Security Affairs

JUNE 24, 2021

Networking equipment giant Zyxel warns customers of a series of attacks that have been targeting some of its enterprise firewall and VPN devices. Networking equipment vendor Zyxel warned its customers of a series of attacks that have been targeting some of its enterprise firewall and VPN server solutions. Pierluigi Paganini.

VPN 110

VPN Firewall Firmware Authentication 110

Security Affairs

MAY 25, 2021

A flaw in Pulse Connect Secure VPN could allow an authenticated remote attacker to execute arbitrary code with elevated privileges. Ivanti addressed a high severity Buffer Overflow vulnerability in Secure VPN appliances that could allow a remote authenticated attacker to execute arbitrary code with elevated privileges.

VPN 99

VPN Authentication Hacking Software 99

Security Affairs

APRIL 7, 2021

Attackers are actively exploiting the CVE-2018-13379 flaw in Fortinet VPN to deploy the Cring ransomware to organizations in the industrial sector. mike [link] pic.twitter.com/fkU2USEZis — Swisscom CSIRT (@swisscom_csirt) January 26, 2021. SecurityAffairs – hacking, Fortinet VPN). ” continues Kaspersky.

VPN 96

VPN Ransomware Antivirus Firmware 96

Security Affairs

JUNE 17, 2021

Iran-linked Ferocious Kitten APT group used instant messaging apps and VPN software like Telegram and Psiphon to deliver Windows RAT and spy on targets’ devices. ” Kaspersky spotted the activity of the group by investigating two weaponized documents that were uploaded to VirusTotal in July 2020 and March 2021. .

VPN 123

VPN Internet Internet Software 123

CyberSecurity Insiders

DECEMBER 24, 2021

2022 Predictions for the Cybersecurity Industry and Advice for Newcomers or Those Working for Small to Medium-Sized Businesses. In 2021, we experienced a rapid evolution to these interactions. Like us, you may be wondering, what will 2022 look like for information security professionals? 2022 Cybersecurity Fundamentals.

Cybersecurity 98

Cybersecurity Ransomware VPN Architecture 98

Security Affairs

SEPTEMBER 22, 2021

CVE-2021-40847 flaw in Netgear SOHO routers could be exploited by a remote attacker to execute arbitrary code as root. Security experts from consulting firm GRIMM have discovered a vulnerability in Small Offices/Home Offices (SOHO) Netgear routers that could be exploited by a remote attacker to execute arbitrary code as root.

DNS 128

DNS Firmware VPN Risk 128

Security Affairs

JUNE 2, 2024

Ticketmaster confirms data breach impacting 560 million customers Critical Apache Log4j2 flaw still threatens global finance Crooks stole more than $300M worth of Bitcoin from the exchange DMM Bitcoin ShinyHunters is selling data of 30 million Santander customers Over 600,000 SOHO routers were destroyed by Chalubo malware in 72 hours LilacSquid APT (..)

Data breaches 93

Data breaches VPN Cloud Migration Cybercrime 93

Security Affairs

JULY 28, 2021

A joint report published by US, UK, and Australian cyber security agencies warns of the top routinely exploited vulnerabilities in 2020. Cybersecurity and Infrastructure Security Agency (CISA), the Australian Cyber Security Centre (ACSC), the United Kingdom’s National Cyber Security Centre (NCSC), and the U.S.

VPN 133

VPN Cybersecurity Hacking Technology 133

Security Affairs

JULY 6, 2021

Positive Technologies researcher Nikita Abramov has provided details about the CVE-2021-20026 command injection vulnerability that affects SonicWall’s Network Security Manager (NSM) product. reads the security advisory published by SonicWall. .” This vulnerability only impacts on-premises NSM deployments.

Authentication 110

Authentication Network Security VPN Firewall 110

Security Affairs

JUNE 30, 2022

Good news for the victims of the Hive ransomware, Korean security researchers have released a free decryptor for some versions. Good news for the victims of the Hive ransomware , the South Korean cybersecurity agency KISA has released a free decryptor for versions from v1 till v4. Follow me on Twitter: @securityaffairs and Facebook.

Ransomware 107

Ransomware Cybersecurity Encryption VPN 107

Security Boulevard

MAY 3, 2021

roundup of UK focused Cyber and Information Security News, Blog Posts, Reports and general Threat Intelligence from the previous calendar month, April 2021. The UK Security Service MI5 said 10,000 staff from every UK government department and from important UK industries have been lured by fake LinkedIn profiles.

Ransomware 124

Ransomware Passwords Scams Government 124

CyberSecurity Insiders

OCTOBER 10, 2022

Facebook has made any official statement that a team of cybersecurity researchers from its parent company Meta have detected 400 malicious apps that were operating on Android and iOS operating systems and were indulging in stealing credentials of its users. Third is the news related to Ukraine and Russian war.

Cyber Attacks 102

Cyber Attacks VPN Cybersecurity Media 102

Security Affairs

JANUARY 21, 2024

Admin of the BreachForums hacking forum sentenced to 20 years supervised release Russia-linked Midnight Blizzard APT hacked Microsoft corporate emails VF Corp December data breach impacts 35 million customers China-linked APT UNC3886 exploits VMware zero-day since 2021 Ransomware attacks break records in 2023: the number of victims rose by 128% U.S.

Artificial Intelligence 96

Artificial Intelligence VPN Hacking Firewall 96

Security Affairs

AUGUST 3, 2023

CISA, the FBI, and NSA, along with Five Eyes cybersecurity agencies published a list of the 12 most exploited vulnerabilities of 2022. CISA, the NSA, and the FBI, in collaboration with cybersecurity authorities from Australia, Canada, New Zealand, and the United Kingdom, have published a list of the 12 most exploited vulnerabilities of 2022.

Authentication 83

Authentication VPN Hacking Internet 83

Security Affairs

AUGUST 26, 2021

Cybersecurity and Infrastructure Security Agency (CISA) released five malware analysis reports (MARs) related to samples found on compromised Pulse Secure devices. CISA published five malware analysis reports (MARs) related to samples found on compromised Pulse Secure devices. The flaw received a CVSS score of 9.1,

Malware 128

Malware VPN Authentication Hacking 128

The Last Watchdog

JUNE 4, 2019

With the largest concentration of cybersecurity expertise –– the “oil” — in the world, Maryland is fast changing from the Old Line State into “Cybersecurity Valley.” The foundation of Silicon Valley was set, and today comparable technology development pieces are being laid in Maryland on the cybersecurity front.

Cybersecurity 193

Cybersecurity Computers and Electronics Technology Marketing 193

Security Affairs

DECEMBER 14, 2023

cybersecurity and intelligence authorities. The Hive ransomware operation has been active since June 2021 , it provides Ransomware-as-a-Service Hive and adopts a double-extortion model threatening to publish data stolen from the victims on their leak site (HiveLeaks).

Ransomware 112

Ransomware Cryptocurrency Cybercrime VPN 112

Security Affairs

JUNE 23, 2021

A critical vulnerability, tracked as CVE-2021-20019 , in SonicWall VPN appliances was only partially patched last year and could allow a remote attacker to steal sensitive data. The flaw resides in the HTTP/HTTPS service used for product management as well as SSL VPN remote access. “An reads the analysis published by Tripwire.

VPN 84

VPN Firewall Firmware Authentication 84

Security Affairs

MAY 17, 2022

The Facestealer spyware was first spotted on July 2021 by Dr. Web researchers, the development team behind the threat has frequently changed its code. Most of the malicious apps were VPN software (42), followed by Camera (20), and Photo Editing (13). The apps deceive users into subscribing to paid services or clicking on ads.

Spyware 90

Spyware Cryptocurrency VPN Malware 90

Security Affairs

DECEMBER 3, 2022

Google fixed the ninth actively exploited Chrome zeroday this year A new Linux flaw can be chained with other two bugs to gain full root privileges Attack of drones: airborne cybersecurity nightmare Cuba Ransomware received over $60M in Ransom payments as of August 2022 Android Keyboard Apps with 2 Million downloads can remotely hack your device New (..)

Spyware 93

Spyware Data breaches VPN Hacking 93

Security Affairs

NOVEMBER 10, 2021

Citrix has released security updates to address two vulnerabilities in ADC, Gateway, and SD-WAN, including a critical flaw, tracked as CVE-2021-22955, that can be exploited to trigger a denial of service (DoS) condition. The second vulnerability, tracked as CVE-2021-22956, affects ADC and Gateway. and later releases of 13.1

VPN 101

VPN Hacking Cybersecurity Information Security 101

Security Affairs

NOVEMBER 26, 2021

Resecurity, a Los Angeles-based cybersecurity company has identified an active a zero-day vulnerability in the TP-Link device with model number TL-XVR1800L (Enterprise AX1800 Dual Band Gigabit Wi-Fi 6 Wireless VPN Router), which is primarily suited to enterprises.

IoT 141

IoT Wireless DDOS VPN 141

Security Affairs

NOVEMBER 18, 2021

A joint advisory released by government agencies (the FBI, the Cybersecurity and Infrastructure Security Agency (CISA), the Australian Cyber Security Centre (ACSC), and the United Kingdom’s National Cyber Security Centre (NCSC)) in the U.S., as well as Australian organizations.

Healthcare 89

Healthcare Government VPN Accountability 89

Security Affairs

NOVEMBER 2, 2021

Cybersecurity researchers warn of a now-patched critical remote code execution (RCE) vulnerability, tracked as CVE-2021-22205 , in GitLab’s web interface that has been actively exploited in the wild. It is now mitigated in the latest release and is assigned CVE-2021-22205.” Pierluigi Paganini.

Internet 129

Internet Internet VPN Hacking 129

Security Affairs

JANUARY 26, 2023

cybersecurity and intelligence authorities. The Hive ransomware operation has been active since June 2021 , it provides Ransomware-as-a-Service Hive and adopts a double-extortion model threatening to publish data stolen from the victims on their leak site (HiveLeaks).

Ransomware 92

Ransomware VPN Manufacturing Healthcare 92

Security Affairs

SEPTEMBER 19, 2021

The popular whistleblower Edward Snowden recommends customers of ExpressVPN VPN service to stop using it. Last week the Israeli cybersecurity firm Kape Technologies has acquired the industry’s leading virtual private networks ExpressVPN, as part of a $936 million deal. link] — Edward Snowden (@Snowden) September 16, 2021.

Surveillance 143

Surveillance VPN Hacking Cybersecurity 143

Security Affairs

JULY 18, 2021

Read more at [link] #Cybersecurity #InfoSec #Ransomware — US-CERT (@USCERT_gov) July 15, 2021. Upgrade to the newest SonicWall firmware and disconnect EOL SonicWall appliances ASAP. Failing to follow SonicWall guidance may lead to targeted ransomware attacks. ” reported BleepingComputer. ” reported BleepingComputer.

Ransomware 115

Ransomware Firmware Mobile InfoSec 115

Malwarebytes

FEBRUARY 22, 2023

DNA Diagnostics Center (DDC), an Ohio-based private DNA testing company, last week reached a settlement deal with the Ohio and Pennsylvania state attorneys general in relation to a 2021 breach that saw the theft of 45,000 residents ' personal details. Overall the attack compromised over 2.1 This triggered the company's incident response plan.

Penetration Testing 88

Penetration Testing InfoSec Accountability Authentication 88

Security Affairs

JUNE 4, 2021

A vulnerability was discovered under Pulse Connect Secure (PCS). The vendor also released a tool that can scan Pulse Secure VPN servers for signs of compromise for CVE-2021-22893 or other previous vulnerabilities. In all the intrusions, the attackers targeted Pulse Secure VPN appliances in the breached networks. “In

VPN 75

VPN Government Hacking Authentication 75

eSecurity Planet

MAY 20, 2024

It’s also possible that your VPN app will automatically disable the VPN once your device connects to a supposedly trusted Wi-Fi network, according to the researchers at Top10VPN. Use always-active VPN connections and never reuse the same credentials for an SSID.

VPN 62

VPN Firmware Malware Software 62

Security Affairs

FEBRUARY 26, 2022

Cybersecurity researchers from Palo Alto Networks’ Unit 42 have analyzed a previously undocumented and custom backdoor tracked as SockDetour that targeted U.S.-based According to Microsoft DEV-0322 is an APT group based in China, which employed commercial VPN solutions and compromised consumer routers in their attacker infrastructure.

Backups 91

Backups VPN Healthcare Malware 91

Security Affairs

SEPTEMBER 3, 2021

.” The PIN provides a series of examples of ransomware attacks impacting food and agriculture sector businesses, such as an attack that took place in January 2021 against an identified US farm that resulted in losses of approximately $9 million due to the disruption of the farming operations. Consider installing and using a VPN.

Ransomware 97

Ransomware Passwords Backups Firmware 97

Security Affairs

MAY 27, 2022

In May 2021, cybercriminals offered more than 36,000 login credentials for.edu email accounts and advertised the data on an instant messaging platform. In May 2021, over 36,000 email and password combinations for.edu email accounts were offered for sale on a publically available instant messaging platform.

Cybercrime 130

Cybercrime Education Accountability Phishing 130

Security Affairs

AUGUST 17, 2021

Such kinds of devices should only be reachable only via trusted, internal networks or a secure VPN connection. The post Fortinet FortiWeb OS Command Injection allows takeover servers remotely appeared first on Security Affairs. is expected to include a fix, and will be released at the end of August. Pierluigi Paganini.

Authentication 98

Authentication VPN Internet Internet 98

Security Affairs

JANUARY 23, 2022

Every week the best security articles from Security Affairs free for you in your email box. If you want to also receive for free the newsletter with the international press subscribe here. from the Lympo NTF platform.

VPN 79

VPN Ransomware Spyware DDOS 79

Security Affairs

JULY 13, 2021

NetBlocks reported partial disruption to social media and messaging platforms in Cuba from 12 July 2021 shortly after Cubans went to the streets to protest the government. VPN services have yet to be blocked in the country, allowing citizens to bypass internet censorship. Source Fox News. .”

Media 93

Media Government Internet Internet 93

Security Affairs

MARCH 19, 2022

The Federal Bureau of Investigation (FBI) published a joint cybersecurity advisory warning of AvosLocker ransomware attacks targeting multiple US critical infrastructure. Only use secure networks and avoid using public Wi-Fi networks. Consider installing and using a VPN. Focus on cyber security awareness and training.

Ransomware 97

Ransomware DDOS Passwords Backups 97