Month: November 2021
Cacing kritis ditemukan dalam beberapa model pencetak HP
30 November 20218 Peneliti keamanan cyber pada hari Selasa mengungkapkan beberapa kelemahan keamanan mempengaruhi 150 printer berbeda (MFPs) dari HP Inc yang bisa berpotensi disalahgunakan oleh musuh untuk mengambil kendali perangkat rentan, informasi sensitif terhadap perusahan enterprise, dan menyusup jaringan enterprise untuk melancarkan serangan lain. Dua kelemahan-kolektif disebut Mencetak Shellz – ditemukan dan dilaporkan ke HP oleh […]
Read More
New Hub for Lean IT Security Teams
30 November 2021One of the harsh realities of cybersecurity today is that malicious actors and attackers don’t distinguish between organizations that have seemingly endless resources and those operating with lean IT security teams. For these lean teams, meeting the challenges in the current security landscape requires constant attention, and sometimes a little support. XDR provider Cynet has […]
Read More
Panasonic Suffers Data Breach After Hackers Hack Into Its Network
30 November 2021Japanese consumer electronics giant Panasonic has disclosed a security breach wherein an unauthorized third-party broke into its network and potentially accessed data from one of its file servers. “As the result of an internal investigation, it was determined that some data on a file server had been accessed during the intrusion,” the company said in […]
Read More
Unpatched Unauthorized File Read Vulnerability Affects Microsoft Windows OS
30 November 2021Unofficial patches have been issued to remediate an improperly patched Windows security vulnerability that could allow information disclosure and local privilege escalation (LPE) on vulnerable systems. Tracked as CVE-2021-24084 (CVSS score: 5.5), the flaw concerns an information disclosure vulnerability in the Windows Mobile Device Management component that could enable an attacker to gain unauthorized file […]
Read More
WIRTE Hacker Group Targets Government, Law, Financial Entities in Middle East
30 November 2021Government, diplomatic entities, military organizations, law firms, and financial institutions primarily located in the Middle East have been targeted as part of a stealthy malware campaign as early as 2019 by making use of malicious Microsoft Excel and Word documents. Russian cybersecurity company Kaspersky attributed the attacks with high confidence to a threat actor named […]
Read More
CleanMyMac X: Performance and Security Software for Macbook
29 November 2021We use Internet-enabled devices in every aspect of our lives today—to find information, shop, bank, do homework, play games, and keep in touch with friends and family. As a result, our devices contain much personal information about us. Also, any great device will get a little clunky and slow over time and the Mac is […]
Read More
4 Android Banking Trojan Campaigns Targeted Over 300,000 Devices in 2021
29 November 2021Four different Android banking trojans were spread via the official Google Play Store between August and November 2021, resulting in more than 300,000 infections through various dropper apps that posed as seemingly harmless utility apps to take full control of the infected devices. Designed to deliver Anatsa (aka TeaBot), Alien, ERMAC, and Hydra, cybersecurity firm […]
Read More
New Chinotto Spyware Targets North Korean Defectors, Human Rights Activists
29 November 2021North Korean defectors, journalists who cover North Korea-related news, and entities in South Korea are being zeroed in on by a nation-state-sponsored advanced persistent threat (APT) as part of a new wave of highly-targeted surveillance attacks. Russian cybersecurity firm Kaspersky attributed the infiltrations to a North Korean hacker group tracked as ScarCruft, also known as […]
Read More
Hackers Using Compromised Google Cloud Accounts to Mine Cryptocurrency
29 November 2021Threat actors are exploiting improperly-secured Google Cloud Platform (GCP) instances to download cryptocurrency mining software to the compromised systems as well as abusing its infrastructure to install ransomware, stage phishing campaigns, and even generate traffic to YouTube videos for view count manipulation. “While cloud customers continue to face a variety of threats across applications and […]
Read More
Interpol Arrests Over 1,000 Cyber Criminals From 20 Countries; Seizes $27 Million
29 November 2021A joint four-month operation coordinated by Interpol, the international criminal police organization, has culminated in the arrests of more than 1,000 cybercriminals and the recovery of $27 million in illicit proceeds. Codenamed “HAECHI-II,” the crackdown enabled law enforcement units from across 20 countries, as well as Hong Kong and Macao, close 1,660 cases alongside blocking […]
Read More