKNPP. The NPCIL also added that the two networks were isolated.

Malware 48

Malware Cyber Attacks Advertising Data collection 48

Security Affairs

DECEMBER 30, 2020

T-Mobile discovered that the attackers had access to the CPNI (Customer Proprietary Network Information). Customer proprietary network information (CPNI) is the data collected by telecommunications companies about a consumer’s telephone calls.

Data breaches 135

Data breaches Mobile Telecommunications Wireless 135

Security Affairs

NOVEMBER 3, 2020

Aleksandr Brovko is accused to have used his programming skills to create a botnet that facilitated the large-scale theft and use of stolen personal and financial information. In some cases, the man manually chacked the stolen information. Brovko was involved in the illegal practice between 2007 and 2019.

Accountability 103

Accountability Banking Advertising Data collection 103

Security Affairs

FEBRUARY 6, 2020

based specification for a suite of high-level communication protocols used to create personal area networks with small, low-power digital radios, such as for home automation, medical device data collection, and other low-power low-bandwidth needs, designed for small scale projects which need wireless connection.

Hacking 120

Hacking IoT Wireless Firmware 120

SiteLock

AUGUST 27, 2021

This tricks the database into allowing an attacker unauthorized access to the sensitive data collected on your website. In the “ SiteLock 2019 Website Security Report ,” we found that 6% of the 6 million websites we evaluated had SQLi vulnerabilities.

Backups 98

Backups Encryption Firewall Small Business 98

Security Affairs

APRIL 14, 2021

FireEye published its M-Trend 2021 report based on the data collected during the investigation, 650 new threat groups were tracked in 2020. FireEye published its annual report, titled M-Trend 2021, which is based on the data collected during the investigation on security incidents it managed. “Just 3.4%

Data collection 62

Data collection Malware Hacking Ransomware 62

Security Affairs

AUGUST 14, 2020

The Threat Report Portugal: Q2 2020 compiles data collected on the malicious campaigns that occurred from April to Jun, Q2, of 2020. The Portuguese Abuse Open Feed 0xSI_f33d is an open sharing database with the ability to collect indicators from multiple sources, developed and maintained by Segurança-Informática.

Threat Reports 130

Threat Reports Phishing Banking Malware 130

Security Affairs

JANUARY 26, 2021

Threat Report Portugal Q4 2020: Data related to Phishing and malware attacks based on the Portuguese Abuse Open Feed 0xSI_f33d. The Portuguese Abuse Open Feed 0xSI_f33d is an open sharing database with the ability to collect indicators from multiple sources, developed and maintained by Segurança-Informática. Malware by Numbers.

Threat Reports 114

Threat Reports Phishing Malware Banking 114

Security Affairs

APRIL 20, 2020

Threat Report Portugal Q1 2020: Phishing and malware by numbers. The Portuguese Abuse Open Feed 0xSI_f33d is a novel open sharing database with the ability to collect indicators from multiple sources, developed by Segurança-Informática. The campaigns were classified as either phishing or malware. Phishing and Malware Q1 2020.

Threat Reports 98

Threat Reports Phishing Banking Malware 98

Security Affairs

NOVEMBER 28, 2020

Experts from threat intelligence firm KELA , speculate the threat actor could have obtained the credentials buying “Azor logs,” which are lots of data stolen from computers infected with the AzorUlt info-stealer trojan.

Accountability 106

Accountability Cybercrime Hacking Retail 106

Security Affairs

APRIL 5, 2021

Cybersecurity firm Kaspersky has published the Industrial Control System Threat Landscape report for H2 2020 which is based on statistical data collected by the distributed antivirus Kaspersky Security Network (KSN). . The same percentage was 7% in 2019, and H1 2020 compared to H2 2019. than in 2019).

Cyber Attacks 75

Cyber Attacks Ransomware Engineering Data collection 75

Security Affairs

AUGUST 2, 2019

Security experts at Proofpoint uncovered a phishing campaign targeting US companies in the utility sector aimed at infecting systems with a new LookBack RAT. “Between July 19 and July 25, 2019, several spear-phishing emails were identified?targeting The RAT is written in C++ and relies on a proxy to relay data? except for?the

Phishing 79

Phishing Malware Advertising Engineering 79

Security Affairs

NOVEMBER 6, 2020

Threat Report Portugal Q3 2020: Data related to Phishing and malware attacks based on the Portuguese Abuse Open Feed 0xSI_f33d. The Portuguese Abuse Open Feed 0xSI_f33d is an open sharing database with the ability to collect indicators from multiple sources, developed and maintained by Segurança-Informática. Malware by Numbers.

Threat Reports 84

Threat Reports Phishing Malware Banking 84

Security Affairs

JULY 21, 2019

SAP Patch Day – July 2019 addresses a critical flaw in Diagnostics Agent. CVE-2019-6342 flaw allows hackers to fully compromise Drupal 8.7.4 Israel surveillance firm NSO group can mine data from major social media. Poland and Lithuania fear that data collected via FaceApp could be misused. Paper Copy.

Small Business 56

Small Business Media Spyware DNS 56

Cisco Security

AUGUST 29, 2022

First, a little history of how Cisco came to be the Official Network Provider of Black Hat USA 2022 , after we were already successfully serving as the Official Mobile Device Management, Malware Analysis and Domain Name Service Provider. It also provides a neat heatmap generated from this data.

Engineering 72

Engineering Wireless Malware DNS 72

eSecurity Planet

AUGUST 15, 2022

Long-term search capabilities for slower threats spanning historical data. Access to 350+ cloud connectors for data collection and API-based cloud integrations. With acquisitions like Endgame in 2019, Elastic Security continues to extend its automated threat protection, incident response, and continuous monitoring capabilities.

Software 113

Software Small Business Marketing Firewall 113

Security Affairs

JULY 15, 2020

” President Trump extended the powers granted to the CIA, which was involved in is offensive cyber operations along with surveillance and data collection activities. The Presidential directive, driven by the National Security Council and crafted by the CIA, focuses on the possibility to carry out covert actions in cyberspace.

Banking 104

Banking Hacking Advertising Media 104