Security Affairs

MARCH 4, 2020

Let’s Encrypt is going to revoke over 3 million certificates today due to a flaw in the software used to verify users and their domains before issuing a certificate. A bug in Let’s Encrypt’s certificate authority (CA) software, dubbed Boulder, caused the correct validation for some certificates.

Encryption 117

Encryption Advertising DNS Software 117

Security Affairs

MARCH 22, 2021

The Kaspersky ICS CERT published a report that provided details about the threat landscape for computers in the ICS engineering and integration sector in 2020. Kaspersky ICS CERT published a report that provided details about the threat landscape for ICS engineering and integration sector in 2020. In H2 2020, 39.3%

Engineering 132

Engineering VPN Accountability Software 132

Security Affairs

NOVEMBER 13, 2021

Threat actors are distributing the GravityRAT remote access trojan masqueraded as an end-to-end encrypted chat application named SoSafe Chat. Threat actors are distributing the GravityRAT RAT masqueraded as an end-to-end encrypted chat application named SoSafe Chat. ” Follow me on Twitter: @securityaffairs and Facebook.

Encryption 137

Encryption Malware Media Authentication 137

Security Affairs

APRIL 21, 2024

The Akira ransomware operators implement a double extortion model by exfiltrating victims’ data before encrypting it. Earlier versions of the ransomware were written in C++ and the malware added the.akira extension to the encrypted files. The attackers mostly used Cisco vulnerabilities CVE-2020-3259 and CVE-2023-20269.

Ransomware 114

Ransomware Encryption Antivirus VPN 114

Security Affairs

JANUARY 16, 2020

Researchers published proof-of-concept (PoC) code exploits for a recently-patched CVE-2020-0601 flaw in the Windows operating system reported by NSA. dll module that contains various ‘Certificate and Cryptographic Messaging functions’ used by the Windows Crypto API for data encryption. . SecurityAffairs – CVE-2020-0601, hacking).

Advertising 83

Advertising Software Encryption Hacking 83

Security Affairs

AUGUST 4, 2020

NetWalker ransomware operators continue to be very active, according to McAfee the cybercrime gang has earned more than $25 million since March 2020. McAfee researchers believe that the NetWalker ransomware operators continue to be very active, the gang is believed to have earned more than $25 million since March 2020. reads the alert.

Ransomware 75

Ransomware VPN Cybercrime Advertising 75

Security Affairs

JANUARY 15, 2020

Microsoft has released a security update to address “a broad cryptographic vulnerability” that is impacting its Windows operating system. The flaw, dubbed ‘NSACrypt’ and tracked as CVE-2020-0601, resides in the Crypt32.dll SecurityAffairs – CVE-2020-0601 , hacking). The flaw affects the way Crypt32.dll

Advertising 83

Advertising Software Encryption Hacking 83

Security Affairs

MAY 27, 2020

The updated Grandoreiro Malware equipped with latenbot-C2 features in Q2 2020 now extended to Portuguese banks. Cybercriminals attempt to compromise computers to generate revenue by exfiltrating information from victims’ devices, typically banking-related information. Figure 1: Grandoreiro email template Q2 2020 (Portugal).

Malware 70

Malware Banking Advertising Data collection 70

The Last Watchdog

DECEMBER 31, 2019

Related: Good to know about IoT Physical security is often a second thought when it comes to information security. Despite this, physical security must be implemented correctly to prevent attackers from gaining physical access and taking whatever they desire.

Cyber Risk 173

Cyber Risk Risk Firewall Surveillance 173

Security Affairs

APRIL 16, 2024

A first-stage implant is delivered to the visitors, it gathers device information and downloads further stages, including the core LightSpy implant and various plugins for specific spying functions. “The Loader initiates the process by loading both the encrypted and subsequently decrypted LightSpy kernel.

Spyware 112

Spyware Mobile Malware Encryption 112

Security Affairs

MAY 12, 2021

.” Summarizing, the design flaws discovered by the expert are: CVE-2020-24588 : aggregation attack (accepting non-SPP A-MSDU frames). CVE-2020-24587 : mixed key attack (reassembling fragments encrypted under different keys). CVE-2020-26140 : Accepting plaintext data frames in a protected network.

Hacking 128

Hacking Encryption Authentication Internet 128

Security Affairs

MARCH 24, 2021

Black Kingdom ransomware was first spotted in late February 2020 by security researcher GrujaRS , the ransomware encrypts files and appends the.DEMON extension to filenames of the encrypted documents. It does indeed encrypt files. pic.twitter.com/POYlPYGjsz — MalwareTech (@MalwareTechBlog) March 21, 2021.

Ransomware 139

Ransomware Encryption VPN Malware 139

CyberSecurity Insiders

JUNE 29, 2023

As per the details available to our Cybersecurity Insiders, a noted ransomware group targeted Drug maker on May 25th and the information security incident brought in financial loss that could hit the profit margin to a great extent this year.

Ransomware 83

Ransomware Backups Manufacturing Encryption 83

Security Affairs

SEPTEMBER 28, 2020

A new ransomware gang named Mount Locker has started its operations stealing victims’ data before encrypting. Like other ransomware operators, Mount Locker started targeting corporate networks, it has been active since the end of July 2020. to the filenames of the encrypted files. ” reported BleepingComputer.

Ransomware 132

Ransomware Encryption Advertising Engineering 132

Security Affairs

JUNE 27, 2023

Europol announced that the takedown of the EncroChat encrypted chat network has led to the arrest of 6,558 people and the seizure of $979 million in illicit funds. In July 2020, a joint operation conducted by European and British law enforcement agencies resulted in the arrest of hundreds of alleged drug dealers and other crooks.

Encryption 81

Encryption Hacking Banking Accountability 81

Security Affairs

DECEMBER 27, 2023

The authors also implemented different obfuscation techniques and custom encryption to avoid detection. McAfee identified about 25 different malicious apps, some of which have been uploaded on Google Play since mid-2020. ” To circumvent analysis and detection, the malware encrypts all C2 communications.

Malware 113

Malware Encryption Social Engineering Marketing 113

CyberSecurity Insiders

DECEMBER 15, 2021

National Security Agency (NSA), CSfC is a key component of the organization’s commercial cybersecurity strategy. CSfC validates commercial IT products that have met the highest level of strict encryption standards and rigorous security requirements for both hardware and software solutions.

Encryption 52

Encryption Energy and Utilities Digital transformation Software 52

Security Affairs

MAY 16, 2021

The chipmaker AMD published guidance for two new attacks against its SEV ( Secure Encrypted Virtualization ) protection technology. Customers using prior generations of EPYC processors, which do not support SEV-SNP, should follow security best practices.

Encryption 113

Encryption Technology Hacking Information Security 113

Security Affairs

DECEMBER 18, 2020

Cyberpunk 2077 is a 2020 action role-playing video game developed and published by CD Projekt, it was one of the most. RC4 algorithm with hardcoded key (in this example – "21983453453435435738912738921") is used for encryption. link] — Tatyana Shishkova (@sh1shk0va) December 17, 2020. "CyberPunk2077.sfx.exe"

Mobile 135

Mobile Ransomware Encryption Malware 135

Security Affairs

JANUARY 12, 2021

Darkside ransomware first appeared in the threat landscape in August 2020, its operators were distributing it using a ransomware-as-a-service business model. Darkside ransomware first appeared in the threat landscape in August 2020, its operators were distributing it using a ransomware-as-a-service business model. Pierluigi Paganini.

Ransomware 124

Ransomware Encryption Hacking Information Security 124

Security Affairs

FEBRUARY 26, 2024

On December 28, 2020, ThyssenKrupp Materials group of companies based in U.S. The hackers managed to access sensitive HR information and documents about the company’s current and former employees. The confidential information accessed by the attackers included the SSN and bank account information of employees.

Cyber Attacks 111

Cyber Attacks Ransomware Engineering Banking 111

Security Affairs

NOVEMBER 13, 2020

Schneider Electric released security advisories for multiple vulnerabilities impacting various products, including four issues that can be exploited by attackers to take control of Modicon M221 programmable logic controllers (PLCs). This data is encrypted using a 4-byte XOR key, which is a weak encryption method.”

Encryption 114

Encryption Passwords Authentication Software 114

Security Affairs

JANUARY 17, 2022

SFile ransomware (aka Escal), has been active since 2020 , it was observed targeting only Windows systems. Some variants of the ransomware append the English name of the target company to the filenames of the encrypted files. “The SFile ransomware uses the Mbed TLS library, RSA-2048 and AES-256 algorithms for file encryption.

Ransomware 144

Ransomware Encryption Backups Malware 144

Security Affairs

JUNE 13, 2023

The company attempted to downplay the security breach by telling Have I Been Pwned that threat actors only had access to encrypted passwords. In January, Zacks Investment Research (Zacks) disclosed a data breach , the company reported that the security incident may have affected the personal information of its 820,000 customers.

Data breaches 94

Data breaches Passwords Cybercrime Encryption 94

Security Affairs

AUGUST 21, 2020

The University of Utah admitted to have paid a $457,059 ransom in order to avoid having ransomware operators leak student information online. ” According to the University, the ransomware encrypted only 0.02% of the data stored on its servers. .” ” reads a press release published by the University.

Ransomware 144

Ransomware Cyber Insurance Insurance Advertising 144

Security Affairs

NOVEMBER 23, 2020

FBI is warning private industry partners of a surge in Ragnar Locker ransomware activity following a confirmed attack from April 2020. Federal Bureau of Investigation (FBI) issued a flash alert (MU-000140-MW) to warn private industry partners of an increase of the Ragnar Locker ransomware activity following a confirmed attack from April 2020.

Ransomware 145

Ransomware Encryption VPN Backups 145

Security Affairs

NOVEMBER 28, 2020

The Conti ransomware gang hit infected the systems of industrial automation and Industrial IoT (IIoT) chip maker Advantech and is demanding over $13 million ransom (roughly 750 BTC) to avoid leaking stolen files and to provide a key to restore the encrypted files. billion in 2019. Pierluigi Paganini. SecurityAffairs – hacking, Advantech).

Ransomware 136

Ransomware Encryption IoT Malware 136

Security Affairs

OCTOBER 5, 2020

The botnet uses the WSS (WebSocket over TLS) protocol for C2 communication to circumvent the typical Mirai traffic detection and provide secure encrypted communication for command and control. “Two zero days, 12 remote access functions for the router, encrypted traffic protocol, and infrastructure IP that that moves around. .”

IoT 142

IoT Firmware DNS Advertising 142

Security Affairs

APRIL 3, 2021

The Avaddon ransomware operators updated their malware after security researchers released a public decryptor in February 2021. The Avaddon ransomware family first appeared in the threat landscape in February 2020, and its authors started offering it with a Ransomware-as-a-Service (RaaS) model in June, 2020.

Ransomware 101

Ransomware Encryption Malware Cybercrime 101

Security Affairs

NOVEMBER 26, 2020

discloses a ransomware attack that took place in September 2020. revealed that a ransomware attack hit its systems in September 2020. “On September 14, 2020, USF experienced an IT security event [.] “On September 14, 2020, USF experienced an IT security event [.]

Ransomware 142

Ransomware Data breaches Encryption Malware 142

The Last Watchdog

JUNE 21, 2020

The epidemic went truly mainstream with the release of CryptoLocker back in 2013, and it has since transformed into a major dark web economy spawning the likes of Sodinokibi, Ryuk, and Maze lineages that are targeting the enterprise on a huge scale in 2020. File encryption 2013 – 2015. pharma giant ExecuPharm.

Ransomware 243

Ransomware Hacking Encryption Penetration Testing 243

Security Affairs

JULY 8, 2020

Good news for the victims of the ThiefQuest (EvilQuest) ransomware, they can recover their encrypted files for free. The victims of the ThiefQuest (EvilQuest) ransomware victims can recover their encrypted files without needing to pay the ransom due to the availability of a free decryptor. macOS ransomware #decryptor ( #EvilQuest )! |

Ransomware 112

Ransomware Encryption Malware InfoSec 112

Security Affairs

MAY 4, 2021

This is not the first time that experts disclose vulnerabilities in EXIM software, in May 2020 the U.S. Experts announced they will not publish that exploits for now.

Hacking 117

Hacking Software Engineering Encryption 117

Security Affairs

OCTOBER 14, 2020

Andy Nguyen, a Google security researcher, has found Bluetooth vulnerabilities, referred to as BleedingTooth, in the Linux kernel that could be exploited by attackers to run arbitrary code or access sensitive information. The BleedingTooth flaws are tracked as CVE-2020-12351, CVE-2020-12352, and CVE-2020-24490.

Advertising 143

Advertising Encryption Hacking Risk 143

Security Affairs

MARCH 26, 2021

Accenture security researchers published an analysis of the latest Hades campaign, which is ongoing since at least December 2020. . Then the malware perform a scan in local directories and network shares for content to encrypt. The copy is then deleted and an executable is unpacked in memory. ” concludes the report.

Ransomware 143

Ransomware Encryption Malware VPN 143

Security Affairs

OCTOBER 11, 2020

Tyler Technologies has finally decided to paid a ransom to obtain a decryption key and recover files encrypted in a recent ransomware attack. In June 2020, the same ransomware was employed in an attack on the Texas Department of Transportation , in September it infected the systems at the IPG Photonics high-performance laser developer.

Technology 139

Technology Ransomware Encryption Advertising 139

Security Affairs

MARCH 4, 2021

Group-IB published a report titled “Ransomware Uncovered 2020-2021 ”. analyzes ransomware landscape in 2020 and TTPs of major threat actors. Group-IB , a global threat hunting and adversary-centric cyber intelligence company, has presented its new report “Ransomware Uncovered 2020-2021 ”. The gold rush of 2020.

Ransomware 122

Ransomware Cybercrime Malware Marketing 122