Security Affairs

FEBRUARY 4, 2023

x earlier than ESXi670-202102401-SG ESXi versions 6.5.x x earlier than ESXi650-202102101-SG The virtualization giant addressed the CVE-2021-21974 bug in February 2021. The vulnerability affects the following systems: ESXi 7.x x versions earlier than ESXi70U1c-17325551 ESXi versions 6.7.x ” reads the alert published by CERT-FR.

Ransomware 81

Ransomware Encryption Hacking Cybersecurity 81

Security Affairs

FEBRUARY 6, 2023

x earlier than ESXi670-202102401-SG ESXi versions 6.5.x x earlier than ESXi650-202102101-SG The virtualization giant addressed the CVE-2021-21974 bug in February 2021. The vulnerability affects the following systems: ESXi 7.x x versions earlier than ESXi70U1c-17325551 ESXi versions 6.7.x

Ransomware 84

Ransomware Cybersecurity Cyber Attacks Encryption 84

Security Affairs

AUGUST 23, 2021

In September, Sophos addressed a remote code execution vulnerability (CVE-2020-25223) in the WebAdmin of SG UTM that was reported via the company bug bounty program. If the WebAdmin of Sophos SG UTM was exposed only a remote authenticated attacker could easily exploit it. ” explained the expert.

Authentication 99

Authentication Hacking Software Information Security 99

Security Boulevard

FEBRUARY 2, 2023

The ISO image contains a shortcut (LNK) file, but it decoyed as a DOC file called “ draft letter to European Commission RUSSIAN OIL PRICE CAP sg de.doc ”. The document is named “ draft letter to European Commission RUSSIAN OIL PRICE CAP sg de.docx ”. ucp" The test2022.ucp 116 45[.]134[.]83[.]29

Malware 80

Malware Encryption Government Social Engineering 80

Security Boulevard

JANUARY 26, 2022

Sample URL structure for the rogue and fraudulent online phishing infrastructure for the campaign: ezvpn[.]mskcc[.]saea[.]ga. elearning[.]uky[.]edu[.]seae[.]tk. alexandria[.]rice[.]ulibr[.]ga. ezproxy-authcate[.]lib[.]monash[.]ulibr[.]ga. ezproxy-authcate[.]monash[.]lib[.]ulibr[.]ga. ezproxy-f[.]deakin[.]au[.]ulibr[.]ga. usherbrooke[.]ca[.]cavc[.]tk.

Phishing 98

Phishing Cyber threats Cyber Attacks Social Engineering 98

SecureList

SEPTEMBER 8, 2023

IOC Md5 39df26099caf5d5edf264801a486e4ee b9e9a29229a10deecc104654cb7c71ae e0dab7efb9cea5b6a010c8c5fee1a285 Efcbcd6a2166745153c329fd2d486b3a 8e878695aab7ab16e38265c3a5f17970 65377fa1d86351c7bd353b51f68f6b80 19f927386a03ce8d2866879513f37ea0 a0e197b9c359b89e48c3f0c01af21713 c7a8c3c78ac973785f700c537fbfcb00 С&C sg[.]telegrnm[.]org

Encryption 108

Encryption Spyware Accountability Malware 108

Security Affairs

DECEMBER 22, 2022

includes several new flaws, including: Vulnerability Affected software CVE-2017-17105 Zivif PR115-204-P-RS CVE-2019-10655 Grandstream CVE-2020-25223 WebAdmin of Sophos SG UTM CVE-2021-42013 Apache CVE-2022-31137 Roxy-WI CVE-2022-33891 Apache Spark ZSL-2022-5717 MiniDVBLinux. “Since the release of Zerobot 1.1,

IoT 116

IoT DDOS Malware Firmware 116

Malwarebytes

APRIL 11, 2022

nl/pl/sa/sg/es/se/ae/co.uk/com/com.au/com.br/mx/tr It uses specific methods for each browser to exfiltrate the data stored in the target browsers: Google Chrome Mozilla Firefox Internet Explorer Microsoft Edge. The target websites it looks for are: www.facebook.com www.instagram.com www.amazon.ca/cn/eg/fr/de/in/it/co.jp/nl/pl/sa/sg/es/se/ae/co.uk/com/com.au/com.br/mx/tr

Media 129

Media Malware Spyware Accountability 129

Security Affairs

MAY 9, 2020

On March 23 and 24, a third actor tracked as Black Emeka launched a series of attacks using emails disguised as COVID-19 information. The attached malware samples use PowerShell to download malicious payloads from the domain goldenlion[.]sg. SilverTerrier attackers will continue to use COVID-19 lures to infect the systems of the victims.

Healthcare 64

Healthcare Government Energy and Utilities Insurance 64

Security Affairs

MARCH 6, 2019

Singapore official Personal Data Protection Commission, the local privacy watchdog, imposed fines of Sg$1 million ($740,000) on a healthcare provider and an IT agency over the massive security breach.

Healthcare 80

Healthcare Data breaches Hacking Telecommunications 80

Security Affairs

OCTOBER 29, 2019

It was reported that the atomic power plant stopped power generation owing to low “SG level” ” concludes The Times Now News. .” “It may be noted here that the second 1,000 MW nuclear power unit at Kudankulam had stopped generating power on October 19. The plants were constructed using Russian equipment.”

Cyber Attacks 47

Cyber Attacks Media Advertising Government 47

Security Affairs

FEBRUARY 7, 2023

x earlier than ESXi670-202102401-SG ESXi versions 6.5.x x earlier than ESXi650-202102101-SG The virtualization giant addressed the CVE-2021-21974 bug in February 2021. “On The vulnerability affects the following systems: ESXi 7.x x versions earlier than ESXi70U1c-17325551 ESXi versions 6.7.x reads the alert published by CERT-FR.

Ransomware 83

Ransomware Hacking Technology Software 83

Security Affairs

OCTOBER 25, 2023

The team STAR Labs SG exploited a permissive list of allowed inputs against the Samsung Galaxy S23 and earned $25,000 and 5 Master of Pwn points. They earned $60,000 and 6 Master of Pwn points. Researchers from Pentest Limited demonstrated an Improper Input Validation against the Samsung Galaxy S23.

Hacking 108

Hacking Information Security 108

McAfee

FEBRUARY 10, 2021

As noted by E SG Research, SIEM – being a baseline capability within SOC environments – continues to present challenges to organisations by being either too costly, exceedingly resource intensive, requiring far too much expertise, and various other concerns. Next Generation SIEM !

Artificial Intelligence 65

Artificial Intelligence Risk CISO Technology 65

Security Boulevard

AUGUST 2, 2022

Phishing domains. 0mx1lntastantretatlanpassword[.]com. 0mxus3rauthkeepsame[.]com. 10311landex[.]com. 333-77-6578-929-000[.]info. 34533teams[.]xyz. 365jhsgbxsncnsuye67[.]live. 365maineventco[.]com. 365voicemessage[.]com. 3dfzlrtsiwfibvfyql96zt[.]live. 455b3105mssvr[.]ml. 5d4ba5ca-d814-4049-8ea3-af505f6e1e01[.]info. 5thcolumn[.]accountant. accountant.

Phishing 52

Phishing Energy and Utilities Authentication Accountability 52

ForAllSecure

FEBRUARY 9, 2016

sg (@e101sg). It sounds like you guys have a similar approach to what we (team Shellphish at UC Santa Barbara) have, since the CQE, developed as "Driller", down to the number of pwned bins! If any of you guys are at NDSS in a few weeks, you should check out our talk. Also, I hope you're working on some new breakthrough before the CFE ;-).

Engineering 40

Engineering Internet Internet Architecture 40

SecureList

SEPTEMBER 26, 2022

Malware C&Cs. 178.62.113[.]205/runtermo. 205/runtermo. 185.163.204[.]22/runtermo. 22/runtermo. 185.163.45[.]70/runtermo. 70/runtermo. 185.186.142[.]166. 185.215.113[.]10. 185.38.142[.]132. 212.193.30[.]21/base/api/. 21/base/api/. 212.193.30[.]45/proxies.txt. 45/proxies.txt. 92.255.57[.]115. ads-memory[.]biz. all-mobile-pa1ments.com[.]mx.

Malware 107

Malware Cryptocurrency Passwords Software 107

Security Affairs

OCTOBER 9, 2023

.” Below is the list of hacker groups involved in the Israel-Palestine war: Pro-Palestine Hacking 35 Groups Pro-Israel 4 Hacking Groups Mysterious Team Bangladesh Team UCC Operations Ghosts of Palestine Indian Cyber Force AnonGhost Garuna Ops Blackshieldcrew MY SilentOne Anonymous Sudan Ganosec team Team Azrael Angel of Death Moroccan Black (..)

DDOS 121

DDOS Hacking Banking Telecommunications 121