Security Affairs

AUGUST 20, 2021

The Internet Systems Consortium (ISC) addressed a high-severity denial-of-service (DoS) flaw (CVE-2021-25218) affecting the BIND DNS software. Cybersecurity and Infrastructure Security Agency (CISA) has published a security advisory to warn of this vulnerability. S1 of the BIND Supported Preview Edition.

DNS 104

DNS Internet Internet Software 104

Security Affairs

JUNE 22, 2021

DirtyMoe is a Windows botnet that is rapidly growing, it passed from 10,000 infected systems in 2020 to more than 100,000 in the first half of 2021. The module that implements the warm capabilities was spotted scanning the internet and performing password brute-force attacks against Windows systems with SMB port open online.

DNS 136

DNS Cryptocurrency Internet Internet 136

Security Affairs

JUNE 4, 2021

Hackers are actively scanning the Internet for VMware vCenter servers vulnerable against a critical RCE flaw recently fixed by VMware. Threat actors are actively scanning the Internet for VMware vCenter servers affected by a critical remote code execution (RCE) vulnerability tracked as CVE-2021-21985. Pierluigi Paganini.

Internet 136

Internet Internet Ransomware Encryption 136

Security Affairs

MAY 23, 2021

The wormable CVE-2021-31166 vulnerability in the HTTP Protocol Stack of the Windows IIS server also affects WinRM on Windows 10 and Server systems. This really expands the number of vulnerable systems, although no one would intentionally put that service on the internet. — Jim DeVries (@JimDinMN) May 19, 2021.

Firewall 128

Firewall Engineering Internet Internet 128

Security Boulevard

DECEMBER 14, 2021

Our thanks to BSides Tallinn for publishing their outstanding choices of the Best of BSides 2021 videos on the Conferences’ YouTube channel. The post BSides Tallinn’s ‘Best Of BSides 2021’: BSides Berlin 2021 – Aditya K.

IoT 40

IoT Internet Internet Education 40

Google Security

JUNE 3, 2022

Posted by Harshvardhan Sharma, Information Security Engineer, Google 2021 was another record-breaking year for our Vulnerability Rewards Program (VRP). 2021 saw some amazing work from the security research community. We paid a total of $8.7 million in rewards, our highest amount yet.

Engineering 131

Engineering Authentication Internet Internet 131

Security Affairs

JUNE 9, 2023

Researchers discovered that the Clop ransomware gang was looking for a zero-day exploit in the MOVEit Transfer since 2021. Kroll security experts discovered that the Clop ransomware gang was looking for a zero-day exploit in the MOVEit Transfer since 2021. ” reads the analysis published by the security firm.

Ransomware 88

Ransomware Hacking Retail Internet 88

Krebs on Security

JUNE 8, 2021

Among the zero-days are: – CVE-2021-33742 , a remote code execution bug in a Windows HTML component. – CVE-2021-31955 , an information disclosure bug in the Windows Kernel. – CVE-2021-31956 , an elevation of privilege flaw in Windows NTFS.

Backups 308

Backups Cyber threats Ransomware Phishing 308

Security Affairs

SEPTEMBER 14, 2021

Microsoft Patch Tuesday security updates for September 2021 addressed a high severity zero-day flaw actively exploited in targeted attacks. The flaw, tracked as CVE-2021-40444 , resides in the MSHTML, which is the main HTML component of the Windows Internet Explorer browser, it is also used in other applications.

DNS 99

DNS Internet Internet Hacking 99

Security Boulevard

MARCH 28, 2021

Many thanks to USENIX Enigma 2021 for publishing these outstanding conference videos on the YouTube USENIX Channel ; don't miss this erudite 27 video information & cybersecurity event. The post USENIX Enigma 2021 – Marcus Botacin’s ‘Does Your Threat Model Consider Country And Culture?

Banking 57

Banking Internet Internet Cybersecurity 57

Security Affairs

AUGUST 7, 2021

Threat actors are actively exploiting a critical authentication bypass issue (CVE-2021-20090 ) affecting home routers with Arcadyan firmware. Threat actors actively exploit a critical authentication bypass vulnerability, tracked as CVE-2021-20090 , impacting home routers with Arcadyan firmware to deploy a Mirai bot.

IoT 142

IoT Firmware Authentication Wireless 142

Security Boulevard

MARCH 31, 2021

roundup of UK focused Cyber and Information Security News, Blog Posts, Reports and general Threat Intelligence from the previous calendar month, March 2021. FatFace CEO Liz Evans released a statement which said “ On 17th January 2021 FatFace identified some suspicious activity within its IT systems.

Energy and Utilities 120

Energy and Utilities Ransomware Banking Hacking 120

Security Affairs

DECEMBER 19, 2022

The Glupteba botnet is back, researchers reported a surge in infection worldwide after Google disrupted its operation in 2021. In December 2021, Google announced it has taken down the infrastructure operated by the Glupteba botnet, it also sued Russian nationals Dmitry Starovikov and Alexander Filippov for creating and operating the botnet.

DNS 103

DNS Antivirus Cryptocurrency Software 103

SC Magazine

MAY 1, 2021

For 2021, the judges took on a record number of submissions, identifying which products, people and companies stood out during a tumultuous year. Click here to see the full list of 2021 SC Award finalists. She also served as the deputy chief information officer of the White House.

Computers and Electronics 126

Computers and Electronics Technology Education Information Security 126

Security Boulevard

MARCH 21, 2021

Many thanks to USENIX Enigma 2021 for publishing these outstanding conference videos on the YouTube USENIX Channel ; don't miss this erudite 27 video information & cybersecurity event. The post USENIX Enigma 2021 – Marcus Botacin’s ‘Does Your Threat Model Consider Country And Culture?

Banking 60

Banking Internet Internet Cybersecurity 60

Security Affairs

NOVEMBER 11, 2021

Palo Alto Networks disclosed a critical remote code execution vulnerability, tracked as CVE-2021-3064 , in its GlobalProtect portal and gateway interfaces. “CVE-2021-3064 is a buffer overflow that occurs while parsing user-supplied input into a fixed-length location on the stack. 2021-11-10: This report was published.

VPN 112

VPN Firewall Internet Internet 112

Daniel Miessler

MAY 19, 2021

Even the median random organization with an internet presence has 17 internet-facing assets. Even the median random organization with an internet presence has 17 internet-facing assets. But it turns out, most of that data is from lost phones, so it doesn’t appear major afterall.

Data breaches 192

Data breaches Social Engineering Ransomware Phishing 192

Security Affairs

MAY 22, 2024

According to the researchers, the malware campaign targeting MS Exchange Server has been active since at least 2021. The threat actors exploited the ProxyShell vulnerabilities ( CVE-2021-34473 , CVE-2021-34523 , and CVE-2021-31207 ) in Microsoft Exchange Server to inject an info stealer.

Malware 124

Malware Accountability Technology Internet 124

Cisco Security

AUGUST 12, 2021

Cisco Secure returned as a supporting partner of the Black Hat USA 2021 Network Operations Center (NOC) for the 5 th year ; joining conference producer Informa Tech and its other security partners. SECURITY CATEGORY (PHISHING). Date & Time: Aug 5, 2021 at 6:32 AM. app.nihaocloud[.]com. Event Details (1 of 2).

DNS 137

DNS Firewall Phishing Mobile 137

Security Affairs

DECEMBER 15, 2021

Microsoft December 2021 Patch Tuesday addresses 67 vulnerabilities, including an actively exploited Windows Installer vulnerability. One of the vulnerabilities fixed by Microsoft, tracked as CVE-2021-43890 , is under active exploitation. Yes No EoP CVE-2021-43883 Windows Installer Elevation of Privilege Vulnerability Important 7.1

IoT 105

IoT Mobile Media Encryption 105

Security Affairs

SEPTEMBER 2, 2021

Threat actors were spotted exploiting the CVE-2021-26084 vulnerability in Atlassian’s Confluence enterprise collaboration product a few days after it was patched by the vendor. Last week, Atlassian released security patches to address the critical CVE-2021-26084 flaw that affects the Confluence enterprise collaboration product.

Authentication 101

Authentication Internet Internet Hacking 101

Security Affairs

DECEMBER 8, 2021

The Mirai -based Moobot botnet is rapidly spreading by exploiting a critical command injection flaw, tracked as CVE-2021-36260 , in the webserver of several Hikvision products. The Moobot was first documented by Palo Alto Unit 42 researchers in February 2021, the recent attacks demonstrated that its authors are enhancing their malware.

Firmware 130

Firmware DDOS Malware IoT 130

Daniel Miessler

DECEMBER 18, 2021

From the Apache advisory: It was found that the fix to address CVE-2021-44228 in Apache Log4j 2.15.0 Just to point out to those panicking about this right now: this is a very uncommon situation to be vulnerable from this cve in a “readily exploitable from the internet” way. And the internet moves fast. The bypasses of 2.15

Internet 363

Internet Internet Information Security 363

Thales Cloud Protection & Licensing

FEBRUARY 9, 2021

Celebrating Safer Internet Day: Surviving Lockdowns Edition. Tue, 02/09/2021 - 10:06. This year’s celebration of the Safer Internet Day comes at a time when people are exercizing social distancing measures to help contain the pandemic. The theme of the day, “Together for a better internet”, couldn’t be more appropriate.

Internet 71

Internet Internet Engineering Risk 71

Security Affairs

JANUARY 26, 2023

Experts warn of a spike in the attacks that between August and October 2022 attempted to exploit a Realtek Jungle SDK RCE (CVE-2021-35394). Palo Alto Networks researchers reported that between August and October 2022 the number of attacks that attempted to exploit a Realtek Jungle SDK RCE ( CVE-2021-35394 ) (CVSS score 9.8)

DDOS 97

DDOS IoT Manufacturing Malware 97

Security Affairs

JUNE 13, 2021

The Anti-Phishing Working Group (APWG) revealed that the number of phishing websites peaked at record levels in the first quarter of 2021. The Anti-Phishing Working Group (APWG) has published its new Phishing Activity Trends Report related to the first quarter of 2021. Reported Phishing Websites for Q1 2021.

Phishing 110

Phishing Advertising Cryptocurrency Encryption 110

Security Affairs

SEPTEMBER 22, 2021

CVE-2021-40847 flaw in Netgear SOHO routers could be exploited by a remote attacker to execute arbitrary code as root. Security experts from consulting firm GRIMM have discovered a vulnerability in Small Offices/Home Offices (SOHO) Netgear routers that could be exploited by a remote attacker to execute arbitrary code as root.

DNS 131

DNS Firmware VPN Risk 131

Security Affairs

OCTOBER 30, 2021

INTERPOL published the African Cyberthreat Assessment Report 2021, a report that analyzes evolution of cybercrime in Africa. A new report published by INTERPOL, titled the African Cyberthreat Assessment Report 2021 , sheds the light on cybercrime in Africa. SecurityAffairs – hacking, African Cyberthreat Assessment Report 2021).

Cybercrime 77

Cybercrime Scams DDOS Banking 77

Security Affairs

FEBRUARY 10, 2022

The FBI reported that US citizens have lost more than $68 million to SIM swapping attacks in 2021, the number of complaints since 2018 and associated losses have increased almost fivefold. In 2021, IC3 received 1,611 SIM swapping complaints with adjusted losses of more than $68 million.” Pierluigi Paganini.

Mobile 98

Mobile Cryptocurrency Authentication Accountability 98

McAfee

JUNE 15, 2021

The McAfee team is very proud to announce that, for the third year in a row, McAfee was named a 2021 Gartner Peer Insights Customers’ Choice for Secure Web Gateways for its Web Solution. McAfee Secure web gateway provides the optimum security required for the employees of the Bank surfing the Internet.

Marketing 99

Marketing Manufacturing Healthcare Banking 99

Daniel Miessler

MARCH 24, 2021

This post is an attempt to create an easy-to-use security model for the average internet user. Basically, how secure is someone’s current behavior with respect to passwords and authentication, and how can they improve? Mar 24, 2021 — Thanks to Andrew R. People like moving up rankings, so let’s use that!

Authentication 363

Authentication Passwords Internet Internet 363

CyberSecurity Insiders

OCTOBER 1, 2021

SALT LAKE CITY–( BUSINESS WIRE )– Venafi , the inventor and leading provider of machine identity management, today announced that the company’s Trust Protection Platform won the “Identity Management Platform of the Year” award in the 2021 CyberSecurity Breakthrough Awards. For more information, visit: www.venafi.com.

Cybersecurity 52

Cybersecurity Digital transformation IoT Marketing 52

Security Affairs

AUGUST 10, 2020

Registry Expiry Date: 2021-03-26T23:59:59.0Z There are several aspects of the Internet blocking in Myanmar that raise questions. Internet blocking is normally requested by the Ministry of Transport and Communication, but in order to force operators to implement the blocking, a legal decree is required. Domain Name: URLBLOCKED.PW

Internet 82

Internet Internet Telecommunications DNS 82

Security Affairs

MARCH 30, 2024

The seller, who goes online with the moniker MajorNelson, claims that the data was obtained from an unnamed AT&T division by @ ShinyHunters in 2021. It should be noted before anyone hits us with an “aktschually” – the data was stolen in 2021. The archive contains 73.481.539 records. “It It was leaked online today.”

Data breaches 137

Data breaches Telecommunications Cybercrime Hacking 137

Security Affairs

FEBRUARY 2, 2024

. “As part of a detailed study of the cyber threat, a study of the received samples of malicious programs was conducted, the peculiarities of the functioning of the management server infrastructure were established, and more than 2,000 affected computers were identified in the Ukrainian segment of the Internet.”

Malware 106

Malware Internet Internet DDOS 106

eSecurity Planet

MAY 3, 2022

Researchers at Singapore-based cybersecurity company Group-IB recently discovered thousands of databases exposed to the internet that could have been exploited when they were left unprotected. From Q1 2021 to Q1 2022, the team discovered 399,200 exposed databases due to those efforts. Expectations for Security Breaches Run High .

Social Engineering 128

Social Engineering Internet Internet Risk 128

Security Boulevard

FEBRUARY 1, 2021

A roundup of UK focused Cyber and Information Security News, Blog Posts, Reports and general Threat Intelligence from the previous calendar month, January 2021. Cyber Security Careers Advice. I also updated the Cyber Security Careers Advice page on The IT Security Expert website. Stay safe and secure.

Artificial Intelligence 57

Artificial Intelligence Ransomware Education Cybersecurity 57