Event, Hacking, Information Security and Internet

Hackers are scanning the internet for vulnerable Salt installs, Ghost blogging platform hacked

Security Affairs

MAY 4, 2020

Hackers are conducting a mass-scanning the Internet for vulnerable Salt installs that could allow them to hack the organizations, the last victim is the Ghost blogging platform. Salt (aka SaltStack) is Python-based, open-source software for event-driven IT automation, remote task execution, and configuration management.

Internet

Internet Internet Hacking Advertising

Tens of thousands Cisco IOS XE devices were hacked by exploiting CVE-2023-20198

Security Affairs

OCTOBER 20, 2023

Cisco is aware of active exploitation of a previously unknown vulnerability in the web UI feature of Cisco IOS XE Software when exposed to the internet or to untrusted networks.” Cisco recommends admins to disable the HTTP server feature on systems exposed on the Internet. reads the advisory published by the company.

Hacking

Hacking Internet Internet Accountability

Ukrtelecom, a major mobile service and internet provider in Ukraine, foiled a “massive” cyberattack that hit its infrastructure

Security Affairs

MARCH 28, 2022

Ukrtelecom, a major mobile service and internet provider in Ukraine, foiled a “massive” cyberattack that hit its infrastructure. On March 29, 2022, a massive cyber attack caused a major internet disruption across Ukraine on national provider Ukrtelecom. SecurityAffairs – hacking, Ukraine). Pierluigi Paganini.

Internet

Internet Internet Mobile Cyber Attacks

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

China Says NSA Is Hacking Top Military Research University

SecureWorld News

SEPTEMBER 12, 2022

China's National Computer Virus Emergency Response Center (CVERC) recently made a statement accusing the United States National Security Agency (NSA) of repeatedly hacking the Northwestern Polytechnical University, a key public military research university located in Xi'an, China. TAO is a tactical implementation unit of the U.S.

Hacking

Hacking Cyber Attacks Government Internet

Pro-Russia hackers target critical infrastructure in North America and Europe

Security Affairs

MAY 2, 2024

They aim to exploit modular, internet-exposed Industrial Control Systems (ICS), targeting software components like human machine interfaces (HMIs). based water and wastewater systems (WWS) victims faced limited physical disruptions after attackers hacked into their Human Machine Interfaces (HMIs). ” reads the joint advisory.

Passwords

Passwords Internet Internet Software

CVE-2023-20198 zero-day widely exploited to install implants on Cisco IOS XE systems

Security Affairs

OCTOBER 17, 2023

Threat actors exploited the recently disclosed zero-day flaw (CVE-2023-20198) in a large-scale hacking campaign on Cisco IOS XE devices. Threat actors have exploited the recently disclosed critical zero-day vulnerability ( CVE-2023-20198 ) to compromise thousands of Cisco IOS XE devices, security firm VulnCheck warns.

Internet

Internet Internet Hacking Accountability

Thousands of satellite users offline in Europe following a cyberattack, is it a conflict spillover?

Security Affairs

MARCH 5, 2022

Thousands of satellite internet users across Europe were disconnected from the internet by a cyber-event, experts suspect a cyber attack. Around one-third of 40,000 subscribers of the bigblu satellite internet service in Europe, in Germany, France, Hungary, Greece, Italy and Poland, were impacted by the same cyber event.

Internet

Internet Internet Cyber Attacks DDOS

5 Ways artificial intelligence Is Being Used to Keep Sensitive Information Secure

Security Affairs

FEBRUARY 19, 2020

By allowing itself to be dynamic and working in real-time, access can modify itself in the event of an attack. Multi-factor doesn’t just create multiple walls of security but is also smart about who it lets in. A decade from now, we may not even recognize security features from when the internet first came about.

Artificial Intelligence

Artificial Intelligence Information Security Passwords Encryption

5 Ways to Protect Yourself from IP Address Hacking

Security Affairs

AUGUST 20, 2019

Your IP address represents your digital identity online, hacking it not only allows attackers to access your device or your accounts, but it may cause even bigger damage. Your IP or Internet Protocol address is your digital identity on the internet. Cybercriminals are interested in hacking your IP address for various reasons.

Hacking

Hacking VPN Internet Internet

Analysis of the 2021 Verizon Data Breach Report (DBIR)

Daniel Miessler

MAY 19, 2021

My Definitions of Event, Alert, and Incident. A definitions reminder: Incident : A security event that compromises the integrity, confidentiality or availability of an information asset. For incidents, the breakdown was: dos (hacking), phishing (social), other, and then ransomware (malware). Content extraction.

Data breaches

Data breaches Social Engineering Ransomware Phishing

Experts released PoC exploit code for Cisco IOS XE flaw CVE-2023-20198

Security Affairs

OCTOBER 31, 2023

Cisco is aware of active exploitation of a previously unknown vulnerability in the web UI feature of Cisco IOS XE Software when exposed to the internet or to untrusted networks.” Cisco recommends admins to disable the HTTP server feature on systems exposed on the Internet. reads the advisory published by the company.

Internet

Internet Internet Software Accountability

OpIran: Anonymous declares war on Teheran amid Mahsa Amini’s death

Security Affairs

SEPTEMBER 25, 2022

Last week, network data from the Internet observatory NetBlocks detailed a near-total disruption to internet service in parts of Kurdistan in Iran from the evening of Monday 19 September 2022. Dear Iran, you shut down internet. Iranian Assembly Hacked, Their data's leaked. We'll shut you down.

Internet

Internet Internet Hacking Government

Mar 27 – Apr 02 Ukraine – Russia the silent cyber conflict

Security Affairs

APRIL 3, 2022

This post provides a timeline of the events related to the Russian invasion of Ukraine from the cyber security perspective. Anonymous claims to have hacked the Russian Orthodox Church ‘s charitable wing and leaked 15 GB of alleged stolen data. Apr 01 – Anonymous targets oligarchs’ Russian businesses: Marathon Group hacked.

DDOS

DDOS Hacking Mobile Internet

Mar 06- Mar 12 Ukraine – Russia the silent cyber conflict

Security Affairs

MARCH 13, 2022

This post provides a timeline of the events related to the Russia invasion of Ukraine from the cyber security perspective. March 12 – Russian Internet watchdog Roskomnadzor is going to ban Instagram. March 11 – Anonymous hacked Roskomnadzor agency revealing Russian disinformation. Pierluigi Paganini.

Hacking

Hacking DDOS Phishing Malware

Healthcare provider Ardent Health Services disclosed a ransomware attack

Security Affairs

NOVEMBER 28, 2023

In response to the incident, the company took its network offline and suspended all user access to its information technology applications, including corporate servers, Epic software, internet and clinical programs. ” reads the notice of security incident published by the company.

Healthcare

Healthcare Ransomware Technology Internet

Twitter restricted in Turkey after the earthquake amid disinformation fear

Security Affairs

FEBRUARY 9, 2023

Global internet monitor NetBlocks reported that Twitter has been restricted in Turkey in the aftermath of the earthquake. Global internet monitor NetBlocks reported that network data confirm that Twitter has been restricted in Turkey in the aftermath of the earthquake. ” reported Netblocks.

Internet

Internet Internet Media VPN

Cisco warns of active exploitation of IOS XE zero-day

Security Affairs

OCTOBER 16, 2023

“Cisco is aware of active exploitation of a previously unknown vulnerability in the web UI feature of Cisco IOS XE Software when exposed to the internet or to untrusted networks.” Cisco recommends admins to disable the HTTP server feature on systems exposed on the Internet.

Accountability

Accountability Internet Internet Software

NASA identified 1,785 cyber incidents in 2020

Security Affairs

MAY 27, 2021

Cyber attacks against the agency’s systems are not rare events, threat actors could attempt to steal critical information with sophisticated operations, and for this reason, it is essential for the agency to detect and mitigate them. SecurityAffairs – hacking, National Aeronautics and Space Administration). Pierluigi Paganini.

Information Security

Information Security Cyber Attacks Mobile Architecture

Hackers Could Cause ‘Fake Earthquakes’ by Exploiting Vulnerable Seismic Equipment, Researchers Warn

Hot for Security

FEBRUARY 16, 2021

Hackers could trigger ‘fake earthquakes,’ affecting emergency and economic responses to a seismic event, and generate mistrust in seismic technology among the population, the researchers say. Seismic monitoring equipment is vulnerable to common cybersecurity threats like those faced by IoT devices, a new research paper warns.

IoT

IoT InfoSec Data collection Encryption

Everything is Insecure: What Matters is What You’re Getting vs. Giving Up

Daniel Miessler

APRIL 16, 2020

Throughout the media you have people substituting their in-person events with virtual ones, and they all seem to be using Zoom. The internet is a tire fire of horrible software. It’s astounding that the internet even works given how bad the infrastructure and software is. It was extraordinary.

Internet

Internet Internet Risk InfoSec

Frebniis malware abuses Microsoft IIS feature to create a backdoor

Security Affairs

FEBRUARY 19, 2023

Broadcom Symantec researchers have spotted a new malware, tracked as Frebniis, that abuses Microsoft Internet Information Services (IIS) to deploy a backdoor and monitor all HTTP traffic to the infected system, Symantec reports. The malicious code was employed in attacks against targets in Taiwan by a currently unknown threat actor.

Malware

Malware Passwords Internet Internet

Hitachi Energy breached by Clop gang through GoAnywhere Zero-Day exploitation

Security Affairs

MARCH 17, 2023

Hitachi Energy disclosed a data breach, the company was hacked by the Clop ransomware gang that stole its data by exploiting the recently disclosed zero-day vulnerability in the GoAnywhere MFT (Managed File Transfer). At this time, the Clops ransomware group only added the bank and the data security firm to the list of victims.

Data breaches

Data breaches Ransomware Banking Data privacy

Feb 27- Mar 05 Ukraine – Russia the silent cyber conflict

Security Affairs

MARCH 6, 2022

This post provides a timeline of the events related to the Russia invasion of Ukraine from the cyber security perspective. March 5 – Anonymous #OpRussia Thousands of sites hacked, data leaks and more. Below is the timeline of the events related to the previous weeks: [link]. SecurityAffairs – hacking, Ukraine).

DDOS

DDOS Ransomware Government Phishing

Snowden Ten Years Later

Schneier on Security

JUNE 6, 2023

You read so much classified information about the world’s geopolitical events that you start seeing the world differently. Reading about the NSA’s hacking abilities will do that to you. Could agents take control of my computer over the Internet if they wanted to? Your family is ignorant. Probably not. Very probably.

Surveillance

Surveillance Computers and Electronics Encryption Government

Microsoft mitigated a record 2.4 Tbps DDoS attack in August

Security Affairs

OCTOBER 12, 2021

This is 140 percent higher than 2020’s 1 Tbps attack and higher than any network volumetric event previously detected on Azure.” SecurityAffairs – hacking, botnet). Tbps DDoS attack in August appeared first on Security Affairs. . “The last week of August, we observed a 2.4 Pierluigi Paganini.

DDOS

DDOS Internet Internet Hacking

THE 11TH EDITION OF THE ENISA THREAT LANDSCAPE REPORT IS OUT!

Security Affairs

OCTOBER 19, 2023

This is the 11th edition of the annual report and analyzes events that took place between July 2022 and July 2023. appeared first on Security Affairs. The Europen Agency for cybersecurity ENISA releases its ENISA Threat Landscape 2023 (ETL) report , which is the annual analysis of the state of the cybersecurity threat landscape.

Social Engineering

Social Engineering Artificial Intelligence Engineering Ransomware

Researchers used electromagnetic signals to classify malware infecting IoT devices

Security Affairs

JANUARY 5, 2022

A team of academics (Duy-Phuc Pham, Damien Marion, Matthieu Mastio and Annelie Heuser) from the Research Institute of Computer Science and Random Systems (IRISA) have devised a new approach that analyzes electromagnetic field emanations from the Internet of Things (IoT) devices to detect highly evasive malware. Pierluigi Paganini.

IoT

IoT Malware Internet Internet

Hatch Bank data breach caused by the exploitation of the GoAnywhere MFT zero-day

Security Affairs

MARCH 6, 2023

Hatch Bank immediately took steps to secure its files and then launched a diligent and comprehensive review of relevant files to determine the information that may have been impacted. Hatch Bank then worked to identify contact information for the impacted individuals. ” reads the notice of data event.

Data breaches

Data breaches Banking Identity Theft Internet

New PowerDrop malware targets U.S. aerospace defense industry

Security Affairs

JUNE 7, 2023

The malware is being used to remotely execute commands on the infected systems and gather information from the target network. The malicious script sends Internet Control Message Protocol (ICMP) echo request messages to the C2, which in turn replies with a similar ICMP ping for data exfiltration. ” continues the report. .”

Malware

Malware Encryption Internet Internet

Holy Ghost ransomware operation is linked to North Korea

Security Affairs

JULY 15, 2022

The list of victims includes manufacturing organizations, banks, schools, and event and meeting planning companies. The SiennaBlue variant evolved over time by implementing multiple encryption options, string obfuscation, public key management, and support for the internet and intranet. Pierluigi Paganini.

Ransomware

Ransomware Cryptocurrency Government Small Business

Security Affairs newsletter Round 419 by Pierluigi Paganini – International edition

Security Affairs

MAY 14, 2023

ransom Dragon Breath APT uses double-dip DLL sideloading strategy International Press Cybercrime San Bernardino County pays $1.1-million ransom Dragon Breath APT uses double-dip DLL sideloading strategy International Press Cybercrime San Bernardino County pays $1.1-million

Data breaches

Data breaches DDOS Artificial Intelligence Ransomware

TicketClub Italy Database Offered in Dark Web

Security Affairs

JULY 21, 2021

A database belonging to TicketClub Italy, a company providing coupons platform for offline purchases, is available for sale on darkweb hacking forums. The platform lists coupons in multiple categories including health, travel, food, services, events. SecurityAffairs – hacking, TicketClub). Pierluigi Paganini.

Data breaches

Data breaches Mobile Retail Cyber threats

The Hacker Mind Podcast: Hacking Communities

ForAllSecure

JULY 14, 2021

It's about challenging our expectations about the people who hack for a living. How do we continue to accommodate those diverse voices that don’t often get heard or even included in the large corporate events? Jack is probably best known as one of the three co-founders of the popular BSides security conferences.

Hacking

Hacking InfoSec Media Technology

Russia-linked Fronton botnet could run disinformation campaigns

Security Affairs

MAY 23, 2022

In March 2020, the collective of hacktivists called “ Digital Revolution ” claimed to have hacked a subcontractor to the Russian FSB. ” reads the analysis published by the security firm NISOS. Please vote for Security Affairs and Pierluigi Paganini in every category that includes them (e.g. To nominate, please visit:?.

DDOS

DDOS Media Hacking Engineering

Clop ransomware gang was testing MOVEit Transfer bug since 2021

Security Affairs

JUNE 9, 2023

“Kroll’s review of Microsoft Internet Information Services (IIS) logs of impacted clients found evidence of similar activity occurring in multiple client environments last year (April 2022) and in some cases as early as July 2021.” ” reads the analysis published by the security firm. aspx web shell.

Ransomware

Ransomware Hacking Retail Internet

Owowa, a malicious IIS Server module used to steal Microsoft Exchange credentials

Security Affairs

DECEMBER 15, 2021

Threat actors are using a malicious Internet Information Services (IIS) Server module, dubbed Owowa, to steal Microsoft Exchange credentials. ” Attackers designed the Owowa module to inspect HTTP requests and responses by hooking the PreSendRequestContent event. . . SecurityAffairs – hacking, Owowa).

Encryption

Encryption Authentication Passwords Internet

ALPHV/BlackCat ransomware affiliate targets Veritas Backup solution bugs

Security Affairs

APRIL 4, 2023

The researchers identified over 8,500 installations of Veritas Backup Exec instances that are currently exposed to the internet, some of which may still be vulnerable. “In late 2022, UNC4466 gained access to an internet-exposed Windows server, running Veritas Backup Exec version 21.0

Backups

Backups Ransomware Authentication Penetration Testing

NoReboot persistence technique fakes iPhone shutdown

Security Affairs

JANUARY 6, 2022

In order to hijack the shutdown event, the researchers abuse some components, such as the InCallService system application, the SpringBoard which is responsible for the majority of the UI interaction, and BackBoard, which supports SpringBoard to handle some tasks related to hardware events (i.e. SecurityAffairs – hacking, NoReboot).

Spyware

Spyware Malware Internet Internet

The Hacker Mind Podcast: Hacking Charity

ForAllSecure

JULY 28, 2021

His book, Hacking Google was a best seller, but after, he just wasn't feeling it. Welcome to the hacker mind in original podcast from for all secure, it's about challenging our expectations about the people who hack for a living. Either version, the idea here is to empower others to help themselves, to hack.

Hacking

Hacking Computers and Electronics InfoSec Technology

Feb 7- Feb 27 Ukraine – Russia the silent cyber conflict

Security Affairs

FEBRUARY 27, 2022

This post provides a timeline of the events related to the Russia invasion of Ukraine from the cyber security perspective. Global internet monitor working group NetBlocks reported that Twitter has been restricted in Russia amid conflict with Ukraine. SecurityAffairs – hacking, Ukraine). Pierluigi Paganini.

DDOS

DDOS Banking Phishing Ransomware

5 Components of the Kubernetes Control Plane that Demand Special Attention in Your Security Strategy

Security Affairs

OCTOBER 30, 2020

In its State of Container and Kubernetes Security Fall 2020 survey, StackRox found that 90% of respondents had suffered a security incident in their Kubernetes deployments in the last year. As with kube-apiserver, organizations might accidentally leave etcd exposed to the Internet. How to secure it. How to secure it.

Advertising

Advertising Internet Internet VPN

The Hacker Mind Podcast: Hacking Diversity

ForAllSecure

APRIL 7, 2021

That’s why Tennisha Martin founded Black Girls Hack , an organization designed to help the next generation receive the skills and experience they need to land jobs in the C-suites, and perhaps begin to address the acute shortage of infosec professionals with qualified people of color. For many, though, that isn’t true.

Hacking

Hacking InfoSec Cybersecurity Engineering

The Hacker Mind Podcast: Hacking Diversity

ForAllSecure

APRIL 7, 2021

That’s why Tennisha Martin founded Black Girls Hack , an organization designed to help the next generation receive the skills and experience they need to land jobs in the C-suites, and perhaps begin to address the acute shortage of infosec professionals with qualified people of color. For many, though, that isn’t true.

Hacking

Hacking InfoSec Cybersecurity Engineering

The Hacker Mind: Hacking Social Media

ForAllSecure

JUNE 2, 2021

Robert Vamosi: Before there was the internet as we know it today, there were bulletin boards, BBSs. One of those interests that took off was computer security. For bored and smart teenagers, this was the perfect way to learn how to hack. Some hackers live stream events. Or share gaming cheats. Massive numbers.

Media

Media Hacking InfoSec Marketing

Hackers are scanning the internet for vulnerable Salt installs, Ghost blogging platform hacked

Tens of thousands Cisco IOS XE devices were hacked by exploiting CVE-2023-20198

Webinars

Trending Sources

Ukrtelecom, a major mobile service and internet provider in Ukraine, foiled a “massive” cyberattack that hit its infrastructure

Webinars

China Says NSA Is Hacking Top Military Research University

Pro-Russia hackers target critical infrastructure in North America and Europe

CVE-2023-20198 zero-day widely exploited to install implants on Cisco IOS XE systems

Thousands of satellite users offline in Europe following a cyberattack, is it a conflict spillover?

5 Ways artificial intelligence Is Being Used to Keep Sensitive Information Secure

5 Ways to Protect Yourself from IP Address Hacking

Analysis of the 2021 Verizon Data Breach Report (DBIR)

Experts released PoC exploit code for Cisco IOS XE flaw CVE-2023-20198

OpIran: Anonymous declares war on Teheran amid Mahsa Amini’s death

Mar 27 – Apr 02 Ukraine – Russia the silent cyber conflict

Mar 06- Mar 12 Ukraine – Russia the silent cyber conflict

Healthcare provider Ardent Health Services disclosed a ransomware attack

Twitter restricted in Turkey after the earthquake amid disinformation fear

Cisco warns of active exploitation of IOS XE zero-day

NASA identified 1,785 cyber incidents in 2020

Hackers Could Cause ‘Fake Earthquakes’ by Exploiting Vulnerable Seismic Equipment, Researchers Warn

Everything is Insecure: What Matters is What You’re Getting vs. Giving Up

Frebniis malware abuses Microsoft IIS feature to create a backdoor

Hitachi Energy breached by Clop gang through GoAnywhere Zero-Day exploitation

Feb 27- Mar 05 Ukraine – Russia the silent cyber conflict

Snowden Ten Years Later

Microsoft mitigated a record 2.4 Tbps DDoS attack in August

THE 11TH EDITION OF THE ENISA THREAT LANDSCAPE REPORT IS OUT!

Researchers used electromagnetic signals to classify malware infecting IoT devices

Hatch Bank data breach caused by the exploitation of the GoAnywhere MFT zero-day

New PowerDrop malware targets U.S. aerospace defense industry

Holy Ghost ransomware operation is linked to North Korea

Security Affairs newsletter Round 419 by Pierluigi Paganini – International edition

TicketClub Italy Database Offered in Dark Web

The Hacker Mind Podcast: Hacking Communities

Russia-linked Fronton botnet could run disinformation campaigns

Clop ransomware gang was testing MOVEit Transfer bug since 2021

Owowa, a malicious IIS Server module used to steal Microsoft Exchange credentials

ALPHV/BlackCat ransomware affiliate targets Veritas Backup solution bugs

NoReboot persistence technique fakes iPhone shutdown

The Hacker Mind Podcast: Hacking Charity

Feb 7- Feb 27 Ukraine – Russia the silent cyber conflict

5 Components of the Kubernetes Control Plane that Demand Special Attention in Your Security Strategy

The Hacker Mind Podcast: Hacking Diversity

The Hacker Mind Podcast: Hacking Diversity

The Hacker Mind: Hacking Social Media

Stay Connected