Malware, Manufacturing and Security Intelligence

A new Mirai botnet variant targets DigiEver DS-2105 Pro DVRs

Security Affairs

DECEMBER 26, 2024

In November 2024, the Akamai Security Intelligence Research Team (SIRT) observed increased activity targeting the URI /cgi-bin/cgi_main.cgi , linked to a Mirai-based malware campaign exploiting an unassigned RCE vulnerability in DVR devices, including DigiEver DS-2105 Pro. ” reads the analysis published by Akamai.

Manufacturing

Manufacturing Malware Firmware IoT

Microsoft spotted multiple malspam campaigns using malware-laced ISO and IMG files

Security Affairs

MAY 4, 2020

Microsoft warns of threat actors targeting organizations with malware-laced ISO and IMG files aimed at delivering a remote access trojan. Microsoft advanced machine learning threat detection models detected multiple malspam campaigns distributing malware-laced ISO. Pierluigi Paganini. SecurityAffairs – COVID-19, malspam).

Small Business

Small Business Malware Manufacturing Security Intelligence

Andariel Hackers Target South Korean Institutes with New Dora RAT Malware

The Hacker News

JUNE 3, 2024

The North Korea-linked threat actor known as Andariel has been observed using a new Golang-based backdoor called Dora RAT in its attacks targeting educational institutes, manufacturing firms, and construction businesses in South Korea.

Manufacturing

Manufacturing Education Malware Security Intelligence

French Firms Rocked by Kasbah Hacker?

Krebs on Security

MARCH 2, 2020

A large number of French critical infrastructure firms were hacked as part of an extended malware campaign that appears to have been orchestrated by at least one attacker based in Morocco, KrebsOnSecurity has learned. ‘FATAL’ ERROR.

DNS

DNS Penetration Testing Malware Hacking

BEST PRACTICES: Mock phishing attacks prep employees to avoid being socially engineered

The Last Watchdog

MAY 1, 2019

In short, it’s a perfect environment for cybercriminals to gather intelligence about us, then craft creative ruses to trick victims into installing malware that gives them a foothold. This is stunning: phishing attacks soared in 2018, rising 250% between January and December, according to Microsoft’s Security Intelligence Report.

Social Engineering

Social Engineering Engineering Phishing Banking

Vietnam-linked Bismuth APT leverages coin miners to stay under the radar

Security Affairs

DECEMBER 1, 2020

Learn how the group tried to stay under the radar using threats perceived to be less alarming: [link] — Microsoft Security Intelligence (@MsftSecIntel) November 30, 2020. New blog: The threat actor BISMUTH, which has been running increasingly complex targeted attacks, deployed coin miners in campaigns from July to August 2020.

Cryptocurrency

Cryptocurrency Antivirus Government Manufacturing

Updated Kmsdx botnet targets IoT devices

Security Affairs

AUGUST 28, 2023

The Akamai Security Intelligence Response Team (SIRT) discovered a new version of the KmsdBot botnet that employed an updated Kmsdx binary targeting Internet of Things (IoT) devices. The malware was employed in cryptocurrency mining campaigns and to launch denial-of-service (DDoS) attacks.

IoT

IoT DDOS Architecture Internet

Researchers warn of a surge in cyber attacks against Microsoft Exchange

Security Affairs

MARCH 12, 2021

Most targeted sectors have been Government/Military (17% of all exploit attempts), followed by Manufacturing (14%), and then Banking (11%). Microsoft researchers also spotted a ransomware gangs that is exploiting ProxyLogon flaws to spread a piece of malware tracked as DearCry. and also as DearCry.

Cyber Attacks

Cyber Attacks Cybercrime Authentication Hacking

Microsoft blocked Polonium attacks against Israeli organizations

Security Affairs

JUNE 3, 2022

Since February, the attacks targeted organizations in critical manufacturing, IT, and Israel’s defense industry. . POLONIUM notified affected organizations and deployed a series of security intelligence updates that will quarantine tools developed by POLONIUM operators.

Security Intelligence

Security Intelligence Hacking Antivirus Authentication

2022: The threat landscape is paved with faster and more complex attacks with no signs of stopping

Webroot

JANUARY 7, 2022

Below, our security experts forecast where the main areas of concern lie in the year ahead. Malware made leaps and bounds in 2021. Industries like oil, gas, manufacturing and mining will continue to see growth in targeted attacks. In particular, six key threats made our list. Ransomware. Consumers also remain at risk.

Cybercrime

Cybercrime Ransomware Phishing Cryptocurrency

Cyber Security Awareness and Risk Management

Spinone

DECEMBER 26, 2018

The IT landscape’s complexity requires the deployment of Privileged Identity Management technologies, given the increasing sophistication of modern attacks via malware and ungated entries. You will create cyber awareness among your staff, as well as users, partners, customers.

Security Awareness

Security Awareness Risk Cyber threats Cyber Risk

Does SolarWinds change the rules in offensive cyber? Experts say no, but offer alternatives

SC Magazine

JANUARY 29, 2021

The sprawling reach of the SolarWinds malware attack that hit government agencies and businesses in December inspires new questions about appropriate response from private sector organizations to cyberattacks from nation states. In cyber, “the lines between state-run attacks, patriotic hacker activity, and outright crime can be very blurry.

Technology

Technology Government Manufacturing Hacking

Cyber Security Informer

A new Mirai botnet variant targets DigiEver DS-2105 Pro DVRs

Microsoft spotted multiple malspam campaigns using malware-laced ISO and IMG files

Trending Sources

Andariel Hackers Target South Korean Institutes with New Dora RAT Malware

French Firms Rocked by Kasbah Hacker?

BEST PRACTICES: Mock phishing attacks prep employees to avoid being socially engineered

Vietnam-linked Bismuth APT leverages coin miners to stay under the radar

Updated Kmsdx botnet targets IoT devices

Researchers warn of a surge in cyber attacks against Microsoft Exchange

Microsoft blocked Polonium attacks against Israeli organizations

2022: The threat landscape is paved with faster and more complex attacks with no signs of stopping

Cyber Security Awareness and Risk Management

Does SolarWinds change the rules in offensive cyber? Experts say no, but offer alternatives

Stay Connected