Accountability, Technology, Telecommunications and VPN

Russia-linked Sandworm APT compromised 11 Ukrainian telecommunications providers

Security Affairs

OCTOBER 17, 2023

Russia-linked APT group Sandworm has hacked eleven telecommunication service providers in Ukraine between since May 2023. The Russia-linked APT group Sandworm (UAC-0165) has compromised eleven telecommunication service providers in Ukraine between May and September 2023, reported the Ukraine’s Computer Emergency Response Team (CERT-UA).

Telecommunications

Telecommunications Authentication Data collection Passwords

Threat actors exploit Ivanti VPN bugs to deploy KrustyLoader Malware

Security Affairs

JANUARY 31, 2024

Threat actors are exploiting recently disclosed zero-day flaws in Ivanti Connect Secure (ICS) VPN devices to deliver KrustyLoader. “Rust payloads detected by Volexity team turn out to be pretty interesting Sliver downloaders as they were executed on Ivanti Connect Secure VPN after the exploitation of CVE-2024-21887 and CVE-2023-46805.

VPN

VPN Malware Authentication Small Business

Experts warn of mass exploitation of Ivanti Connect Secure VPN flaws

Security Affairs

JANUARY 16, 2024

Experts warn that recently disclosed Ivanti Connect Secure VPN and Policy Secure vulnerabilities are massively exploited in the wild. Through forensic analysis of the memory sample, Volexity was able to recreate two proof-of-concept exploits that allowed full unauthenticated command execution on the ICS VPN appliance.

VPN

VPN Authentication Small Business Telecommunications

The War in Technology: A Digital Iron Curtain Goes Up

SecureWorld News

MARCH 10, 2022

We know that war has impacts on telecommunications, but what we've seen in Ukraine is on a different level.". WaPost : Depriving rivals of American-made technology also threatens the future global prospects of an industry that has driven U.S. Despite many VPNs being illegal in Russia, that is apparently happening.

Technology

Technology Internet Internet Telecommunications

Voice Phishers Targeting Corporate VPNs

Krebs on Security

AUGUST 19, 2020

But one increasingly brazen group of crooks is taking your standard phishing attack to the next level, marketing a voice phishing service that uses a combination of one-on-one phone calls and custom phishing sites to steal VPN credentials from employees. The employee phishing page bofaticket[.]com. Image: urlscan.io. ” SPEAR VISHING.

Phishing

Phishing VPN Social Engineering Media

FBI chief says China is preparing to attack US critical infrastructure

Security Affairs

APRIL 19, 2024

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors. The APT group is using almost exclusively living-off-the-land techniques and hands-on-keyboard activity to evade detection.

Energy and Utilities

Energy and Utilities Telecommunications Technology VPN

Lapsus$ extortion gang claims to have stolen sensitive data from Okta

Security Affairs

MARCH 22, 2022

” Todd McKinnon, CEO at Okta, confirmed that in late January 2022, the company detected an attempt to compromise the account of a third party customer support engineer working for one of its subprocessors. Their scope of interests includes – major telecommunications companies such as Claro, Telefonica and AT&T.

Telecommunications

Telecommunications Data breaches VPN Hacking

Lapsus$: The New Name in Ransomware Gangs

Security Boulevard

MARCH 15, 2022

It was the Expresso Twitter account that the hackers used to bait the organization to demonstrate their control over the company's IT infrastructure. Other targets include Brazil’s Ministry of Health (MoH) and Brazilian telecommunications operator Claro. Impresa owns the country's largest TV channel and newspaper, SIC and Expresso.

Ransomware

Ransomware Telecommunications Firmware Media

What is a Managed Security Service Provider? MSSPs Explained

eSecurity Planet

AUGUST 22, 2023

History of MSSPs As internet service providers (ISPs) and telecommunications companies (telecoms) began offering commercial access to the internet in the late 1990s, they began to also offer firewall appliances and associated managed services. Outsourcing U.S. companies may trust U.S.

Telecommunications

Telecommunications Firewall Penetration Testing Cybersecurity

A Deep Dive on the Recent Widespread DNS Hijacking Attacks

Krebs on Security

FEBRUARY 18, 2019

webmail.finance.gov.lb), which allowed them to decrypt the intercepted email and VPN credentials and view them in plain text. adpvpn.adpolice.gov.ae: VPN service for the Abu Dhabi Police. mail.cyta.com.cy: Cyta telecommunications and Internet provider, Cyprus. mail.asp.gov.al: email for Albanian State Police. Contacted on Feb.

DNS

DNS Internet Internet Government

It’s official, Lapsus$ gang compromised a Microsoft employee’s account

Security Affairs

MARCH 23, 2022

Microsoft has now confirmed that the attackers have compromised the account of one of its employees gaining limited access to source code repositories. Our investigation has found a single account had been compromised, granting limited access. No customer code or data was involved in the observed activities.

Accountability

Accountability VPN Social Engineering Hacking

APT10: sophisticated multi-layered loader Ecipekac discovered in A41APT campaign

SecureList

MARCH 30, 2021

The actor leveraged vulnerabilities in Pulse Connect Secure in order to hijack VPN sessions, or took advantage of system credentials that were stolen in previous operations. Log of the hijacking VPN session from DESKTOP-A41UVJV. Uses vulnerabilities in Pulse Connect Secure to hijack a VPN session. Valid Accounts.

Malware

Malware Encryption VPN Technology

Nobelium continues to target organizations worldwide with custom malware

Security Affairs

DECEMBER 6, 2021

NOBELIUM focuses on government organizations, non-government organizations (NGOs), think tanks, military, IT service providers, health technology and research, and telecommunications providers. The Nobelium cyberspies is using a new custom downloader tracked by the researchers as CEELOADER.

Malware

Malware VPN Telecommunications Accountability

Reassessing cyberwarfare. Lessons learned in 2022

SecureList

DECEMBER 14, 2022

For instance, according to the New York Times, in 2003, the United States made plans for a huge cyberattack to freeze billions of dollars in Saddam Hussein’s bank accounts and cripple his government before the invasion of Iraq. However, the plan was not approved because the government feared collateral damage.

DDOS

DDOS Ransomware Government Energy and Utilities

What Is Encryption? Definition, How it Works, & Examples

eSecurity Planet

DECEMBER 7, 2023

AES encryption can be commonly found in communication protocols, virtual private network (VPN) encryption, full-disk encryption, and Wi-Fi transmission protocols. For example, The Health Insurance Portability and Accountability Act (HIPAA) requires security features such as encryption to protect patients’ health information.

Encryption

Encryption Passwords IoT Firewall

Becoming an MSSP: Tools, Services & Tips for Managed Security Services

eSecurity Planet

FEBRUARY 9, 2022

According to Jay McBain, an analyst at Forrester Research, spending on IT and telecommunications will be worth about $7 trillion by 2030. 54% of ESG respondents stated that the primary drivers behind technology spending were strengthening of cybersecurity and improving resiliency against attacks. Competition is fierce.

Backups

Backups Firewall DDOS Antivirus

Group-IB Hi-Tech Crime Trends 2020/2021 report

Security Affairs

NOVEMBER 25, 2020

Group-IB’s report Hi-Tech Crime Trends 2020/2021 examines various aspects of cybercrime industry operations and predicts changes to the threat landscape for various sectors, namely the financial industry, telecommunications, retail, manufacturing, and the energy sector. downloaders), and new types of botnets (brute-force botnets). million.

Banking

Banking Ransomware Phishing Marketing

Top VC Firms in Cybersecurity of 2022

eSecurity Planet

APRIL 26, 2022

As a leading VC, BVP offers budding companies plenty to consider, with a set of roadmaps and tools for today’s technologies and market complexities. Notable cybersecurity exits for the company include AVG Technologies, Cognitive Security, OpenDNS, and Carbon Black. Also read : Addressing Remote Desktop Attacks and Security.

Cybersecurity

Cybersecurity Technology Marketing Healthcare

Cyber Security Informer

Russia-linked Sandworm APT compromised 11 Ukrainian telecommunications providers

Threat actors exploit Ivanti VPN bugs to deploy KrustyLoader Malware

Trending Sources

Experts warn of mass exploitation of Ivanti Connect Secure VPN flaws

The War in Technology: A Digital Iron Curtain Goes Up

Voice Phishers Targeting Corporate VPNs

FBI chief says China is preparing to attack US critical infrastructure

Lapsus$ extortion gang claims to have stolen sensitive data from Okta

Lapsus$: The New Name in Ransomware Gangs

What is a Managed Security Service Provider? MSSPs Explained

A Deep Dive on the Recent Widespread DNS Hijacking Attacks

It’s official, Lapsus$ gang compromised a Microsoft employee’s account

APT10: sophisticated multi-layered loader Ecipekac discovered in A41APT campaign

Nobelium continues to target organizations worldwide with custom malware

Reassessing cyberwarfare. Lessons learned in 2022

What Is Encryption? Definition, How it Works, & Examples

Becoming an MSSP: Tools, Services & Tips for Managed Security Services

Group-IB Hi-Tech Crime Trends 2020/2021 report

Top VC Firms in Cybersecurity of 2022

Stay Connected