Security Affairs

SEPTEMBER 6, 2022

today detected the security threat DEADBOLT leveraging exploitation of Photo Station vulnerability to encrypt QNAP NAS that are directly connected to the Internet. “We strongly urge that their QNAP NAS should not be directly connected to the Internet. . “QNAP Systems, Inc. ” reads the advisory published by the vendor.

Ransomware 84

Ransomware Internet Internet Encryption 84

SiteLock

AUGUST 27, 2021

The consequences of which are not only born by companies who are the primary targets of cybercrime. Simply defined, the internet of things (IoT) is a network of Internet-connected objects able to collect and exchange data. To help avoid these online risks, it is highly recommended to use a Virtual Private Network (VPN).

IoT 98

IoT Spyware VPN Passwords 98

SecureWorld News

OCTOBER 8, 2023

Turn off the internet connection if you will not be using it for an extended period. Use the administrator account only for maintenance, software installation, or firmware updates. Attention should be paid to protecting routers and updating their firmware. Ensure every device—from computers to smartphones—runs an updated OS.

Firmware 87

Firmware IoT Accountability Passwords 87

Security Affairs

DECEMBER 22, 2022

Microsoft Threat Intelligence Center (MSTIC) researchers discovered a new variant of the Zerobot botnet (aka ZeroStresser) that was improved with the capabilities to target more Internet of Things (IoT) devices. Maintain device health with updates: Make sure devices are up to date with the latest firmware and patches.

IoT 113

IoT DDOS Malware Firmware 113

Security Affairs

JULY 8, 2022

Preliminary investigation indicates that Checkmate attacks via SMB services exposed to the internet, and employs a dictionary attack to break accounts with weak passwords.” ……… “ The vendor recommends not exposing the SMB service to the internet and using VPN to access the NAS and reduce the attack surface.

Ransomware 92

Ransomware Encryption Passwords Internet 92

SecureList

NOVEMBER 14, 2022

A recent leak has put it in the hands of cybercrime actors and it is very likely that by the end of the year we will see it involved in APT cases too. Okta was breached through one of its service providers, Sitel, itself compromised via the insecure VPN gateway of a recently acquired company.

Firmware 111

Firmware Surveillance Mobile Telecommunications 111

SecureList

MAY 10, 2021

To prevent attacks via RDP, it is recommended to hide RDP servers behind a VPN or disable UDP port 3389. That said, a VPN is no panacea if it too is vulnerable to amplification attacks. In Q1 2021, for instance, attackers went after Powerhouse VPN servers. In some cases, they demonstrated impressive capabilities.

DDOS 103

DDOS Cryptocurrency Media Marketing 103

SecureList

OCTOBER 26, 2021

Historically, Lazarus used MATA to attack various industries for cybercrime-like intentions: stealing customer databases and spreading ransomware. The samples we analyzed mimicked various applications such as private messaging, VPN, and media services. Southeast Asia and Korean Peninsula.

Malware 143

Malware Government Surveillance Spyware 143

SecureList

DECEMBER 14, 2022

While the impact of these destructive cyber-attacks paled in comparison to the effects of the kinetic attacks taking place at the same time, it should be noted that this capability could in theory be directed against any country outside of the context of an armed conflict and under the pretense of traditional cybercrime activity.

DDOS 136

DDOS Ransomware Government Energy and Utilities 136