Security Affairs

FEBRUARY 12, 2021

The fresh release of the Latin American Lampion trojan was updated with a new C2 address. 0x64d637c (246): <|Info|><|>Microsoft Windows 10 Home (64)bit<|><|><|><<|@-@|DESKTOP-xxxxxxxxx - xxxx|Microsoft Windows 10 Home (64)bit|||MP|N. Lampion trojan disseminated in Portugal using COVID-19 template.

Banking 108

Banking Malware Information Security Hacking 108

Security Affairs

FEBRUARY 6, 2023

Linux variant of Royal Ransomware from ELF 64-bit b57e5f0c857e807a03770feb4d3aa254d2c4c8c8d9e08687796be30e2093286c 0/62 FUD pic.twitter.com/GXu7GOuMDm — Will (@BushidoToken) February 2, 2023 Querying VirusTotal for the hash that was shared by the expert we can verify that currently the ransomware variant has a detection rate of 32 our of 63.

Encryption 96

Encryption Ransomware Malware Healthcare 96

Security Affairs

MARCH 11, 2021

RedXOR, like other Winnti malware, PWNLNX and XOR.DDOS, are unstripped 64-bit ELF file.(“po1kitd-update-k”). “po1kitd-update-k”). updating the malware, performing file operations, providing operator with a “tty” shell, executing commands with system privileges, and running arbitrary shell commands.

Malware 143

Malware Encryption Authentication Passwords 143

Security Affairs

FEBRUARY 1, 2021

blocksize is 64, (blocksize – hd->count) underflows, the if doesn't hit, so buf_cpy copies the whole input to buf. please update immediately to 1.9.1.” We track this bug at [link] “ If you want to receive the weekly Security Affairs Newsletter for free subscribe here. which we released last week.

Encryption 138

Encryption Engineering Hacking Software 138

Malwarebytes

NOVEMBER 16, 2021

Not only had the infrastructure been dismantled, but previously infected computers had received a special update that would effectively remove the malware at a specific date. Out of the woods again. On November 15, security researchers who’ve tracked Emotet announced that the threat was back. A return of malspam waves and ransomware?

InfoSec 82

InfoSec Ransomware Malware 82

Security Affairs

MARCH 13, 2019

This week, Microsoft released Patch Tuesday security updates for March 2019 that address 64 flaws, including two Windows zero-day vulnerabilities exploited in targeted attacks. In October 2018, FruityArmor exploited another Windows zero-day in targeted attacks aimed at entities in the Middle East.

Spyware 94

Spyware Advertising Government Hacking 94

CyberSecurity Insiders

AUGUST 31, 2021

More than half of respondents (52%) said their hospitals have no protection against the Bluekeep vulnerability, and the number was higher for WannaCry (64%) and NotPetya (75%). Furthermore, inadequate protection against vulnerabilities such as WannaCry, NotPetya and BlueKeep is all too common.

Ransomware 120

Ransomware Healthcare Cybersecurity Backups 120

NopSec

SEPTEMBER 25, 2019

The security update addresses the vulnerability by modifying how the scripting engine handles objects in memory. To be fully protected, Microsoft recommends the update be installed as soon as possible. Please revert the mitigation steps before installing the update to return to a full state.

Internet 40

Internet Internet Engineering Accountability 40

eSecurity Planet

JULY 30, 2021

employees found that 83 percent of companies performed major tech updates after an attack, and 71 percent said those updates made it harder to carry out daily tasks. Another 64 percent permanently lost login credentials or important documents following an attack. Haron and Grief: Rebrands or Copycats?

Ransomware 109

Ransomware Computers and Electronics Malware Cryptocurrency 109

Security Affairs

DECEMBER 24, 2020

exe is a Windows core system file that allows 32-bit applications to connect with the 64-bit printer spooler service on x64 Windows builds. Microsoft attempted to address the issue with the June Patch Tuesday security updates, but Google Project Zero experts discovered that the issue has not been fully solved. GdiPrinterThunk+0x1E85A.”

Hacking 117

Hacking Internet Internet Accountability 117

Security Affairs

OCTOBER 14, 2018

Lucas Leong reported the flaw to Microsoft in early May 2018, he expected the flaw would have been fixed with the September 2018 Patch Tuesday set of security updates, but Microsoft did not fix it. Last week Microsoft addressed the flaw as part of its Patch Tuesday updates. As expected, the update brought a modified msrd3x40.dll

Engineering 86

Engineering Advertising Hacking 86

NopSec

MARCH 20, 2019

It was discovered by Kaspersky Lab and patched by Microsoft as one of the 64 vulnerabilities covered under last week’s (March 12 th ) Patch Tuesday. Affected Products 64-bit Windows 8 and 10 (up to build 15063) are affected. It is important to install the corresponding system update – available from Microsoft.

Spyware 40

Spyware Accountability Malware Risk 40

Security Affairs

MARCH 18, 2021

Of course, I will keep it updated, if more artifacts are needed to be extracted for our investigations. Here you have the sources where to download them: – [link] -> Leave the directory ftkimagercli uncompressed – [link] -> Uncompress under the SysinternalsSuite directory – [link] -> Ramcapture(64).exe exe (Important!!!

Encryption 118

Encryption Architecture Accountability Malware 118

NopSec

MARCH 13, 2019

Google released an update for Google Chrome on March 1 st , and pushed it through Chrome auto-update. Microsoft finally released security updates addressing this vulnerability (CVE-2019-0808) as a part of this week’s Patch Tuesday. Fixes To remediate the Chrome vulnerability (CVE-2019-5786), Google pushed an update to Chrome.

Engineering 40

Engineering Internet Internet Software 40

Krebs on Security

AUGUST 14, 2019

The researchers said their volunteers collected Bluetooth scans at 1,185 gas stations across six states, and that Bluetana detected a total of 64 skimmers across four of those states. How can you spot a gas station with these updated features, you ask?

Banking 228

Banking Computers and Electronics Marketing Mobile 228

NopSec

APRIL 17, 2019

The vulnerability was being used in advanced persistent threat campaigns targeting 64-bit versions of Windows OS from Windows 7 to the latest builds of Windows 10. Users should update their systems as soon as possible. References Technical Details by Kaspersky Lab Patch Information from Microsoft Share your thoughts in our community!

Accountability 40

Accountability Risk 40

Approachable Cyber Threats

JULY 7, 2022

This subscription fee gave the buyer an easy-to-use dashboard to customize the malware and retrieve their stolen data, access to customer support, and automatic updates from fixes and improvements by the developer. Raccoon Stealer’s prior version, for example, cost $75 per week or $200 per month.

Social Engineering 105

Social Engineering Cryptocurrency Malware Antivirus 105

Troy Hunt

DECEMBER 7, 2017

I got home early Monday morning after a 34-hour door-to-door commute and have spent the last 4 days trying to readjust which means being dead tired by 8pm then up at 4am. Anyway, this week is all about British politicians sharing their passwords. Yeah, I know, but it turns out it's actually a thing. References. yep, just read the excuses.).

Passwords 113

Passwords Accountability 113

Kali Linux

MAY 11, 2020

Despite the turmoil in the world, we are thrilled to be bringing you an awesome update with Kali Linux 2020.2! Key ones to point out this release are: GNOME 3.36 - a few of you may have noticed a bug that slipped in during the first 12 hours of the update being available. Yes, over 160 kernels and over 64 devices supported.

Architecture 52

Architecture Education Accountability Software 52

SecureList

JANUARY 11, 2021

Its developers have been regularly improving it, switching from one obfuscator to another, changing algorithms and updating features. For the Kazuar binaries used in 2020, a modified 64-bit FNV-1a appeared in the code: Kazuar. Implementation of a modified FNV-1a algorithm (64-bit version). Ticks - timeSpan_0.Ticks);

Malware 61

Malware Media Internet Internet 61

Security Affairs

MARCH 26, 2019

The Bitsadmin utility is legit Microsoft command line tool typically used by sysadmins to download system updates, but during the last years it has also been abused by cyber criminals to masquerade malicious network activities. practicereiki[.com/pagpoftrh54[.php”. com/pagpoftrh54[.php”. amxrters)). 186 (CONTEL-NET-3 RU).

Malware 85

Malware Antivirus Advertising Encryption 85

Kali Linux

DECEMBER 8, 2021

With the end of 2021 just around the corner, we are pushing out the last release of the year with Kali Linux 2021.4 , which is ready for immediate download or updating. There is no extra documentation for this because the installation process is the same as VMWare on 64-bit and 32-bit Intel systems, just using the arm64 ISO.

Social Engineering 52

Social Engineering VPN Architecture Engineering 52

Security Affairs

SEPTEMBER 25, 2018

These micropatches apply to fully updated 32bit and 64bit: – Windows 10 – Windows 8.1 – Windows 7 – Windows Server 2008-2016 pic.twitter.com/Du1cTFafiM. — 0patch (@0patch) September 21, 2018. ” continues the analysis. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Engineering 81

Engineering Advertising Software Hacking 81

Security Affairs

JUNE 5, 2019

Dormann was able to reproduce the issue Recompiling the code on 64-bit Windows 10 and Windows Server 2016 and 2019, only on Windows 8 and 7 it was not possible to reproduce it. “We We have confirmed that the public exploit code functions reliably on 32- and 64-bit Windows 10 platforms, as well as Windows Server 2016 and Windows Server 2019.”

Advertising 61

Advertising Education Authentication Accountability 61

Kali Linux

AUGUST 17, 2020

This release has various impressive updates, all of which are ready for immediate download or updating. And that step can take a very long time , especially after a few months after a release when lots of updates have accumulated. Its that time of year again, time for another Kali Linux release! Quarter #3 - Kali Linux 2020.3.

Firmware 52

Firmware Architecture 52

Security Boulevard

AUGUST 2, 2022

API changes are on the rise with 11% of respondents updating their APIs daily and 31% updating them weekly. 64% of respondents say that API security has helped security collaborate and even embed with DevOps teams. 91% of APIs running within the Salt customer base are exposing PII or sensitive data.

Big data 52

Big data Risk Data breaches Authentication 52

Malwarebytes

MARCH 20, 2021

64 or Amstrad Action. Consoles came with demos pre-loaded, you could download demos or full games, and update purchased titles on the fly. There’s been a number of scams targeting fans of major upcoming video game releases over the last week or two. Preview power: the 80s and 90s.

Scams 94

Scams Phishing Media Authentication 94

Security Affairs

NOVEMBER 1, 2019

This week Google released security updates to address two high severity vulnerabilities in the Chrome browser, one of which is a zero-day flaw actively exploited in attacks in the wild to hijack computers. . “The script then loads another script named .charlie. ” continues the analysis.

Advertising 55

Advertising Encryption Hacking Information Security 55

SecureList

DECEMBER 18, 2020

Further investigation is ongoing and we will continue to update with our findings. The target’s UID is calculated in OrionImprovementBusinessLayer.GetOrCreateUserID by MD5-hashing the MAC address of the first online network adapter, then XORing it down to 64 bits. UID (64 bit). 6a57jk2ba1d9keg15cbg.appsync-api.eu-west-1.avsvmcloud[.]com.

DNS 74

DNS Telecommunications Malware Encryption 74

SecureList

DECEMBER 14, 2022

While this growth may be not too significant, the resources have been under attack 64 longer compared to 21. Following the start of the conflict in Ukraine in February 2022, we have seen a lot of western companies exiting the Russian market and leaving their users in a difficult position when it comes to receiving security updates or support.

DDOS 131

DDOS Ransomware Government Energy and Utilities 131

ForAllSecure

MARCH 24, 2020

To install or update software on an OpenWRT system, a utility called opgk is used. while (isspace(*src)) src++; slen = strlen(src); if (slen > 64) { *len = 0; return NULL; }. conf->force_checksum) { opkg_msg(ERROR, "Package %s sha256sum mismatch. " "Either the opkg or the package index are corrupt. " "Try 'opkg update'.n",

DNS 59

DNS Software Architecture Accountability 59

ForAllSecure

MARCH 24, 2020

To install or update software on an OpenWRT system, a utility called opgk is used. while (isspace(*src)) src++; slen = strlen(src); if (slen > 64) { *len = 0; return NULL; }. conf->force_checksum) { opkg_msg(ERROR, "Package %s sha256sum mismatch. " "Either the opkg or the package index are corrupt. " "Try 'opkg update'.n",

DNS 52

DNS Software Architecture Accountability 52

ForAllSecure

MARCH 25, 2020

To install or update software on an OpenWRT system such as an OpenWRT web server, a utility called opgk is used. while (isspace(*src)) src++; slen = strlen(src); if (slen > 64) { *len = 0; return NULL; }. downloads.openwrt.org" >>/etc/hosts; opkg update && opkg install attr && attr.

DNS 52

DNS Software Architecture Accountability 52

SecureList

JANUARY 13, 2022

These attackers even took the long route of building fake cryptocurrency software development companies in order to trick their victims into installing legitimate-looking applications that eventually receive backdoored updates. The first one contains two base64-encoded binary objects (one for 32-bit and 64-bit Windows) declared as image data.

Cryptocurrency 126

Cryptocurrency Malware Accountability Banking 126

Malwarebytes

APRIL 5, 2023

In 2021, 56 percent of K–12 schools and 64 percent of higher education institutions reported being hit by some type of ransomware. Install, regularly update, and enable real-time detection for antivirus software. And it should come as no surprise that the cyberthreat doing the most damage to education is ransomware.

Education 61

Education Ransomware Cybersecurity Risk 61

Krebs on Security

FEBRUARY 7, 2022

Late last year, the login page for the IRS was updated with text advising that by the summer of 2022, the only way for taxpayers to access their records at irs.gov will be through ID.me , an online identity verification service that collects biometric data — such as live facial scans using a mobile device or webcam. government online.

Insurance 220

Insurance Government Authentication Accountability 220

SecureWorld News

MARCH 13, 2023

The official tipoff started yesterday with Selection Sunday and the beginning of the Round of 64 this week. Throughout the tournament, cybercriminals may send phishing emails or text messages with malicious links or attachments disguised as updates on games and brackets. After all, it's not called, 'March Madness' for nothing!

Phishing 96

Phishing Mobile Passwords Accountability 96