Krebs on Security

FEBRUARY 11, 2020

Microsoft today released updates to plug nearly 100 security holes in various versions of its Windows operating system and related software, including a zero-day vulnerability in Internet Explorer (IE) that is actively being exploited. That vulnerability, assigned as CVE-2020-0674 , has been patched with this month’s release.

Backups 69

Backups Malware Internet Internet 69

Krebs on Security

MARCH 10, 2020

today released updates to plug more than 100 security holes in its various Windows operating systems and associated software. CVE-2020-0852 is one just four remote execution flaws Microsoft patched this month in versions of Word. Microsoft Corp. All told , this patch batch addresses at least 115 security flaws.

Backups 332

Backups Hacking Software Malware 332

Krebs on Security

JANUARY 14, 2020

Microsoft today released updates to plug 50 security holes in various flavors of Windows and related software. Such a weakness could be abused by attackers to make malware appear to be a benign program that was produced and signed by a legitimate software company. National Security Agency.

Backups 304

Backups Software Malware Banking 304

Krebs on Security

DECEMBER 8, 2020

Microsoft today issued its final batch of security updates for Windows PCs in 2020, ending the year with a relatively light patch load. Separately, Adobe issued security updates for its Prelude , Experience Manager and Lightroom software.

DNS 350

DNS Backups Malware Risk 350

Krebs on Security

JANUARY 13, 2020

is slated to release a software update on Tuesday to fix an extraordinarily serious security vulnerability in a core cryptographic component present in all versions of Windows. 14, the first Patch Tuesday of 2020. 14, the first Patch Tuesday of 2020. Sources tell KrebsOnSecurity that Microsoft Corp.

Internet 281

Internet Internet Software Media 281

SecureList

NOVEMBER 6, 2024

It spreads via forums posts, torrent trackers and blogs, imitating popular software like Foxit PDF Editor and AutoCAD. These posts refer to the SteelFox dropper as an efficient way to activate a legitimate software product for free. Instead, it operates on a larger scale, infecting everyone who stumbles upon the compromised software.

Software 123

Software Cryptocurrency Malware DNS 123

Security Affairs

NOVEMBER 26, 2024

Blue Yonder, a supply chain software provider, suffered a ransomware attack, impacting operations for clients like Starbucks and grocery stores. ” reads the statement published by the supply chain management software provider. grocery chain Sainsbury. ” reported CNN. Blue Yonder Group , Inc.

Software 116

Software Ransomware Retail Manufacturing 116

Krebs on Security

DECEMBER 19, 2024

The cracked software is being resold as a cloud-based attack tool by at least two different services, one of which KrebsOnSecurity traced to an information technology firm based in Turkey. In early 2020, Exorn promoted a website called “ orndorks[.]com Araneida Scanner. co as one of their projects.

Hacking 255

Hacking Cybercrime Advertising Data breaches 255

Krebs on Security

JULY 14, 2020

Microsoft today released updates to plug a whopping 123 security holes in Windows and related software, including fixes for a critical, “wormable” flaw in Windows Server versions that Microsoft says is likely to be exploited soon. Not to say flaws rated “important” as opposed to critical aren’t also a concern.

DNS 351

DNS Backups System Administration Software 351

Security Affairs

DECEMBER 8, 2024

An ongoing RedLine information-stealing campaign is targeting Russian businesses using pirated corporate software. Since January 2024, Russian businesses using unlicensed software have been targeted by an ongoing RedLine info-stealer campaign. This method exploits user trust rather than vulnerabilities in the corporate software.

Software 80

Software Malware Accountability Encryption 80

Krebs on Security

NOVEMBER 19, 2024

Finastra, which provides software and services to 45 of the world’s top 50 banks, notified customers of the security incident after a cybercriminal began selling more than 400 gigabytes of data purportedly stolen from the company. However, it did reference many of the same banks called out as Finastra customers in the Nov.

Data breaches 316

Data breaches Banking Cybercrime Advertising 316

Krebs on Security

AUGUST 16, 2020

A security flaw in the way Microsoft Windows guards users against malicious files was actively exploited in malware attacks for two years before last week, when Microsoft finally issued a software update to correct the problem. In fact, CVE-2020-1464 was first spotted in attacks used in the wild back in August 2018.

Antivirus 363

Antivirus Malware Software 363

The Last Watchdog

AUGUST 29, 2023

Related: Pushing the fly-by-wire envelope This is especially true because systems are more interconnected and use more complex commercial software than ever before, meaning a vulnerability in one system could lead to a malicious actor gaining access to more important systems. Risks delineated Still, there have been many other incidents since.

Software 264

Software Risk Artificial Intelligence Cyber Attacks 264

Tech Republic Security

DECEMBER 10, 2021

HackerOne reports that hackers are reporting more bugs and earning bigger bounties, but is an increase in testing or an increase in software vulnerabilities the cause of the jump?

Software 218

Software 218

Krebs on Security

DECEMBER 14, 2020

In a security advisory , Austin, Texas based SolarWinds acknowledged its systems “experienced a highly sophisticated, manual supply chain attack on SolarWinds Orion Platform software builds for versions 2019.4 released between March 2020 and June 2020.” HF 5 through 2020.2.1, ”

Hacking 364

Hacking Antivirus Accountability Telecommunications 364

Schneier on Security

JANUARY 5, 2021

Initial estimates were that Russia sent its probes only into a few dozen of the 18,000 government and private networks they gained access to when they inserted code into network management software made by a Texas company named SolarWinds. There is also no indication yet that any human intelligence alerted the United States to the hacking.

Hacking 358

Hacking System Administration Software Surveillance 358

Malwarebytes

JANUARY 6, 2025

A US chain of dental offices known as Westend Dental LLC denied a 2020 ransomware attack and its associated data breach, instead telling their customers that data was lost due to an accidentally formatted hard drive. In October 2020, Westend Dental was attacked by the Medusa Locker ransomware group.

Data breaches 145

Data breaches Ransomware Passwords Insurance 145

Krebs on Security

DECEMBER 18, 2020

government cybersecurity agencies warned this week that the attackers behind the widespread hacking spree stemming from the compromise at network software firm SolarWinds used weaknesses in other, non-SolarWinds products to attack high-value targets. National Security Agency (NSA) warned on Dec. National Security Agency (NSA) warned on Dec.

Software 363

Software Authentication Hacking Government 363

Krebs on Security

MAY 22, 2025

” According to the FBI, there were at least two major versions of DanaBot; the first was sold between 2018 and June 2020, when the malware stopped being offered on Russian cybercrime forums. It’s not unheard of for financially-oriented malicious software to be repurposed for espionage.

Malware 260

Malware Cybercrime Government Banking 260

Schneier on Security

MAY 3, 2023

New reporting from Wired reveals that the Department of Justice detected the SolarWinds attack six months before Mandient detected it in December 2020, but didn’t realize what they detected—and so ignored it. In July 2020, with the mystery still unresolved, communication between investigators and SolarWinds stopped.

System Administration 268

System Administration Software Engineering Internet 268

Krebs on Security

JANUARY 12, 2021

New research into the malware that set the stage for the megabreach at IT vendor SolarWinds shows the perpetrators spent months inside the company’s software development labs honing their attack before inserting malicious code into updates that SolarWinds then shipped to thousands of customers. ”

Malware 362

Malware Software Government 362

Krebs on Security

FEBRUARY 19, 2020

Networking software giant Citrix Systems says malicious hackers were inside its networks for five months between 2018 and 2019, making off with personal and financial data on company employees, contractors, interns, job candidates and their dependents. 10, 2020, Citrix disclosed additional details about the incident. 13, 2018 and Mar.

VPN 363

VPN Passwords Software Telecommunications 363

Schneier on Security

FEBRUARY 15, 2021

More discoveries in November 2019, January 2020, and April 2020 added up to at least five zero-day vulnerabilities being exploited from the same bug class in short order. Microsoft issued a patch and fixed the flaw, sort of. In September 2019, another similar vulnerability was found being exploited by the same hacking group.

Technology 358

Technology Hacking Software 358

Krebs on Security

MARCH 20, 2020

The new Mirai strain targets CVE-2020-9054 , a critical flaw that exists in many VPN firewalls and network attached storage (NAS) devices made by Taiwanese vendor Zyxel Communication Corp. A joint advisory on CVE-2020-9054 from the U.S. which boasts some 100 million devices deployed worldwide. Zyxel issued a patch for the flaw on Feb.

IoT 308

IoT DDOS Firewall VPN 308

Troy Hunt

OCTOBER 29, 2020

So, I set out to find a password manager and 10 Christmas holidays ago now, I spent the best 50 bucks ever: I choose 1Password way back then and without a shadow of a doubt, it has become one of the most important pieces of software I have ever used. And importantly, teaching them how to use secure passwords with @1Password ??

Password Management 362

Password Management Passwords Software Accountability 362

Krebs on Security

FEBRUARY 26, 2023

But we do know the March 2020 attack was precipitated by a spear-phishing attack against a GoDaddy employee. GoDaddy described the incident at the time in general terms as a social engineering attack, but one of its customers affected by that March 2020 breach actually spoke to one of the hackers involved.

Hacking 339

Hacking Social Engineering Phishing Scams 339

Krebs on Security

FEBRUARY 9, 2021

Microsoft today rolled out updates to plug at least 56 security holes in its Windows operating systems and other software. A key concern for enterprises is another critical bug in the DNS server on Windows Server 2008 through 2019 versions that could be used to remotely install software of the attacker’s choice.

DNS 344

DNS Backups Software Phishing 344

Krebs on Security

SEPTEMBER 24, 2020

DHS’s Cybersecurity and Infrastructure Agency (CISA) said in the directive that it expected imminent exploitation of the flaw — CVE-2020-1472 and dubbed “ZeroLogon” — because exploit code which can be used to take advantage of it was circulating online.

Antivirus 278

Antivirus Security Intelligence Authentication Engineering 278

Krebs on Security

APRIL 20, 2023

We learned some remarkable new details this week about the recent supply-chain attack on VoIP software provider 3CX. “This is the first time Mandiant has seen a software supply chain attack lead to another software supply chain attack,” reads the April 20 Mandiant report. Microsoft Corp.

Malware 337

Malware Software Technology Accountability 337

Security Affairs

DECEMBER 23, 2024

Court documents state that on October 29, 2019, plaintiffs filed this lawsuit, alleging that the defendants used WhatsApp to target approximately 1,400 mobile phones and devices to infect them with the surveillance software. from April 29, 2018, to May 10, 2020). continues the court filing.

Spyware 109

Spyware Surveillance Software Hacking 109

SecureList

APRIL 23, 2025

We have been tracking the latest attack campaign by the Lazarus group since last November, as it targeted organizations in South Korea with a sophisticated combination of a watering hole strategy and vulnerability exploitation within South Korean software. We found that the malware was running in the memory of a legitimate SyncHost.

Malware 141

Malware Software Encryption Internet 141

Krebs on Security

DECEMBER 16, 2020

A key malicious domain name used to control potentially thousands of computer systems compromised via the months-long breach at network monitoring software vendor SolarWinds was commandeered by security experts and used as a “killswitch” designed to turn the sprawling cybercrime operation against itself, KrebsOnSecurity has learned.

Hacking 363

Hacking Malware Software Cybercrime 363

SecureWorld News

NOVEMBER 12, 2024

This advisory highlights specific vulnerabilities and offers guidance to mitigate risks for software developers and end-user organizations. These vulnerabilities span a range of technologies, from network security appliances to widely used software applications. CVE-2020-1472 (Microsoft Netlogon): Allows privilege escalation.

Software 111

Software Cyber threats Risk Passwords 111

Krebs on Security

FEBRUARY 8, 2021

Cyber cops in Ukraine carried out an arrest and several raids last week in connection with the author of a U-Admin , a software package used to administer what’s being called “one of the world’s largest phishing services.”

Phishing 347

Phishing Scams Banking Mobile 347

Schneier on Security

MARCH 1, 2021

Early in 2020, cyberspace attackers apparently working for the Russian government compromised a piece of widely used network management software made by a company called SolarWinds. For a while, in 2019, the update server’s password for SolarWinds’s network management software was reported to be “solarwinds123.”

Risk 363

Risk Government Marketing Software 363

Security Affairs

OCTOBER 23, 2024

The charges result from an investigation conducted by the US government into public companies potentially impacted by the supply chain attack on SolarWinds’ Orion software. ” reads the press release published by SEC.

Hacking 115

Hacking Risk Cybersecurity Government 115