SecureList

MAY 27, 2022

MoonBounce: the dark side of UEFI firmware. Late last year, we became aware of a UEFI firmware-level compromise through logs from our firmware scanner (integrated into Kaspersky products at the start of 2019). Subsequently, DDoS attacks hit some government websites. Targeted attacks.

Phishing 128

Phishing Spyware Firmware Malware 128

SecureList

JULY 28, 2022

In late 2021, we encountered a malicious DXE driver incorporated into several UEFI firmware images that were flagged by our firmware scanner (integrated into Kaspersky products at the start of 2019). In January, Kimsuky, a prolific and active Korean-speaking threat actor, attacked a media company and a think-tank in South Korea.

Malware 145

Malware Firmware Phishing Cryptocurrency 145

Security Affairs

OCTOBER 13, 2020

The hacker exploited the vulnerability and used these IoT devices to launch a massive attack on social media platforms. Some of the major social media platforms, including Twitter, were down for a couple of hours. Nobody told them that their coffee machine could be hacked into or that their camera could be used to launch a DDoS attack.

IoT 144

IoT Cybersecurity Manufacturing Internet 144

SiteLock

AUGUST 27, 2021

This is exactly what happened on October 12, 2016, when the Mirai botnet used an army of IoT devices — like security cameras, digital video recorders (DVRs) and routers — to execute a massive distributed denial of service (DDoS) attack which left much of the internet inaccessible. What Can You Do to Protect Your Networked Devices?

IoT 98

IoT Spyware VPN Passwords 98

SecureList

NOVEMBER 14, 2023

In May, Ars Technica reported that BootGuard private keys had been stolen following a ransomware attack on Micro-Star International (MSI) in March this year (firmware on PCs with Intel chips and BootGuard enabled will only run if it is digitally signed using the appropriate keys).

Hacking 137

Hacking Energy and Utilities Malware Government 137

Digital Shadows

NOVEMBER 10, 2022

Fraudulent social media pages Talking about intangible assets, social media pages have become a central pillar for every organization’s communication strategy in the past ten years. Every day, millions of internet users visit their favorite social media pages to stay abreast of new releases, offers, and timely information.

Cyber threats 52

Cyber threats Media Social Engineering DDOS 52

ForAllSecure

OCTOBER 5, 2021

That would make this denial of service attack roughly twice as powerful as any similar previously recorded DDoS attack at the time. That said, there would not be any DDoS attack, and the targets, say, on the other hand, if you lock the traffic from the c&c server, you might not be infected. terabits per second.

IoT 52

IoT DDOS Malware Internet 52

SecureList

NOVEMBER 25, 2024

These attacks were extremely carefully orchestrated – to conduct them, Lazarus stole the source code of a cryptocurrency-related computer game, promoted social media accounts related to that game, and obtained access to a unique chain of zero-day exploits used to infect targets visiting the game website.

IoT 112

IoT Energy and Utilities Phishing Cryptocurrency 112

SecureList

NOVEMBER 26, 2021

We started detecting some suspicious backdoored installer packages (including TeamViewer, VLC Media Player and WinRAR); then in the middle of 2019 we found a host that served these installers along with FinSpy Mobile implants for Android. On top of its theft functions, the malware includes tools to thwart analysis.

Malware 129

Malware Banking Energy and Utilities Accountability 129

eSecurity Planet

MARCH 22, 2023

The smallest organizations can perform this through a visual inspection and a review of the media access control (MAC) addresses connected to the network. Automate Updates: Local network routers, firewalls, and other equipment can be set to automatically download new updates so that the devices and the firmware do not become vulnerable.

Firewall 108

Firewall Penetration Testing Network Security Encryption 108

SecureList

MAY 10, 2021

Botnet operators use infected devices to carry out DDoS attacks or mine cryptocurrency. In Q1 2021, cybercriminals also found a host of new tools for amplifying DDoS attacks. RDP servers listening on UDP port 3389 were used to amplify DDoS attacks. That said, a VPN is no panacea if it too is vulnerable to amplification attacks.

DDOS 138

DDOS Cryptocurrency Media Marketing 138

SecureList

DECEMBER 14, 2022

It directly affected satellite modems firmwares , but was still to be understood as of mid-March. Taking sides: professional ransomware groups, hacktivists, and DDoS attacks. DDoS attacks, in particular, require generating heavy network traffic that attackers typically cannot sustain for very long periods of time.

DDOS 145

DDOS Ransomware Government Energy and Utilities 145

Security Boulevard

FEBRUARY 28, 2021

UK media didn't report UK gym chain Total Fitness had been hit by a ransomware attack. DDoS Attacks Leverage Plex Media Server. SonicWall issues Firmware Patch after Attackers Exploited Critical Bugs. Total Fitness Ransomware Attack. Ransomware Group Claims it Dumped Source Code of Cyberpunk 2077 Game.

Energy and Utilities 145

Energy and Utilities Ransomware DDOS Accountability 145

eSecurity Planet

FEBRUARY 16, 2021

Attackers often use botnets to send out spam or phishing campaigns to carry out distributed denial of service (DDoS) attacks. As noted, spear phishing targets specific users or organizations by exploring social media, recording out-of-office notifications, compromising API tokens, and housing malicious data in the cloud. DDoS trojan.

Malware 105

Malware Adware Spyware Antivirus 105