Security Affairs

DECEMBER 21, 2022

. “At the present time, no damage has been done, nor are there any indications that data has been stolen or modified,” This isn’t the first attack suffered by the company, in 2012, the company was targeted by another cyber attack that was classified as “heavy” and of “exceptional quality.”. Pierluigi Paganini.

Engineering 93

Engineering Data breaches Ransomware Banking 93

Security Affairs

OCTOBER 30, 2020

Microsoft researchers are warning that threat actors are continuing to actively exploit the ZeroLogon vulnerability in attacks in the wild. The CVE-2020-1472 flaw is an elevation of privilege that resides in the Netlogon. ENABLE enforcement mode to address CVE-2020-1472 in your environment.

Authentication 133

Authentication Advertising Architecture Cybercrime 133

Security Affairs

OCTOBER 15, 2020

Bookstore giant Barnes & Noble has disclosed a cyber attack and that the threat actors have exposed the customers’ data. A series of messages published on Barnes & Noble’s Nook social media accounts state that it had suffered a system failure and is working to restore operations by restoring their server backups.

Cyber Attacks 111

Cyber Attacks VPN Backups Ransomware 111

Krebs on Security

OCTOBER 28, 2020

In March 2020, KrebsOnSecurity alerted Swedish security giant Gunnebo Group that hackers had broken into its network and sold the access to a criminal group which specializes in deploying ransomware. “The harsh and unfortunate reality is the security of a number of security companies is s**t,” Arena said.

Hacking 344

Hacking Ransomware Banking Accountability 344

Security Affairs

NOVEMBER 10, 2021

Around five million cyber attacks hit Taiwan’s government agencies every day, and most of the hacking attempts are originated from China. Cyber security department director Chien Hung-wei told parliament representatives that government infrastructure faces “five million attacks and scans a day” .

Government 124

Government Hacking Cyber Attacks Information Security 124

Security Affairs

JANUARY 12, 2022

CVE-2020-5902 F5 Big-IP CVE-2020-14882 Oracle WebLogic CVE-2021-26855 Microsoft Exchange (Note: this vulnerability is frequently observed used in conjunction with CVE-2021-26857, CVE-2021-26858, and CVE-2021-27065). Some of the hacking campaigns that were publicly attributed to Russian state-sponsored APT actors by U.S.

Malware 118

Malware Cyber threats Cybersecurity Government 118

Security Affairs

JUNE 20, 2021

APT31 is also believed to be behind an attack on the Parliament of Finland that took place in 2020, according to the government experts , the hackers breached some parliament email accounts in December 2020. We are strongly opposed to the unfounded accusations against China.”

Government 127

Government Hacking Cyber Attacks Passwords 127

Security Affairs

JULY 8, 2021

Guidehouse provides account maintenance services to Morgan Stanley’s StockPlan Connect business, hackers breached its Accellion FTA server and stole information belonging to Morgan Stanley stock plan participants. The company pointed out that exposed files did not contain passwords that could be used to access financial accounts.

Data breaches 121

Data breaches Hacking Banking Financial Services 121

Security Affairs

SEPTEMBER 1, 2020

Norway’s parliament announced Tuesday that it was the target of a major cyber-attack that allowed hackers to access emails and data of a small number of parliamentary representatives and employees. “The parliament has recently been targetted in a vast cyber attack,” reads a statement from Norway’s parliament.

Healthcare 108

Healthcare Cyber Attacks Advertising Phishing 108

Security Affairs

DECEMBER 30, 2020

T-Mobile has disclosed a data breach exposing customers’ account’s information. The T-Mobile security staff discovered “malicious, unauthorized access” to their systems. “Customer proprietary network information (CPNI) as defined by the Federal Communications Commission (FCC) rules was accessed.

Data breaches 134

Data breaches Mobile Telecommunications Wireless 134

Security Affairs

FEBRUARY 27, 2021

Once hijacked a SIM, the attackers can steal money, cryptocurrencies and personal information, including contacts synced with online accounts. The criminals could hijack social media accounts and bypass 2FA services based on SMS used by online services, including financial ones. .

Mobile 92

Mobile Telecommunications Data breaches Identity Theft 92

Security Affairs

OCTOBER 10, 2020

The malicious updates employed in the Zerologon attacks are able to bypass the user account control (UAC) security feature in Windows and abuse the Windows Script Host tool (wscript.exe) to execute malicious scripts. We’re seeing more activity leveraging the CVE-2020-1472 exploit (ZeroLogon). states Microsoft.

Cybercrime 118

Cybercrime Security Intelligence Authentication Banking 118

Security Affairs

NOVEMBER 5, 2021

US defense contractor Electronic Warfare Associates (EWA) was hit by a cyber attack, threat actors stole personal information from its email system. The company confirmed that attackers exfiltrated files containing sensitive information. The experts at the company believe that the attackers attempted wire fraud.

Data breaches 91

Data breaches Identity Theft Cyber Attacks Hacking 91

Security Affairs

AUGUST 4, 2022

Taiwan government websites were temporarily forced offline by cyber attacks during the visit to Taipei of US House Speaker Nancy Pelosi. Major Taiwan government websites were temporarily forced offline by distributed denial of service (DDoS) attacks attacks during the visit to Taipei of US House Speaker Nancy Pelosi.

DDOS 83

DDOS Government Cyber Attacks Hacking 83

eSecurity Planet

JUNE 3, 2021

FireEye and Mandiant have seen their reputation climb in recent months with rapid detection of the SolarWinds hack , among other high-profile cyber attacks. Products accounted for $795 million of the company’s $941 million in revenue in 2020. The deal with STG is expected to be completed in the fourth quarter.

Cyber Attacks 70

Cyber Attacks Marketing Accountability Technology 70

SecureWorld News

MAY 27, 2021

NASA audit: work from home greatly increases attack surface. The audit proves what we've heard from many security leaders during our SecureWorld Remote Sessions : the pandemic and work from home have greatly increased the cyber attack surface and attack attempts. A wide-ranging list of attack vectors, for sure.

Cyber Risk 61

Cyber Risk Risk Architecture Cyber threats 61

Security Affairs

OCTOBER 2, 2022

Germany’s Bundeskriminalamt (BKA) arrested an individual (24) suspected of having stolen €4,000,000 from internet users via phishing attacks along with a two accomplices who are suspected. The victims were informed in these letters that their house bank would change their security system – and their own account would be affected.”

Phishing 91

Phishing Banking DDOS Accountability 91

Security Affairs

NOVEMBER 8, 2020

Every week the best security articles from Security Affairs free for you in your email box. Every week the best security articles from Security Affairs free for you in your email box. Every week the best security articles from Security Affairs free for you in your email box. Pierluigi Paganini.

Data breaches 83

Data breaches Ransomware Hacking Threat Reports 83

Security Affairs

SEPTEMBER 14, 2022

Peiter ‘Mudge’ Zatko , former head of security, testified in front of Congress on Tuesday, sustaining that the platform ignored his security concerns and was vulnerable to cyber attacks. The expert added that ‘any employee could take over the accounts of any senator in this room.’

Accountability 84

Accountability Cyber Attacks Engineering Hacking 84

Security Affairs

NOVEMBER 29, 2020

The post Security Affairs newsletter Round 291 appeared first on Security Affairs. Pierluigi Paganini. SecurityAffairs – hacking, newsletter).

Data breaches 86

Data breaches Social Engineering Ransomware Malware 86

Security Affairs

AUGUST 18, 2021

million current postpaid customer accounts, as well as more than 40 million records of former and prospective customers. The attackers also compromised approximately 850,000 active prepaid customers. We have also confirmed that there was some additional information from inactive prepaid accounts accessed through prepaid billing files.

Data breaches 100

Data breaches Mobile Telecommunications Wireless 100

Security Affairs

AUGUST 29, 2023

NISC disclosed a potential security breach involving personal data associated with email communications. Threat actors likely compromised the email account of one of the agency members. In August, the Washington Post reported a massive attack on Japan’s defence networks by China-linked cyberspies that took place in late 2020.

Cybersecurity 92

Cybersecurity Government Banking Cyber Attacks 92

Security Affairs

FEBRUARY 28, 2021

The New Zealand-based cryptocurrency exchange Cryptopia suffered a new cyber heist while it is in liquidation due to a 2019 security breach. In 2019, the New Zealand-based cryptocurrency exchange Cryptopia discloses a cyber attack that took place on January 14th.

Cryptocurrency 109

Cryptocurrency Hacking Cyber Attacks Accountability 109

Security Affairs

JANUARY 9, 2021

Dassault Falcon Jet has disclosed a data breach that exposed personal information belonging to current and former employees. In December Dassault, Dassault Falcon Jet (DFJ) was the victim of a cyber attack that may have exposed personal information belonging to current and former employees. ” states the notice.

Ransomware 131

Ransomware Data breaches Cyber Attacks Media 131

Security Affairs

SEPTEMBER 17, 2020

The attacks also aimed at carrying out other criminal activities, such as the deployment of ransomware and cryptocurrency malware. 35, with 25, carried out cyber attacks on high-technology and similar organizations and video game companies. The August 2020 indictment charges charged Jiang Lizhi (???),

Identity Theft 100

Identity Theft Advertising Government Technology 100

Security Affairs

OCTOBER 30, 2021

A cyber attack hit the UMass Memorial Health, threat actors had access to employee email system, potentially exposing patients info. Threat actors hacked into the employee email system of the UMass Memorial Health healthcare system, potentially accessing the personal information of thousands of patients.

Healthcare 92

Healthcare Insurance Data breaches Hacking 92

Security Affairs

FEBRUARY 14, 2021

The FBI is warning companies about the use of out-of-date Windows 7 systems, desktop sharing software TeamViewer, and weak account passwords. The alert comes after the recent attacks on the Oldsmar water treatment plant’s network where attackers tried to raise levels of sodium hydroxide, by a factor of more than 100.

Passwords 139

Passwords Social Engineering Software System Administration 139

Security Affairs

OCTOBER 22, 2020

. “The Council today imposed restrictive measures on two individuals and one body that were responsible for or took part in the cyber-attack on the German Federal Parliament (Deutscher Bundestag) in April and May 2015.” The cyber attack on the “Parlakom” network was discovered in early May.

Hacking 75

Hacking Cyber Attacks Identity Theft Government 75

Security Affairs

DECEMBER 21, 2020

The attack was reported last week by Handelsblatt , the website databreaches.net also reported the news after @Chum1ng0 alerted them. . CyberAttack , #CyberSecurity , #ciberseguridad ; "Cyber attack paralyzes MDax group Symrise" [link] — chum1ng0 (@chum1ng0) December 14, 2020.

Ransomware 101

Ransomware Encryption Malware Cyber Attacks 101

Security Affairs

JANUARY 15, 2020

P&N Bank discloses data breach, customer account information, balances exposed. The Australian P&N Bank is notifying its customers a data breach that has exposed personally identifiable information (PII) and sensitive account data. pic.twitter.com/BywQtf6qSE — Nick (@vrNicknack) January 15, 2020.

Data breaches 57

Data breaches Banking Cyber Attacks Accountability 57

Security Affairs

APRIL 26, 2020

Are Maze operators behind the attack on the IT services giant Cognizant? Please give me your vote for European Cybersecurity Blogger Awards – VOTE FOR YOUR WINNERS [link]. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Spyware 95

Spyware Hacking Advertising Antivirus 95

SC Magazine

MAY 24, 2021

In a report released May 20, the Government Accountability Office looked at how the private cybersecurity insurance market has developed over the past five yearsRich Baich is global chief information security officer for insurance giant AIG. Photo by Spencer Platt/Getty Images).

Cyber Insurance 94

Cyber Insurance Insurance Marketing Cyber Risk 94

Security Affairs

APRIL 22, 2020

On Sunday, the computer systems in the city of Torrance suffered a cyber attack that interrupted access to email accounts and server functions. pic.twitter.com/vJ1qXBPTAO — Under the Breach (@underthebreach) April 21, 2020. ” reported Bleeping Computer. The group posted files from the breach as proof.

Ransomware 99

Ransomware Advertising Backups Data breaches 99

Security Affairs

JUNE 18, 2020

Now the company informed its customers that the threat actors also stole personally identifiable and financial information before encrypting the files. “We recently discovered that Cognizant was the victim of a ransomware attack carried out by international cyber criminals.

Data breaches 95

Data breaches Ransomware Identity Theft Advertising 95

Security Affairs

MARCH 12, 2021

In early 2020, a joint operation conducted by the FBI in coordination with the UK NCA, the Netherlands National Police Corps, the German Bundeskriminalamt, and the Police Service of Northern Ireland resulted in the seizure of the WeLeakInfo.com domain. ” reads the post published by Cyble. ” reads the post published by Cyble.

Data breaches 74

Data breaches Accountability Cybercrime Hacking 74

Security Affairs

JUNE 28, 2020

The company sent a security breach notification via email to its users. ” “We use Facebook and LinkedIn for account login and do not store any passwords on our system. cyber #cybersecurity pic.twitter.com/VTGMyBiyz0 — Cyble (@AuCyble) June 26, 2020. ”” reported BleepingComputer.

Media 141

Media Hacking Passwords Data breaches 141

Security Affairs

DECEMBER 29, 2019

RavnAir Alaska airline canceled some flights following a cyber attack. FBI flash alert warns of LockerGoga and MegaCortex Ransomware attacks. A flaw in Twitter App for Android could have been exploited to take over the account. Entercom Radio Network hit by a second cyber attack in a few months.

Cyber Attacks 56

Cyber Attacks Surveillance Advertising Ransomware 56