Encryption, Information Security, Passwords and VPN

9 Possible Ways Hackers Can Use Public Wi-Fi to Steal Your Sensitive Data

Security Affairs

FEBRUARY 12, 2024

Public Wi-Fi users are prime targets for MITM attacks because the information they send is often not encrypted, meaning it’s easy for hackers to access your data. Once they’re in, they can grab your emails, usernames, passwords, and more. They might even lock you out of your own accounts by resetting your passwords.

DNS

DNS VPN Encryption Passwords

China-linked APT groups targets orgs via Pulse Secure VPN devices

Security Affairs

MAY 28, 2021

Researchers from FireEye warn that China-linked APT groups continue to target Pulse Secure VPN devices to compromise networks. In all the intrusions, the attackers targeted Pulse Secure VPN appliances in the breached networks. and Europe.” ” reads the report published by FireEye. and Europe.”

VPN

VPN Government Malware Hacking

Fortinet VPN with default certificate exposes 200,000 businesses to hack

Security Affairs

SEPTEMBER 25, 2020

According to SAM Seamless Network , over 200,000 businesses are using Fortigate VPN with default settings, exposing them to the risk of a hack. In response to the spreading of Coronavirus across the world, many organizations deployed VPN solutions, including Fortigate VPN, to allow their employers to work from their homes.

VPN

VPN Hacking IoT Advertising

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

GUEST ESSAY: Sure steps to achieve a robust employee cybersecurity awareness training regimen

The Last Watchdog

OCTOBER 24, 2022

Employee security awareness is the most important defense against data breaches. Related: Leveraging security standards to protect your company. It involves regularly changing passwords and inventorying sensitive data. As such, you should limit the amount of information that employees have access to. Use a corporate VPN.

Passwords

Passwords Security Awareness Data breaches Cybersecurity

Protecting Your Digital Identity: Celebrating Identity Management Day

Webroot

APRIL 3, 2024

Simply put, it’s the practice of ensuring that only authorized individuals have access to your sensitive information and online accounts. This encompasses everything from protecting your passwords to being vigilant against phishing scams and online fraud. But why dedicate an entire day to this?

VPN

VPN Passwords Scams Accountability

The Best Ways to Secure Communication Channels in The Enterprise Environment

CyberSecurity Insiders

DECEMBER 12, 2021

The channel’s security must be impenetrable. They generally get into your system by guessing the password, leveraging API loopholes, or exploiting bad codes. For a channel to be secure, it should be reliable and trustworthy. The Best Ways to Secure Communication Channels . You can share passwords and secret notes.

VPN

VPN Passwords Encryption Mobile

15 Cybersecurity Measures for the Cloud Era

Security Affairs

APRIL 8, 2022

Two-factor authentication is another important security measure for the cloud era. This means that in addition to your password, you will also need a second factor, such as a code from a key fob or a fingerprint, to access your data. Data encryption. In the cloud era, data encryption is more important than ever.

Cybersecurity

Cybersecurity Passwords Penetration Testing Encryption

Who and What is Behind the Malware Proxy Service SocksEscort?

Krebs on Security

JULY 25, 2023

Researchers this month uncovered a two-year-old Linux-based remote access trojan dubbed AVrecon that enslaves Internet routers into botnet that bilks online advertisers and performs password-spraying attacks. co and a VPN provider called HideIPVPN[.]com. SocksEscort began in 2009 as “ super-socks[.]com

Malware

Malware VPN Internet Internet

Bronze Starlight targets the Southeast Asian gambling sector

Security Affairs

AUGUST 18, 2023

Then the loaders retrieve a second-stage payload stored in password-protected ZIP archive from Alibaba buckets. “The [HUI] loader is executed through sideloading by legitimate executables vulnerable to DLL hijacking and stages a payload stored in an encrypted file.” ” reads the analysis published by SentinelOne.

VPN

VPN Malware Encryption Passwords

FBI published a flash alert on Mamba Ransomware attacks

Security Affairs

MARCH 26, 2021

The Federal Bureau of Investigation (FBI) issued an alert to warn that the Mamba ransomware is abusing the DiskCryptor open source tool to encrypt entire drives. Mamba ransomware is one of the first malware that encrypted hard drives rather than files that was detected in public attacks. ” reads the alert published by the FBI.

Ransomware

Ransomware Encryption Passwords Malware

Avoslocker ransomware gang targets US critical infrastructure

Security Affairs

MARCH 19, 2022

The AvosLocker ransomware-as-a-service emerged in the threat landscape in September 2021, since January the group expanded its targets by implementing the support for encrypting Linux systems, specifically VMware ESXi servers. Regularly back up data, password protect backup copies offline. Avoid reusing passwords for multiple accounts.

Ransomware

Ransomware DDOS Passwords Backups

16 Remote Access Security Best Practices to Implement

eSecurity Planet

AUGUST 22, 2023

Remote access security acts as something of a virtual barrier, preventing unauthorized access to data and assets beyond the traditional network perimeter. Keys, such as strong passwords, unique codes, or biometric scans, can be given to trusted individuals to access your resources from a distance.

Passwords

Passwords Authentication Encryption VPN

Dubai’s largest taxi app exposes 220K+ users

Security Affairs

DECEMBER 12, 2023

The volume of exposed data about the DTC drivers is impressive, as the database includes: Driving license number Work permit number Nationality Username Encrypted password Phone number According to the team, the MongoDB instance contained conversations with support totaling over 17K records, as well as complaints from customers.

VPN

VPN Accountability Banking Marketing

Everyday Threat Modeling

Daniel Miessler

SEPTEMBER 27, 2020

Example 2: Using a VPN. A lot of people are confused about VPNs. They think it’s giving them security that it isn’t because they haven’t properly understood the tech and haven’t considered the attack scenarios. If you log in at the end website you’ve identified yourself to them, regardless of VPN.

VPN

VPN Risk Hacking Encryption

New Checkmate ransomware target QNAP NAS devices

Security Affairs

JULY 8, 2022

The Taiwanese vendor QNAP is warning of a new family of ransomware targeting its NAS devices using weak passwords. Threat actors are targeting devices exposed online with the SMB service enabled, they perform brute-force attacks against accounts using weak passwords. All your data has been encrypted, backups have been deleted.

Ransomware

Ransomware Encryption Passwords Internet

LockBit Ransomware operators hit Swiss helicopter maker Kopter

Security Affairs

DECEMBER 6, 2020

The helicopter maker Kopter was hit by LockBit ransomware, the attackers compromised its internal network and encrypted the company’s files. LockBit ransomware operators told ZDNet that they have accessed the network of the helicopter maker via a VPN appliance that was poorly protected. ” reported ZDNet.

Ransomware

Ransomware VPN Encryption Authentication

Daixin Team targets health organizations with ransomware, US agencies warn

Security Affairs

OCTOBER 22, 2022

The Daixin Team group gains initial access to victims through virtual private network (VPN) servers. In one successful attack, the attackers likely exploited an unpatched vulnerability in the organization’s VPN server. In another compromise, the group leveraged on compromised credentials to access a legacy VPN server.

Ransomware

Ransomware VPN Cybercrime Accountability

FBI warns of ransomware attacks targeting the food and agriculture sector

Security Affairs

SEPTEMBER 3, 2021

“Cyber criminal threat actors exploit network vulnerabilities to exfiltrate data and encrypt systems in a sector that is increasingly reliant on smart technologies, industrial control systems, and internet-based automation systems. Avoid reusing passwords for multiple accounts. Consider installing and using a VPN.

Ransomware

Ransomware Passwords Backups Firmware

DepositFiles exposed config file, jeopardizing user security

Security Affairs

JULY 27, 2023

DepositFiles’ clients are at risk of their personally identifiable information, files, and passwords being stolen. Payment service credentials, including username, password, and endpoint, were also exposed via the config file. researchers said.

Data breaches

Data breaches VPN Media Passwords

FBI issued an alert on Ragnar Locker ransomware activity

Security Affairs

NOVEMBER 23, 2020

“The FBI first observed Ragnar Locker1ransomwarein April 2020, when unknown actors used it to encrypt a large corporation’s files for an approximately $11 million ransom and threatened to release 10 TB of sensitive company data,” reads the flash alert. Only use secure networks and avoid using public Wi-Fi networks.

Ransomware

Ransomware Encryption VPN Backups

QNAP users are recommended to disable UPnP port forwarding on routers

Security Affairs

APRIL 19, 2022

UPnP is an insecure protocol, it uses network UDP multicasts, and doesn’t support encryption and authentication. ” The vendor also recommends enabling the VPN server function on the user router to access QNAP NAS from the Internet. Only use encrypted HTTPS or other types of secure connections (SSH, etc.).

VPN

VPN Internet Internet Firewall

FIN8-linked actor targets Citrix NetScaler systems

Security Affairs

AUGUST 29, 2023

Citrix reported that successful exploitation requires that the appliance is configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) OR AAA virtual server. The attackers obtained encrypted passwords from NetScaler ADC configuration files, and the decryption key was stored on the ADC appliance.

VPN

VPN Ransomware DNS Malware

FBI warns of increase in PYSA ransomware attacks targeting education

Malwarebytes

MARCH 17, 2021

PYSA, aka Mespinoza, is a malware capable of exfiltrating data and encrypting users’ critical files and data stored on their systems. The threat actors deactivate security protection on the network, exfiltrate files, and upload the stolen data to Mega.nz, a cloud-storage and file-sharing service. Consider installing and using a VPN.

Education

Education Ransomware Phishing Passwords

Threat spotlight: Conti, the ransomware used in the HSE healthcare attack

Malwarebytes

MAY 28, 2021

The files are then held for ransom and the victim is threatened by data loss, because of the encryption, and leaking of the exfiltrated data. Files are encrypted with a combination of AES-256 and RSA-4096 via the Microsoft CryptoAPI , as per CrowdStrike. Earlier versions appended the.CONTI extension to encrypted files.

Healthcare

Healthcare Ransomware Encryption Passwords

Attackers use a new CoronaVirus Ransomware to cover Kpot Infostealer infections

Security Affairs

MARCH 17, 2020

The website was distributing a file named WSHSetup.exe, it is the downloader for both the CoronaVirus Ransomware and the Kpot password-stealer. exe,’ which is the Kpot password-stealing Trojan. The filename of the encrypted files will be changed to the attacker’s email address (i.e. jpg ‘).

Ransomware

Ransomware Cryptocurrency Advertising Passwords

3CX Breach Was a Double Supply Chain Compromise

Krebs on Security

APRIL 20, 2023

Mandiant found the earliest evidence of compromise uncovered within 3CX’s network was through the VPN using the employee’s corporate credentials, two days after the employee’s personal computer was compromised. The double supply chain compromise that led to malware being pushed out to some 3CX customers.

Malware

Malware Software Technology Accountability

The Top Five Habits of Cyber-Aware Employees

CyberSecurity Insiders

JULY 21, 2021

But a survey conducted by Google and Harris found that many people still refuse to adopt even the most essential credential security measures: just 37 percent use two-factor authentication, around a third change their passwords regularly, and a mere 15 percent use a password manager. Know how to identify a phishing attack.

Social Engineering

Social Engineering Password Management Passwords Phishing

US CISA report shares details on web shells used by Iranian hackers

Security Affairs

SEPTEMBER 16, 2020

The Iranian hackers belong to an Iran-based threat actor that was behind attacks exploiting vulnerabilities in Pulse Secure VPN, Citrix Application Delivery Controller (ADC) and Gateway , and F5’s BIG-IP ADC products. The malware used by the threat actors includes the ChunkyTuna, Tiny, and China Chopper web shells.

VPN

VPN Passwords Advertising Password Management

5 Ways to Protect Yourself from IP Address Hacking

Security Affairs

AUGUST 20, 2019

VPN or Virtual Private Network is the most secure way of connecting with the online world. VPN also provides an encrypted tunnel for all your online activities and closes all doors for spies and cybercriminals. The only drawback is that many free VPNs are not secure as we think. Secure Your Router.

Hacking

Hacking VPN Internet Internet

The Dangers of Using Unsecured Wi-Fi Networks

Security Affairs

AUGUST 22, 2019

Data that travels over a public hotspot network is rarely encrypted. They can see the passwords you use, your email address, your name and physical address, phone numbers and any other type of personal information that you might happen to enter into a website. Except there’s a problem. Public Wi-Fi is notoriously insecure.

VPN

VPN Encryption Passwords Small Business

Which is the Threat landscape for the ICS sector in 2020?

Security Affairs

MARCH 22, 2021

Computers that use VPN software are less exposed to online threats, but unfortunately, they represent only 15% of the total. Such threats were blocked more often on computers with VPN software.” Restrict the use of USB devices to only those that are trusted and encrypted. Introduce password strength requirements.

Engineering

Engineering VPN Accountability Software

Shadowserver reported that +15K Citrix servers are likely vulnerable to attacks exploiting the flaw CVE-2023-3519

Security Affairs

JULY 23, 2023

The company added that successful exploitation requires that the appliance is configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) OR AAA virtual server. The attackers obtained encrypted passwords from NetScaler ADC configuration files, and the decryption key was stored on the ADC appliance.

VPN

VPN Cyber Attacks Software Cybersecurity

Top IT Areas You Need to Check to Strengthen Your Cybersecurity

CyberSecurity Insiders

SEPTEMBER 24, 2021

Even with high-level security measures, no one is safe from such threats. That is why most companies hire professional information security services to mitigate the risks arising from data breaches. Unsecured networks allow criminals to access sensitive files and steal information. Data Security. Security Systems.

Cybersecurity

Cybersecurity Data breaches Backups Firewall

NASA warns of a significant increase in cyber attacks during Coronavirus outbreak

Security Affairs

APRIL 8, 2020

“Some of their goals include accessing sensitive information, user names and passwords, conducting denial of service attacks, spreading disinformation, and carrying out scams,”. Below the list of suggestions included in the agency’s memo: Use the NASA VPN, prior to beginning to work. ” continues the memo.

Cyber Attacks

Cyber Attacks Computers and Electronics VPN Phishing

YouTube creators’ accounts hijacked with cookie-stealing malware

Security Affairs

OCTOBER 20, 2021

a demo for anti-virus software, VPN, music players, photo editing or online games) to hijack the channel of YouTube creators. “Most of the observed malware was capable of stealing both user passwords and cookies. Below are the job descriptions used to recruit the hackers. The hackers used fake collaboration opportunities (i.e.

Accountability

Accountability Malware Phishing Social Engineering

IoT Cybersecurity: 5 Major Vulnerabilities and How to Tackle Them

Security Affairs

OCTOBER 13, 2020

Simple or reused passwords are still a problem. While the cybersecurity industry has presented options for every netizen, the recommendation to use original and complex passwords continues to be disregarded. Instead, people come up with passwords that are comfortable. Improper encryption. Poor credentials.

IoT

IoT Cybersecurity Manufacturing Internet

19 petabytes of data exposed across 29,000+ unprotected databases

Security Affairs

MAY 7, 2021

Most organizations use databases to store sensitive information. This includes passwords, usernames, document scans, health records, bank account and credit card details, as well as other essential data, all easily searchable and conveniently stored in one place. Can’t come up with a strong password? What were we looking at?

Passwords

Passwords Authentication Identity Theft Engineering

Hackers already installed web shells on 581 Citrix servers in CVE-2023-3519 attacks

Security Affairs

AUGUST 2, 2023

The company added that successful exploitation requires that the appliance is configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) OR AAA virtual server. The attackers obtained encrypted passwords from NetScaler ADC configuration files, and the decryption key was stored on the ADC appliance.

VPN

VPN Hacking Cyber Attacks Software

U.S. Bookstore giant Barnes & Noble hit by cyberattack

Security Affairs

OCTOBER 15, 2020

2/2) Please be assured that there is no compromise of customer payment details which are encrypted and tokenized. Please be assured that there is no compromise of customer payment details, which are encrypted and tokenized.” 1/2 — NOOK (@nookBN) October 14, 2020. (2/2) Thank you for your patience.

Cyber Attacks

Cyber Attacks VPN Backups Ransomware

Most Common Causes of Data Breach and How to Prevent It

Security Affairs

MAY 3, 2021

Some of the most popular ones include RAM scraping, wherein the memory of targeted devices is scanned for collecting sensitive information. Some malware attacks install tools like keyloggers to capture the keystrokes for stealing passwords or other sensitive information. Follow me on Twitter: @securityaffairs and Facebook.

Data breaches

Data breaches Social Engineering Engineering Network Security

FBI and CISA are warning of APT actors targeting Fortinet FortiOS servers

Security Affairs

APRIL 2, 2021

. “The APT actors may be using any or all of these CVEs to gain access to networks across multiple critical infrastructure sectors to gain access to key networks as pre-positioning for follow-on data exfiltration or data encryption attacks,” continues the advisory. Implement the shortest acceptable timeframe for password changes.

Passwords

Passwords Government Firmware Accountability

Indonesia Soon to Become the Fifth ASEAN Country to Adapt Data Privacy Laws

Security Affairs

OCTOBER 7, 2020

Never use them without proper security measures such as using a VPN. A VPN removes all traces leading back to your original IP address and encrypts your connection to allow safe and private browsing. Software updates often come with releases that patch bugs and security vulnerabilities upon discovery.

Data privacy

Data privacy Computers and Electronics Government VPN

Cyber Checklist For Safe Online Holiday Shopping

SiteLock

NOVEMBER 23, 2021

Sensitive information is exchanged between the server and customer during online transactions, which means having Secure Socket Layer certification (SSL) on your website is essential. The SSL certificate offers consumers security and confidence that their data will be encrypted. Update your passwords.

Retail

Retail Encryption Passwords Banking

Netwalker ransomware operators leaked files stolen from K-Electric

Security Affairs

OCTOBER 1, 2020

The gang also claimed on the ‘Stolen data’ page of their Tor leak site that they have stolen unencrypted files from K-Electric before encrypting its systems. At the time it is not clear how many documents were stolen and which kind of information they contained. Only use secure networks and avoid using public Wi-Fi networks.

Ransomware

Ransomware Advertising Engineering VPN

9 Possible Ways Hackers Can Use Public Wi-Fi to Steal Your Sensitive Data

China-linked APT groups targets orgs via Pulse Secure VPN devices

Webinars

Trending Sources

Fortinet VPN with default certificate exposes 200,000 businesses to hack

Webinars

GUEST ESSAY: Sure steps to achieve a robust employee cybersecurity awareness training regimen

Protecting Your Digital Identity: Celebrating Identity Management Day

The Best Ways to Secure Communication Channels in The Enterprise Environment

15 Cybersecurity Measures for the Cloud Era

Who and What is Behind the Malware Proxy Service SocksEscort?

Bronze Starlight targets the Southeast Asian gambling sector

FBI published a flash alert on Mamba Ransomware attacks

Avoslocker ransomware gang targets US critical infrastructure

16 Remote Access Security Best Practices to Implement

Dubai’s largest taxi app exposes 220K+ users

Everyday Threat Modeling

New Checkmate ransomware target QNAP NAS devices

LockBit Ransomware operators hit Swiss helicopter maker Kopter

Daixin Team targets health organizations with ransomware, US agencies warn

FBI warns of ransomware attacks targeting the food and agriculture sector

DepositFiles exposed config file, jeopardizing user security

FBI issued an alert on Ragnar Locker ransomware activity

QNAP users are recommended to disable UPnP port forwarding on routers

FIN8-linked actor targets Citrix NetScaler systems

FBI warns of increase in PYSA ransomware attacks targeting education

Threat spotlight: Conti, the ransomware used in the HSE healthcare attack

Attackers use a new CoronaVirus Ransomware to cover Kpot Infostealer infections

3CX Breach Was a Double Supply Chain Compromise

The Top Five Habits of Cyber-Aware Employees

US CISA report shares details on web shells used by Iranian hackers

5 Ways to Protect Yourself from IP Address Hacking

The Dangers of Using Unsecured Wi-Fi Networks

Which is the Threat landscape for the ICS sector in 2020?

Shadowserver reported that +15K Citrix servers are likely vulnerable to attacks exploiting the flaw CVE-2023-3519

Top IT Areas You Need to Check to Strengthen Your Cybersecurity

NASA warns of a significant increase in cyber attacks during Coronavirus outbreak

YouTube creators’ accounts hijacked with cookie-stealing malware

IoT Cybersecurity: 5 Major Vulnerabilities and How to Tackle Them

19 petabytes of data exposed across 29,000+ unprotected databases

Hackers already installed web shells on 581 Citrix servers in CVE-2023-3519 attacks

U.S. Bookstore giant Barnes & Noble hit by cyberattack

Most Common Causes of Data Breach and How to Prevent It

FBI and CISA are warning of APT actors targeting Fortinet FortiOS servers

Indonesia Soon to Become the Fifth ASEAN Country to Adapt Data Privacy Laws

Cyber Checklist For Safe Online Holiday Shopping

Netwalker ransomware operators leaked files stolen from K-Electric

Stay Connected