Month: March 2021
Iranian credential thieves targeting medical researchers
31 March 2021The Azadi Tower in Tehran, Iran. (Christiaan Triebert, CC BY 2.0 https://creativecommons.org/licenses/by/2.0, via Wikimedia Commons) In late 2020, a well-known hacker group believed to be sponsored by the Iranian government started a credential harvesting campaign targeting United States and Israeli medical personnel, according to new research from Proofpoint. Researchers attribute the campaign, which it has […]
Read More
Decided to move on from your NGAV/EDR? A Guide for Small Security Teams to What’s Next
31 March 2021You’re fully aware of the need to stop threats at the front door and then hunt any that got through that first gate, so your company installed an EPP/ EDR solution. But like most companies, you’ve already come across its shortcoming – and these are amplified since you have a small security team. More than […]
Read More
Hacker menanamkan beberapa backdoors pada target industri di Jepang
31 March 2021Cybersecurity peneliti pada selasa diungkapkan rincian canggih kampanye yang menyebarkan berbahaya backdoors untuk tujuan exfiltrating informasi dari sejumlah sektor industri yang terletak di Jepang. Dijuluki “A41APT” oleh Kaspersky peneliti, temuan menyelidiki baru membunuh serangan yang dilakukan oleh APT10 (alias Batu Panda atau Jangkrik) menggunakan sebelumnya tercatat malware untuk memberikan sebanyak tiga muatan seperti SodaMaster, P8RAT, […]
Read More
MobiKwik Suffers Major Breach — KYC Data of 3.5 Million Users Exposed
30 March 2021Popular Indian mobile payments service MobiKwik on Monday came under fire after 8.2 terabytes (TB) of data belonging to millions of its users began circulating on the dark web in the aftermath of a major data breach that came to light earlier this month. The leaked data includes sensitive personal information such as: customer names, […]
Read More
Flaws in Ovarro TBox RTUs Could Open Industrial Systems to Remote Attacks
29 March 2021As many as five vulnerabilities have been uncovered in Ovarro’s TBox remote terminal units (RTUs) that, if left unpatched, could open the door for escalating attacks against critical infrastructures, like remote code execution and denial-of-service. “Successful exploitation of these vulnerabilities could result in remote code execution, which may cause a denial-of-service condition,” the U.S. Cybersecurity […]
Read More
New Bugs Could Let Hackers Bypass Spectre Attack Mitigations On Linux Systems
29 March 2021Cybersecurity researchers on Monday disclosed two new vulnerabilities in Linux-based operating systems that, if successfully exploited, could let attackers circumvent mitigations for speculative attacks such as Spectre and obtain sensitive information from kernel memory. Discovered by Piotr Krysiuk of Symantec’s Threat Hunter team, the flaws — tracked as CVE-2020-27170 and CVE-2020-27171 (CVSS scores: 5.5) — […]
Read More
How to Effectively Prevent Email Spoofing Attacks in 2021?
29 March 2021Email spoofing is a growing problem for an organization’s security. Spoofing occurs when a hacker sends an email that appears to have been sent from a trusted source/domain. Email spoofing is not a new concept. Defined as “the forgery of an email address header to make the message appear as if it was sent from […]
Read More
For better security, online retailers must up tighten up defenses and improve threat intel
29 March 2021Today’s columnist, Yonatan Israel Garzon of Cyberint, says that the online boom during the pandemic has caused serious security issues for online retailers. He says they must tighten up security defenses and improve threat intelligence. Credit: Instatcart The last 12 months have seen a boom in online shopping, as lockdowns across the United States forced […]
Read More
PHP’s Git Server Hacked to Insert Secret Backdoor to Its Source code
29 March 2021In yet another instance of a software supply chain attack, unidentified actors hacked the official Git server of the PHP programming language and pushed unauthorized updates to insert a secret backdoor into its source code. The two malicious commits were pushed to the self-hosted “php-src” repository hosted on the git.php.net server, illicitly using the names […]
Read More
Watch Out! That Android System Update May Contain A Powerful Spyware
27 March 2021Researchers have discovered a new information-stealing trojan, which targets Android devices with an onslaught of data-exfiltration capabilities — from collecting browser searches to recording audio and phone calls. While malware on Android has previously taken the guise of copycat apps, which go under names similar to legitimate pieces of software, this sophisticated new malicious app […]
Read More