CyberSecurity Insiders

AUGUST 16, 2021

The cybersecurity experts featured below provide timely industry updates and other insights via engaging conversational platforms. 20-60 minutes l Google Podcasts, Apple Podcasts, Spotify. Updates on the latest cyber security threats to businesses, data breach disclosures, and security. Security Weekly News – Security Weekly.

Cybersecurity 143

Cybersecurity Data breaches Education Social Engineering 143

Security Affairs

FEBRUARY 12, 2021

The fresh release of the Latin American Lampion trojan was updated with a new C2 address. encrypted_string="ns^[j]jef9ig0`%Y%|ipjweWh+WM]2[W$}]MeRee]8bc[{W<f6_$iH$iYLe]c|%=cUoOi6j@e;h/W*]M[o(g&c(_'P%=FZ#R(I#1'8/'$dZtb^bOg" decrypted_string="hxxps://storage.googleapis.]com/mystorage2021/P-2-19.dll". com/mystorage2021/P-2-19.dll".

Banking 109

Banking Malware Information Security Hacking 109

Krebs on Security

DECEMBER 19, 2022

But perhaps that story should be updated, because it’s now clear that password reuse can also put you in mortal danger. In June 2021, an 18-year-old serial swatter from Tennessee was sentenced to five years in prison for his role in a fraudulent swatting attack that led to the death of a 60-year-old man.

Hacking 282

Hacking Media Passwords Identity Theft 282

SecureWorld News

DECEMBER 5, 2023

According to a report in The Register: "A ransomware infection at a cloud IT provider has disrupted services for 60 or so credit unions across the U.S., I can confirm that approximately 60 credit unions are currently experiencing some level of outage due to a ransomware attack at a third-party service provider,' the NCUA spokesperson said.

Cyber Attacks 97

Cyber Attacks Insurance Ransomware Cybersecurity 97

Security Affairs

APRIL 16, 2023

A new round of the weekly SecurityAffairs newsletter arrived! hacking tools and electronics A new round of the weekly SecurityAffairs newsletter arrived! hacking tools and electronics A new round of the weekly SecurityAffairs newsletter arrived!

Data breaches 75

Data breaches Spyware Retail Surveillance 75

Security Affairs

JANUARY 1, 2023

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. If you want to also receive for free the newsletter with the international press subscribe here. Follow me on Twitter: @securityaffairs and Facebook and Mastodon. Pierluigi Paganini.

Cyber Attacks 89

Cyber Attacks Advertising Cryptocurrency Hacking 89

Krebs on Security

DECEMBER 19, 2023

Like many other ransomware operations, BlackCat operates under the “ransomware-as-a-service” model, where teams of developers maintain and update the ransomware code, as well as all of its supporting infrastructure. A slightly modified version of the FBI seizure notice on the BlackCat darknet site (Santa caps added).

Ransomware 247

Ransomware Cybercrime Advertising Encryption 247

Security Affairs

OCTOBER 4, 2023

Lycamobile operates in 60 countries and has reached more than 15 million pay-as-you-go customers worldwide. “We are confident that all our records are fully encrypted, and we will keep customers updated on the outcome of our investigation as we work with our expert partners to establish the facts.”

Mobile 113

Mobile Cyber Attacks Retail Marketing 113

Security Affairs

SEPTEMBER 3, 2023

A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. This Is What Will Change When You Sign On Growing use of AI in cybersecurity reveals new possibilities Are Software Updates Useless Against Advanced Persistent Threats?

Social Engineering 108

Social Engineering Spyware Data breaches Surveillance 108

Malwarebytes

JULY 28, 2023

The CVEs patched in these updates are: CVE-2023-38750 : Zimbra Collaboration Suite (ZCS) contains a cross-site scripting (XSS) vulnerability impacting the confidentiality and integrity of data. Two weeks ago, we urged readers to apply a workaround for an actively exploited vulnerability in Zimbra Collaboration Suite (ZCS) email servers.

Backups 85

Backups Software Technology Risk 85

Malwarebytes

APRIL 16, 2023

The email, with an HTML file attachment, contains a short message: Please note: [redacted] <=> For information please continue to check here or use our free mobile=app. Updates status are made no more than once a day. Last week, the IRS reminded taxpayers that Tax Day, April 18, is Tuesday this week.

Accountability 92

Accountability Social Engineering Scams Banking 92

Krebs on Security

NOVEMBER 14, 2018

Microsoft on Tuesday released 16 software updates to fix more than 60 security holes in various flavors of Windows and other Microsoft products. A new update for Acrobat/Reader fixes this bug, and Adobe has published some mitigation suggestions as well.

Encryption 187

Encryption Passwords Internet Internet 187

Security Affairs

SEPTEMBER 7, 2021

Affected versions are: version < 6.13.23 version < 7.4.11 version < 7.11.5 version < 7.12.5. CISA also published a security advisory to urge admins to apply the Confluence security updates released on August 25, 2021by Atlassian.

Hacking 96

Hacking Cryptocurrency Authentication Internet 96

Security Affairs

DECEMBER 24, 2020

91541, 91534 CVE-2014-1812 05/13/2014 Microsoft Windows Group Policy Preferences Password Elevation of Privilege Vulnerability (KB2962486) 9 91148, 90951 CVE-2020-0688 02/11/2020 Microsoft Exchange Server Security Update for February 2020 8.8 50098 CVE-2016-0167 04/12/2016 Microsoft Windows Graphics Component Security Update (MS16-039) 7.8

Hacking 115

Hacking Cyber Attacks Passwords Software 115

Security Affairs

APRIL 29, 2021

. “An attacker could exploit this vulnerability by reading /proc/<pid>/syscall, a legitimate Linux operating system file — making it impossible to detect on a network remotely. Users are recommended to update their products to the Linux Kernel versions 5.10-rc4, ” continues the advisory. rc4, 5.4.66 Pierluigi Paganini.

Hacking 114

Hacking Information Security Malware Cybersecurity 114

Krebs on Security

SEPTEMBER 16, 2021

Prosecutors alleged that in addition to running and marketing Downthem, the defendants sold huge, continuously updated lists of Internet addresses tied to devices that could be used by other booter services to make attacks far more powerful and effective. Charles, Ill. The user interface for Downthem[.]org. org and ampnode[.]com.

DDOS 293

DDOS DNS Internet Internet 293

SecureWorld News

NOVEMBER 5, 2021

The Cybersecurity and Infrastructure Security Agency (CISA) has compiled Knowing Exploited Vulnerabilities Catalog, which lists at least 300 vulnerabilities and will be updated continuously. November 3, 2021. If requested by CISA, agencies will provide a copy of these policies and procedures.

Risk 78

Risk Cybercrime Information Security Malware 78

Security Affairs

MAY 4, 2021

The maintainers of the Exim email server software have released security updates to address a collection of 21 vulnerabilities, dubbed 21Nails , that can be exploited by attackers to take over servers and access email traffic through them. In September 2019 , Exim maintainers released an urgent security update, Exim version 4.92.3,

Hacking 114

Hacking Software Engineering Encryption 114

Krebs on Security

DECEMBER 20, 2018

In a complaint unsealed today, the Justice Department said that although FBI agents identified at least 60 different booter services operating between June and December 2018, they discovered not all were fully operational and capable of launching attacks. As of Thursday morning, a seizure notice featuring the seals of the U.S. bullstresser[.]net.

DNS 176

DNS Computers and Electronics Government Internet 176

SiteLock

AUGUST 27, 2021

Did you know that up to 60% of all internet traffic is bots? And—will Ram finally update his password? Making headlines last week, over 170,000 carrier-grade routers belonging to internet service providers were compromised. This caused websites being accessed through these routers to be injected with cryptomining malware.

Internet 52

Internet Internet Data breaches Passwords 52

Security Affairs

OCTOBER 17, 2023

Statistics have shown that nearly 60% of small businesses that suffer a significant breach are forced to shut down within the same year. This tool provides real-time updates and actionable insights, offers various statistical insights into data, and the ability to determine attack perpetrators.

Social Engineering 115

Social Engineering Ransomware Engineering Phishing 115

Security Boulevard

JUNE 28, 2023

<;p />&#60;p />&#60;p>&#60;ac:link>&#60;ri:user ri:account-id="99809874" />&#60;/ac:link>&#60;/p>There's a page dedicated to 'Employee Recognition' where they showcase all the employees who have gone above and beyond in their work. <a No data will be deleted.

Authentication 52

Authentication Passwords Penetration Testing Social Engineering 52

Security Affairs

APRIL 4, 2021

“We will routinely update the return to service status as additional information becomes available. If you want to receive the weekly Security Affairs Newsletter for free subscribe here. ” continues Applus Technologies. Follow me on Twitter: @securityaffairs and Facebook.

Malware 121

Malware Technology Internet Internet 121

Security Affairs

JANUARY 10, 2023

The package is maintained by Auth0, it had over 9 million weekly downloads as of January 2022 and it is used by more than 22.000 projects. “For versions &#60;=8.5.1 July 27, 2022 – Auth0 team updated that the issue was under review. 23, 2022 – Unit 42 researchers sent an update request. addressed the issue.

Engineering 78

Engineering Security Awareness Authentication Hacking 78

Security Affairs

APRIL 17, 2021

Google Project Zero security team has updated its vulnerability disclosure policy, it gives users 30 days to patch flaws before disclosing associated technical details. “The goal of our 2021 policy update is to make the patch adoption timeline an explicit part of our vulnerability disclosure policy. Pierluigi Paganini.

Hacking 97

Hacking Software Information Security Malware 97

SecureList

APRIL 24, 2024

When I view the git log I can see it has not updated in over a year. I am looking for things like multithreaded encoding / decoding and a few updates that Brett Okken had submitted (but are still waiting for merge). .” Thu, 19 May 2022 12:26:03 -0700 XZ for Java “Is XZ for Java still maintained? Glad to see it being fixed.

Social Engineering 97

Social Engineering Engineering Accountability VPN 97

Malwarebytes

JULY 29, 2021

After enabling EPA in the UI, the Web.config file created by CES role at &#60;%windir%>systemdataCES&#60;CA Name>_CES_Kerberosweb.config should also be updated by adding &#60;extendedProtectionPolicy> set with a value of either WhenSupported or Always depending on the Extended Protection option selected in the IIS UI.

Authentication 139

Authentication Passwords Encryption System Administration 139

SecureList

APRIL 3, 2023

We found out that the threat actor specifically targeted cryptocurrency companies, dropping the following files on infected machines: C:Windowssystem32wlbsctrl.dll, a malicious library (MD5: 9f85a07d4b4abff82ca18d990f062a84); C:WindowsSystem32configTxR&#60;machine hardware profile GUID> TxR.0.regtrans-ms, regtrans-ms file.

Cryptocurrency 131

Cryptocurrency Encryption Software Malware 131

The Last Watchdog

APRIL 11, 2022

Roughly 60 percent of successful ransomware attacks are against SMBs. The US CERT has a database of actively exploited vulnerabilities that is consistently updated. From financial institutions to meat producers, it seems every industry has been impacted by ransomware in the past year — maybe even the past week.

Ransomware 236

Ransomware Social Engineering Passwords Engineering 236

Fox IT

JANUARY 12, 2021

But before doing so, we observed the adversary checking the current permissions of the obtained user account with the following commands: net user net user Administrator net user &#60;username> /domain net localgroup administrators. The adversary heavily relies on scheduled tasks for executing a batch-file (.bat)

VPN 68

VPN Accountability Passwords DNS 68

Security Affairs

AUGUST 3, 2020

The authors of the GandCrab RaaS also offers technical support and updates to its members, they also published a video tutorial that shows how the ransomware is able to avoid antivirus detection. Last week, the Minister of Internal Affairs of Belarus announced the arrest of a man on charges of distributing the infamous GandCrab ransomware.

Ransomware 120

Ransomware Advertising Malware Hacking 120

Security Affairs

DECEMBER 19, 2021

A new round of the weekly Security Affairs newsletter arrived! TellYouThePass ransomware resurges and exploits Log4Shell in recent attacks Western Digital customers have to update their My Cloud devices to latest firmware version Apache releases the third patch to address a new Log4j flaw 1.8

Banking 58

Banking Firmware Ransomware Hacking 58

Security Affairs

JANUARY 3, 2022

The IT giant released emergency out-of-band security updates that address four zero-day issues (CVE-2021-26855, CVE-2021-26857, CVE-2021-26858, and CVE-2021-27065) in all supported MS Exchange versions that were actively exploited in the wild. Bloomberg was informed about the payment by two people familiar with the attack.

Cyber Attacks 115

Cyber Attacks Ransomware Insurance Hacking 115

CyberSecurity Insiders

AUGUST 24, 2022

Second is the news related to ransomware named HavanaCrypt that researchers from Cybereason claim to be targeting victims as fake Google software updates. Currently, evidence has been gathered that the attack is being propagated through false job offers and business deals and most of them are being synced to the code signing certificates.

Ransomware 107

Ransomware Digital transformation Encryption Social Engineering 107

Security Affairs

SEPTEMBER 15, 2019

A new round of the weekly newsletter arrived! Adobe September 2019 Patch Tuesday updates fix 2 code execution flaws in Flash Player. Microsoft Patch Tuesday updates for September 2019 fix 2 privilege escalation flaws exploited in attacks. Iran-linked group Cobalt Dickens hit over 60 universities worldwide.

Spyware 56

Spyware Advertising Hacking IoT 56

SecureWorld News

OCTOBER 4, 2021

It could well have been the result of an internal, system wide change or update that went awry. This Facebook outage comes just hours after Frances Haugen appeared on 60 Minutes as a whistleblower, claiming Facebook intentionally misleads the public on progress it has made against hate speech, violence, and misinformation.

DNS 75

DNS Media Engineering Accountability 75

SecureWorld News

AUGUST 12, 2022

In less than 60 seconds, a total of 76 employees received text messages on their personal and work phones, and even some family members received messages. Update detections to identify any subsequent attack attempts. The Twilio communications API allows developers to build voice and SMS capabilities into their apps.

Phishing 74

Phishing Software Scams Passwords 74