Security Affairs

JANUARY 13, 2024

Akira ransomware targets Finnish organizations GitLab fixed a critical zero-click account hijacking flaw Juniper Networks fixed a critical RCE bug in its firewalls and switches Vast Voter Data Leaks Cast Shadow Over Indonesia ’s 2024 Presidential Election Researchers created a PoC for Apache OFBiz flaw CVE-2023-51467 Team Liquid’s wiki leak exposes (..)

VPN 120

VPN Cybercrime Ransomware Hacking 120

Security Affairs

APRIL 2, 2020

Microsoft is sending notifications to dozens of hospitals about vulnerable VPN devices and gateways exposed online in their network. Microsoft is warning dozens of hospitals of the risks of ransomware attacks due to insecure VPN devices and gateways exposed online. ” reads the post published by Microsoft.

Ransomware 115

Ransomware VPN Healthcare Cyber Attacks 115

Security Affairs

OCTOBER 9, 2023

The company added that successful exploitation requires that the appliance is configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) OR AAA virtual server. The attackers exploited the flaw to inject a malicious Javascript into the device “index.html” login page.

VPN 123

VPN Authentication Cyber Attacks Passwords 123

Webroot

OCTOBER 1, 2024

Designed to trick you into giving up your personal and financial information, knowledge is power when identifying what is real and what is in fact, fake. Research from Deloitte found that 91% of all cyber attacks begin with a phishing email. noreply@yourbank.com.)

Security Awareness 85

Security Awareness Backups Passwords Password Management 85

Security Affairs

NOVEMBER 11, 2021

Iranian nation-state actors are attempting to buy info available for sale in the cybercrime underground to launch attacks against US organizations. US organizations whose data was stolen and leaked online in the past are at risk of cyber attacks that are orchestrated by an unnamed Iran-linked threat actor. Pierluigi Paganini.

VPN 103

VPN Cybercrime Passwords Firewall 103

Security Affairs

NOVEMBER 14, 2022

.” According to the alert, the Ukrainian organization was initially breached by a relevant access broker that then transferred the compromised data to the FRwL group that used it to carry out a cyber attack.

Ransomware 93

Ransomware Computers and Electronics VPN Malware 93

Security Affairs

MAY 26, 2022

The flaw could allow an attacker to downgrade from two-factor authentication to one-factor authentication via an IPsec VPN client. According to the advisory published by the vendor, the issues affect USG/ZyWALL, USG FLEX, ATP, VPN, NSG firewalls, NXC2500 and NXC5500 AP controllers, and NAP, NWA, WAC, and WAX Access Point families.

Firewall 132

Firewall VPN Authentication Cyber Attacks 132

The Last Watchdog

DECEMBER 13, 2020

Gartner refers to this as the Secure Access Service Edge (SASE), which is a framework combining the functionality of Wide Area Network (WAN) with network security services to shield against any cyber threats or cloud-enabled SaaS. However deploying VPNs on a wide-scale basis introduces performance and scalability issues.

IoT 214

IoT B2C B2B VPN 214

Security Affairs

MAY 27, 2022

. “The FBI is informing academic partners of identified US college and university credentials advertised for sale on online criminal marketplaces and publically accessible forums. Crooks obtain the information by conducting spear-phishing and ransomware attacks, or other means.

Cybercrime 141

Cybercrime Education Accountability Phishing 141

Security Affairs

MAY 4, 2023

In 2022, the Russian APT used multiple wipers in attacks aimed at Ukraine, including AwfulShred , CaddyWiper , HermeticWiper , Industroyer2 , IsaacWiper , WhisperGate , Prestige , RansomBoggs , and ZeroWipe. The threat actors allegedly obtained access to Ukraine’s public networks by using compromised VPN credentials.

VPN 96

VPN Education Accountability Cyber Attacks 96

Security Affairs

JANUARY 21, 2024

Patch it now! million cryptojacking scheme arrested in Ukraine Cybercrime Cryptojacker arrested in Ukraine over EUR 1.8

Artificial Intelligence 112

Artificial Intelligence VPN Hacking Firewall 112

Security Affairs

OCTOBER 15, 2020

Bookstore giant Barnes & Noble has disclosed a cyber attack and that the threat actors have exposed the customers’ data. ” BleepingComputer confirmed that the company was hit by a cyber attack on October 10th, 2020, and cited as a source an email sent to customers late Wednesday night that is has seen.

Cyber Attacks 120

Cyber Attacks VPN Backups Ransomware 120

Security Affairs

OCTOBER 18, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

VPN 92

VPN Advertising Surveillance Ransomware 92

Security Affairs

OCTOBER 25, 2022

On October 14, Tata Power, India’s largest power generation company, announced that was hit by a cyber attack. Threat actors hit the Information Technology (IT) infrastructure of the company. The company confirmed that the security breach impacted “some of its IT systems.”. key files.

Ransomware 99

Ransomware Data breaches Cyber Attacks Engineering 99

Security Affairs

OCTOBER 3, 2021

Threat actors exploit a flaw in Coinbase 2FA to steal user funds Flubot Android banking Trojan spreads via fake security updates Th Tim’s RED Team Research reports 3 new CVEs, two of which in 4G/5G Baby died at Alabama Springhill Medical Center due to cyber attack Hydra Android trojan campaign targets customers of European banks Neiman Marcus discloses (..)

Banking 53

Banking Data breaches Malware VPN 53

Security Affairs

DECEMBER 3, 2023

Zyxel addressed tens of vulnerabilities that expose users to cyber attacks, including command injection and authentication bypass. Taiwanese vendor Zyxel addressed tens of vulnerabilities in its firewalls and access points.

Firewall 118

Firewall Authentication VPN Cyber Attacks 118

Security Affairs

JANUARY 23, 2022

from the Lympo NTF platform. from the Lympo NTF platform.

VPN 93

VPN Ransomware Spyware DDOS 93

Security Affairs

JUNE 4, 2021

The vendor also released a tool that can scan Pulse Secure VPN servers for signs of compromise for CVE-2021-22893 or other previous vulnerabilities. In all the intrusions, the attackers targeted Pulse Secure VPN appliances in the breached networks. “In reads the report published by FireEye.

VPN 88

VPN Government Hacking Authentication 88

Security Affairs

JULY 23, 2023

Researchers reported that more than 15000 Citrix servers exposed online are likely vulnerable to attacks exploiting the vulnerability CVE-2023-3519. The IT giant warns of the availability of exploits for this vulnerability that have been observed in attacks against unmitigated appliances. reads the report published by Citrix.

VPN 97

VPN Cyber Attacks Software Cybersecurity 97

Security Affairs

JUNE 20, 2021

New Device Fingerprint Spoofing Tool Available in Dark Web The source code of the Paradise Ransomware was leaked on XSS hacking forum Fujifilm restores operations after recent ransomware attack Cyberium malware-hosting domain employed in multiple Mirai variants campaigns A flaw in Peloton Bike+ could allow hackers to control it An international joint (..)

Data breaches 105

Data breaches DDOS Small Business Ransomware 105

Security Affairs

APRIL 19, 2024

China-linked threat actors are preparing cyber attacks against U.S. FBI Director Christopher Wray warned this week that China-linked threat actors are preparing an attack against U.S. critical infrastructure warned FBI Director Christopher Wray. critical infrastructure, Reuters reported.

Energy and Utilities 113

Energy and Utilities Telecommunications Technology Government 113

Security Affairs

DECEMBER 13, 2020

COVID-19 themed attacks October 1 – December 5, 2020 Drug dealers are selling Pfizer COVID vaccines on the darkweb LockBit Ransomware operators hit Swiss helicopter maker Kopter Police arrest two people over stealing sensitive data from defense giant A ransomware attack hit the Greater Baltimore Medical Center Cisco fixes exploitable RCEs in Cisco (..)

Computers and Electronics 97

Computers and Electronics VPN Hacking Ransomware 97

Security Affairs

JUNE 21, 2020

authorities sanction six Nigerian nationals for BEC and Romance Fraud. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

DDOS 101

DDOS Spyware Advertising Mobile 101

Security Affairs

AUGUST 2, 2023

Security researchers from the non-profit organization Shadowserver Foundation reported that hundreds of Citrix Netscaler ADC and Gateway servers have already been compromised as part of an ongoing campaign exploiting the critical remote code execution (RCE) vulnerability CVE-2023-3519. reads the report published by Citrix.

VPN 97

VPN Hacking Cyber Attacks Software 97

Security Affairs

APRIL 11, 2021

Clop Ransomware operators plunder US universities Malware attack on Applus blocked vehicle inspections in some US states 2,5M+ users can check whether their data were exposed in Facebook data leak 33.4%

Cyber Attacks 54

Cyber Attacks Firmware Malware Hacking 54

Security Affairs

MAY 28, 2023

On May 7, 2023, the Swiss multinational company, leading electrification and automation technology provider, suffered a cyber attack that reportedly impacted its business operations. Once discovered the security breach, ABB closed VPN connections with its customers to prevent the threat from spreading.

Data breaches 97

Data breaches Ransomware VPN Hacking 97

Security Affairs

JUNE 2, 2020

In May Elexon , a middleman in the UK power grid network, was the victim of a cyber attack, its systems have been infected with the Sodinokibi ransomware. We are advising you that today that ELEXON’s internal IT systems have been impacted by a cyber attack. reads a post published by the company on its website.

Ransomware 96

Ransomware Cyber Attacks Advertising Insurance 96

Security Affairs

NOVEMBER 29, 2020

A cyberattack crippled the IT infrastructure of the City of Saint John Hundreds of female sports stars and celebrities have their naked photos and videos leaked online Romanians arrested for running underground malware services Threat actor shared a list of 49,577 IPs vulnerable Fortinet VPNs Computer Security and Data Privacy, the perfect alliance (..)

Data breaches 98

Data breaches Social Engineering Ransomware Malware 98

Security Affairs

APRIL 28, 2020

This report focuses on the forensics of the attack in an attempt to attribute the attack. After reviewing the attack logs of the Denial of Service, Qurium could quickly determine that the attacker was using Fineproxy VPN service to build a botnet to flood the website. Article requested to be removed. Conclusion.

DDOS 111

DDOS Media VPN Advertising 111

Security Affairs

MARCH 10, 2022

A Telegram channel was used to coordinate the efforts and plan the cyber-attacks that will be conducted by the IT Army. “Opportunistic cybercriminals are attempting to exploit Ukrainian sympathizers by offering malware purporting to be offensive cyber tools to target Russian entities. ” continues the report.

DDOS 96

DDOS Malware Digital transformation Advertising 96

The Last Watchdog

MARCH 6, 2020

Corporate consultancy PwC’s recent poll of 1,600 CEOs worldwide found that cyber attacks are now considered the top hinderance to corporate performance, followed by the shortage of skilled workers and the inability to keep up with rapid tech advances. Awareness is a vital step forward, no doubt. But it’s only a baby step.

CISO 185

CISO VPN Digital transformation Internet 185

Security Affairs

DECEMBER 8, 2019

Ohio Election Day cyber attack attempt traced Russian-Owned Company. CyrusOne, one of the major US data center provider, hit by ransomware attack. The evolutions of APT28 attacks. CVE-2019-14899 flaw allows hijacking VPN connections on Linux, Unix systems. Twitter account of Huawei Mobile Brazil hacked.

Advertising 57

Advertising DDOS VPN Authentication 57

Security Affairs

AUGUST 4, 2020

The affiliates used to deliver the threat via brute-forcing attacks on RDP servers or exploiting known vulnerabilities in VPN servers and firewalls. Two of the most common vulnerabilities exploited by actors using Netwalker are Pulse Secure VPN (CVE-2019-11510) and Telerik UI (CVE-2019-18935).” continues the alert.

Ransomware 79

Ransomware VPN Cybercrime Advertising 79

SecureWorld News

SEPTEMBER 21, 2020

Germany's Federal Office for Information Security (BSI) says the attack occurred through a Citrix VPN vulnerability that has been known about since last year. The fact they gave decryption keys for free is either a sign they knew about the consequences of the attack or perhaps they did simply miss their target.

Ransomware 78

Ransomware Marketing VPN Healthcare 78

Security Affairs

OCTOBER 23, 2020

In at least one compromise, the APT actor laterally traversed an SLTT victim network and accessed documents related to sensitive network configurations and passwords, standard operating procedures (SOP), IT instructions, such as requesting password resets, vendors and purchasing information. printing access badges.

Government 129

Government Hacking Advertising Passwords 129

Security Affairs

MARCH 12, 2020

Security researchers Pierre Kim and Alexandre Torres have discovered several vulnerabilities Zyxel Cloud CNM SecuManager software that could expose users to cyber attacks. The experts have discovered 16 vulnerabilities, including default credentials to insecure memory storage and backdoors.

Accountability 91

Accountability Advertising Software Authentication 91

Security Affairs

SEPTEMBER 29, 2019

Privilege Escalation flaw found in Forcepoint VPN Client for Windows. TortoiseShell Group targets IT Providers in supply chain attacks. Czech Intelligence ‘s report attributes major cyber attack to China. Airbus suppliers were hit by four major attack in the last 12 months.

Data breaches 57

Data breaches Advertising Malware VPN 57