Security Affairs

MARCH 30, 2024

The German Federal Office for Information Security (BSI) warned of thousands of Microsoft Exchange servers in the country vulnerable to critical flaws. “Around 45,000 Microsoft Exchange servers in Germany can currently be accessed from the Internet without restrictions. ” reads the alert published by the BSI.

Information Security 110

Information Security Internet Internet Healthcare 110

Security Affairs

DECEMBER 16, 2019

Another year is ending and this is the right time to discover which are the worst passwords of 2019 by analyzing data leaked in various data breaches. Independent anonymous researchers, compiled and shared with security firm NordPass a list of 200 most popular passwords that were leaked in data breaches during 2019.

Passwords 82

Passwords Data breaches Password Management Advertising 82

Security Affairs

JANUARY 9, 2020

Mozilla has released security updates for Firefox browser that address a zero-day vulnerability (CVE-2019-17026) that has been exploited in targeted attacks. Mozilla has released security updates for Firefox browser that address a zero-day flaw (CVE-2019-17026) that has been exploited in targeted attacks.

Advertising 70

Advertising Engineering Internet Internet 70

Security Affairs

OCTOBER 7, 2019

Patches for Internet Explorer Zero-Day Causing Problems for Many Users. Microsoft released a new set of patches for a zero-day flaw in Internet Explorer recently fixed due to problems reported by users with the previous patch. reads the security advisory published by Microsoft. “To SecurityAffairs – CVE-2019-1367 , hacking).

Internet 66

Internet Internet Engineering Advertising 66

Security Affairs

JUNE 23, 2020

CLOP ransomware operators have allegedly hacked IndiaBulls Group , an Indian conglomerate headquartered in Gurgaon, India. CLOP ransomware operators have allegedly hacked the Indian conglomerate IndiaBulls Group , its primary businesses are housing finance, consumer finance, and wealth management. . Pierluigi Paganini.

Hacking 102

Hacking Ransomware Banking Mobile 102

Security Affairs

SEPTEMBER 1, 2020

Iran-linked APT group Pioneer Kitten is now trying to monetize its efforts by selling access to some of the networks it has hacked to other hackers. Iran-linked APT group Pioneer Kitten, also known as Fox Kitten or Parisite, is now trying to monetize its efforts by selling access to some of the networks it has hacked to other hackers.

Hacking 91

Hacking VPN Advertising Financial Services 91

Security Affairs

SEPTEMBER 6, 2019

A security flaw in Exim mail servers could be exploited by local or remote attackers to execute arbitrary code with root privileges. The Exim development team has addressed a vulnerability in Exim mail server, tracked as CVE-2019-15846, that could be exploited by local and remote attackers to execute arbitrary code with root privileges.

Advertising 84

Advertising Malware Internet Internet 84

Security Affairs

JUNE 15, 2020

” Between 2018 and 2019 the researchers assessed 28 telecom operators in Europe, Asia, Africa, and South America and verifies the presence of the vulnerabilities in the GTP protocol. phone number) of a real subscriber and impersonate him to access the Internet. SecurityAffairs – hacking, 5G). Pierluigi Paganini.

Mobile 109

Mobile Internet Internet Wireless 109

Security Affairs

NOVEMBER 13, 2019

Microsoft’s Patch Tuesday updates for November 2019 address over 70 flaws, including an Internet Explorer issue (CVE-2019-1429) that has been exploited in attacks in the wild. Microsoft doesn’t provide any information on the nature of the active attacks, it only pointed out that they are likely limited at this time.

Internet 67

Internet Internet Engineering Advertising 67

Security Affairs

MARCH 30, 2024

In August 2021, the ShinyHunters group claimed to have a database containing private information on roughly 70 million AT&T customers, but the company denied that they had been stolen from its systems. The company believes that leaked data are from 2019 or earlier. AT&T told CNN. million former account holders.”

Data breaches 134

Data breaches Telecommunications Cybercrime Hacking 134

Security Affairs

JULY 9, 2019

Microsoft Patch Tuesday updates for July 2019 address a total of 77 vulnerabilities, 14 rated as Critical, 62 as Important, and only 1 as Moderate in severity. Microsoft released Patch Tuesday updates for July 2019 that address a total of 77 vulnerabilities, 14 rated as Critical, 62 as Important, and only 1 as Moderate in severity.

Advertising 65

Advertising Internet Internet Hacking 65

Security Affairs

FEBRUARY 11, 2020

According to IBM, OT attacks increased by over 2000 percent in 2019, most of them involved the Echobot IoT malware. IBM’s 2020 X-Force Threat Intelligence Index report analyzes the threat landscape in 2019, the experts observed a spike in the number of OT attacks. “ OT attacks hit an all-time high. ” continues the report.

Advertising 96

Advertising Malware IoT Technology 96

Security Affairs

JANUARY 9, 2020

Threat actors are probing Citrix servers in the attempt to exploit the CVE-2019-19781 remote code execution vulnerability. Security researchers are warning of ongoing scans for Citrix Application Delivery Controller (NetScaler ADC) and Citrix Gateway (NetScaler Gateway) servers affected by the CVE-2019-19781 vulnerabilities.

Technology 62

Technology Advertising Internet Internet 62

Security Affairs

AUGUST 14, 2019

Microsoft Patches Over 90 Vulnerabilities With August 2019 Updates. Microsoft Patch Tuesday security updates for August 2019 address more than 90 flaws, including two new ‘ wormable ‘ issues in Windows Remote Desktop Services. ” reads the security advisory for the CVE-2019-1181.”An

Authentication 83

Authentication Advertising Internet Internet 83

Security Affairs

MARCH 29, 2020

The source code of the infamous Dharma ransomware is now available for sale on two Russian-language hacking forums. The source code of one of the most profitable ransomware families, the Dharma ransomware , is up for sale on two Russian-language hacking forums. The source is offered for a price as low as $2,000, as reported by ZDNet.

Ransomware 109

Ransomware Hacking Advertising Malware 109

Security Affairs

JUNE 12, 2019

Microsoft releases Patch Tuesday security updates for June 2019 that address 88 vulnerabilities in Windows OS and other products. The flaws were disclosed by the researcher SandboxEscaper over the past weeks, below the list of the issue: CVE-2019-0973 CVE-2019-1053 CVE-2019-1064 CVE-2019-1069.

Advertising 65

Advertising Authentication Encryption Internet 65

Security Affairs

NOVEMBER 14, 2019

Security experts at SafeBreach have discovered a vulnerability in McAfee antivirus software tracked as CVE-2019-3648 that could allow an attacker with Administrator privileges to escalate privileges and execute code with SYSTEM privileges. SecurityAffairs – McAfee, hacking). ” reads the analysis published by SafeBreach.

Antivirus 79

Antivirus Advertising Software Internet 79

Security Affairs

APRIL 20, 2021

According to coordinated reports published by FireEye and Pulse Secure , two hacking groups have exploited a new zero-day vulnerability in Pulse Secure VPN equipment to break into the networks of US defense contractors and government organizations worldwide. SecurityAffairs – hacking, China). Pierluigi Paganini.

VPN 116

VPN Hacking Authentication Government 116

Krebs on Security

JANUARY 24, 2023

The plea comes just months after Emelyantsev was extradited from Bulgaria, where he told investigators, “America is looking for me because I have enormous information and they need it.” Denis Kloster, as posted to his Vkontakte page in 2019. “Thanks to you, we are now developing in the field of information security and anonymity!,”

Cybercrime 220

Cybercrime Advertising IoT Malware 220

Security Affairs

APRIL 10, 2024

In August 2021, the ShinyHunters group claimed to have a database containing private information on roughly 70 million AT&T customers, but the company denied that they had been stolen from its systems. The company speculates that leaked data are from 2019 or earlier. AT&T told CNN. ” reads the data breach notification.

Data breaches 101

Data breaches Telecommunications Identity Theft Hacking 101

Krebs on Security

JUNE 22, 2022

last week said they dismantled the “ RSOCKS ” botnet, a collection of millions of hacked devices that were sold as “proxies” to cybercriminals looking for ways to route their malicious traffic through someone else’s computer. A copy of the passport for Denis Kloster, as posted to his Vkontakte page in 2019.

Advertising 267

Advertising Cybercrime System Administration Hacking 267

ForAllSecure

NOVEMBER 3, 2021

His talk was nostalgic, reflecting on the 40+ years of computer hacking. Moss also said that all hacking is not infosec and that all infosec is not hacking. “Hacking can provide a lot of joy and absolutely no income. But hacking, not so much. Where with infosec the goal is to produce income. It’s a job.

Hacking 52

Hacking InfoSec Internet Internet 52

The Last Watchdog

JUNE 21, 2020

The above-mentioned AIDS Trojan hailing from the distant pre-Internet era was the progenitor of the trend, but its real-world impact was close to zero. In many cases, the crooks hack managed service providers (MSPs) first and then use this access to compromise the partnering organizations.

Ransomware 243

Ransomware Hacking Encryption Penetration Testing 243

Security Affairs

NOVEMBER 17, 2020

In May 2019, Microsoft disclosed the BlueKeep vulnerability, more than a year later over 245,000 Windows systems still remain unpatched. Over a year ago Microsoft Patch Tuesday updates for May 2019 addressed nearly 80 vulnerabilities, including the BlueKeep flaw. ” CVE Number of affected systems CVSSv3 CVE-2019-0211 3357835 7.8

Internet 115

Internet Internet Malware Cyber Attacks 115

Security Affairs

SEPTEMBER 21, 2019

The bad side of all of these adventure is, now I have my research materials scattering around all over the internet during these past three years (smile). The post MMD-0063-2019 – Summarize report of three years MalwareMustDie research (Sept 2016-Sept 2019) appeared first on Security Affairs. Pierluigi Paganini.

Malware 80

Malware Advertising Security Awareness Media 80

Security Affairs

MARCH 26, 2024

In May 2018, researchers from security firm Qihoo 360 Netlab reported that cybercriminals that targeted the Dasan GPON routers were using another new zero-day flaw affecting the same routers and recruit them in their botnet. sox,” which is used to proxy traffic from the bot to the internet on behalf of a user.

IoT 124

IoT Cybercrime Internet Internet 124

Security Affairs

FEBRUARY 19, 2024

The Raccoon stealer was first spotted in April 2019, it was designed to steal victims’ credit card data, email credentials, cryptocurrency wallets, and other sensitive data. The Raccoon stealer is written in C++ by Russian-speaking developers who initially promoted it exclusively on Russian-speaking hacking forums.

Identity Theft 94

Identity Theft Cryptocurrency Cybercrime Hacking 94

Security Affairs

SEPTEMBER 4, 2019

Cyber Defense Magazine September 2019 Edition has arrived. SecurityAffairs – Cyber Defense Magazine September 2019, cybersecurity ). The post Cyber Defense Magazine – September 2019 has arrived. appeared first on Security Affairs. We hope you enjoy this month’s edition … packed with over 179 pages of excellent content.

DNS 66

DNS Advertising Firewall Mobile 66

Security Affairs

FEBRUARY 12, 2024

The Justice Department announced the seizure of internet domains used to sell the remote access Trojan Warzone RAT (www.warzone[.]ws). Meli allegedly provided cybercriminals with malware products and services via online hacking forums. The two individuals are charged with selling and supporting the Warzone RAT and other malware.

Malware 100

Malware Hacking Cybercrime Advertising 100

Security Affairs

JUNE 24, 2019

Malware researchers at Cybaze-Yoroi ZLAB observed many attack attempts trying to spread malware abusing the CVE-2019-10149 issue. EW N030619 , CVE-2019-10149 ). Sigurdsson (Security Researcher), which abuses ToR network to distribute its payload, or also the 9th June wave which tried to download a particular Linux agent.

Malware 88

Malware Internet Internet Advertising 88

Security Affairs

APRIL 28, 2022

“Globally, in 2021, malicious cyber actors targeted internet-facing systems, such as email servers and virtual private network (VPN) servers, with exploits of newly disclosed vulnerabilities. SecurityAffairs – hacking, SolarMarker). This advisory also includes other frequently exploited vulnerabilities. Pierluigi Paganini.

Software 145

Software VPN Cybersecurity Internet 145

Security Affairs

SEPTEMBER 10, 2019

Microsoft Patch Tuesday updates for September 2019 address 80 flaws, including two privilege escalation issues exploited in attacks. Microsoft Patch Tuesday security updates for September 2019 address 80 vulnerabilities, including two privilege escalation flaws that have been exploited in attacks in the wild.

Authentication 57

Authentication Advertising Malware Internet 57

Security Affairs

JANUARY 7, 2024

Between 2017 and 2019, the APT group mainly used DNS hijacking in its campaigns. The group targets government entities, Kurdish (political) groups like PKK, telecommunication, ISPs, IT-service providers (including security companies), NGO, and Media & Entertainment sectors; Over the years, the group enhanced its evasion capabilities. .

Media 113

Media Accountability Telecommunications Government 113

Security Affairs

JUNE 3, 2020

National Security Agency (NSA) warned that Russia-linked APT group tracked Sandworm Team has been exploiting a critical vulnerability (CVE-2019-10149) in the Exim mail transfer agent (MTA). The two issues are: a remote code execution vulnerability tracked as CVE-2019-15846, it impacts version 4.92.1 through 4.92.2.

Advertising 104

Advertising Internet Internet Engineering 104

Security Affairs

MARCH 2, 2024

Phobos operation uses a ransomware-as-a-service (RaaS) model, it has been active since May 2019. Based on information from open sources, government experts linked multiple Phobos ransomware variants to Phobos intrusions due to observed similarities in Tactics, Techniques, and Procedures (TTPs).

Ransomware 124

Ransomware Backups Healthcare Firewall 124

Security Affairs

AUGUST 30, 2020

The US DoJ has filed a civil forfeiture complaint with the intent to seize control over 280 Bitcoin and Ethereum accounts that are believed to be holding funds which are the proceeds of hacking campaigns conducted by North Korea-linked APT groups against two cryptocurrency exchanges. SecurityAffairs – hacking, North Korea).

Cryptocurrency 117

Cryptocurrency Hacking Advertising Accountability 117

Security Affairs

JANUARY 7, 2022

. “Ransomware and brute-force attacks have been widely targeting all networking devices, and the most vulnerable victims will be those devices exposed to the Internet without any protection. QNAP urges all QNAP NAS users to follow the security setting instructions below to ensure the security of QNAP networking devices.”

Internet 87

Internet Internet Ransomware Encryption 87