Solution spotlight series: Authority to Operate on Amazon Web Services
Cloud-based services provide clear benefits to organisations through cost savings, greater flexibility, enhanced business agility, and greater operational resilience. Whilst the advantages are well understood, often the risks are overlooked.
Hackers hit Russian ministry, rocket center using MSHTML vulnerability
By Waqas Microsoft Office zero-day also dubbed MSHTML attack exploited to target Russian government including Interior ministry and State Rocket Center. This is a post from HackRead.com Read the original
FamousSparrow APT Wings in to Spy on Hotels, Governments
Threat Post – A custom “SparrowDoor” backdoor has allowed the attackers to collect data from targets around the globe. A cyberespionage group dubbed “FamousSparrow” by researchers has taken flight, targeting
Phone scammers use COVID-19 vaccine appointments to try tricking victims into downloading malware
Hackers are targeting American and Canadian victims with a malware strain that used coronavirus-themed messages to dupe users into downloading software that collects their personal information, according to findings published
Millions impacted as payment API vulnerabilities exposing transaction keys
By Deeba Ahmed Millions of users could have exposed their private, payment data due to API security vulnerabilities discovered in several applications. This is a post from HackRead.com Read the
Google Report Spotlights Uptick in Controversial ‘Geofence Warrants’ by Police
Threat Post – Digital privacy rights defenders contend that geofencing warrants grab data on everyone near a crime, without cause. Newly released data by Google sheds light on a controversial
Acronis Offers up to $5,000 to Users Who Spot Bugs in Its Cyber Protection Products
Once available only to the cybersecurity community, Acronis has opened its bug-hunting program to the public and aims to double the total bounties paid. Read More: https://threatpost.com/acronis-bug-bounty-program/174849/
Cloud Security: Report Finds 68% of Malware Delivered From Cloud Apps
Security Intelligence – Cloud Security: Report Finds 68% of Malware Delivered From Cloud Apps Cloud apps are now the most common way digital attackers distribute malware. In the second quarter
Espionage group targeted hotels, governments, seized on Microsoft Exchange vulnerability
A cyber-espionage group that’s targeted hotels and international governments since at least 2019 at times used a known Microsoft vulnerability to breach their victims, according to research published Thursday by
Malware analysis: Ragnarok ransomware
Ragnarok is recent ransomware used in targeted attacks against unpatched Citrix ADC servers vulnerable to the CVE-2019-19781 vulnerability. This article will analyze the details of this ransomware, how it works
Google, Microsoft and Oracle generated most vulnerabilities in 2021
By Waqas When it comes to vulnerabilities; Google holds the top slot, Microsoft is on number two while Oracle is on number three H1 2021. This is a post from
Netgear SOHO Security Bug Allows RCE, Corporate Attacks
Threat Post – The issue lies in a parental-control function that’s always enabled by default, even if users don’t configure for child security. A high-severity security bug affecting several Netgear
CISA, FBI, NSA warn of increased attacks involving Conti ransomware
The Department of Homeland Security’s cybersecurity agency, the FBI and National Security Agency urged organizations in an alert Wednesday to update their systems amid an increase in Conti ransomware attacks.
Unpatched Apple Zero-Day in macOS Finder Allows Code Execution
Threat Post – All a user needs to do is click on an email attachment, and boom – the code is silently executed without the victim knowing. It affects Big
VMware Warns of Ransomware-Friendly Bug in vCenter Server
Threat Post – UPDATE: Malicious actors are already scanning honeypots, looking for servers vulnerable to the critical arbitrary file upload flaw in vCenter servers’ Analytics service. VMware has released a
New version of Jupyter infostealer delivered through MSI installer
By Deeba Ahmed Originally, Jupyter infostealer is known for stealing data from popular browsers like Chrome and Firefox. Here’s what the new version of it does. This is a post
Recently Patched Vulnerabilities in Ninja Forms Plugin Affect Over 1 Million Site Owners
WordFence – On August 3, 2021 the Wordfence Threat Intelligence team initiated the responsible disclosure process for two vulnerabilities that were discovered in Ninja Forms, a WordPress plugin installed on
TikTok, GitHub, Facebook Join Open-Source Bug Bounty
Threat Post – The initiative, run by HackerOne, aims to uncover dangerous code repository bugs that end up going viral across the application supply-chain. Tech giants want hackers to their
Netflix errors – How to fix them
By Owais Sultan Netflix errors are a bane of existence for many Netflix users – Let’s dig it and see how one can fix this error. This is a post
Security tips – How to protect your online trading account
By Owais Sultan cybercriminals are targeting stock markets. Their modus operandi includes selling penny stocks from their account and purchase them from a hacked account. This is a post from HackRead.com
Choosing a web hosting service that’s right for your business
By Owais Sultan Web hosting problems can have a significant impact on how your business is perceived, even large corporations are subject to such failures. This is a post from
12 years jail for man who unlocked phones, defrauded AT&T of $200m
By Deeba Ahmed According to the US DoJ, Fahd remotely unlocked phones belonging to AT&T despite knowing that an investigation was launched against him. This is a post from HackRead.com
WhitePaper Release: Defense against Client-Side Attacks
TL;DR: A new WhitePaper released “https://insight.claranet.co.uk/cybersecurity/defense-against-client-side-attacks” to help attackers understand client-side attacks and for developers to understand how to mitigate them. In the modern era, the web exploitation world is
Canadian firm VoIP.ms hit by non-stop extortion-based DDoS attacks
By Waqas Although unconfirmed; the notorious REvil ransomware gang could be behind the DDoS attacks on VoIP.ms. Here’s what we know so far. This is a post from HackRead.com Read
New Jupyter Evasive Delivery through MSI Installer
Introduction In 2020, Morphisec introduced the Jupyter infostealer, a .NET attack that primarily targets Chromium, Firefox, and Chrome browser data while also maintaining the additional capabilities of a backdoor. Read
How to carry out a watering hole attack: Examples and video walkthrough
What is a watering hole attack, how do they work and what can you do to defend against them? Find out in this watering hole walkthrough from Infosec Principal Security
New OffSec Training Library Subscriptions: Learn One and Learn Unlimited
WHAT IS THE NEW OFFSEC TRAINING LIBRARY ALL ABOUT? As part of our ongoing work to improve the quality and depth of course offerings at Offensive Security, we have created
CISA Reports Top Vulnerabilities From Remote Work
Trend Micro – Protect Your Organization with IPS As organizations shift to the cloud, and work from home becomes more mainstream due to the pandemic, businesses will need to improve
Cryptominer z0Miner Uses Newly Discovered Vulnerability CVE-2021-26084 to Its Advantage
Trend Micro – Cryptominer z0Miner Uses Newly Discovered Vulnerability CVE-2021-26084 to Its Advantage Exploits & Vulnerabilities Recently, we discovered that the cryptomining trojan z0Miner has been taking advantage of the
Europol nabs 106 criminals involved in SIM swapping, money laundering
By Waqas Europol said that the suspects carried out a number of cybercrimes included phishing, SIM Swapping, and BEC (business email compromise.) This is a post from HackRead.com Read the
Ransomware gang strikes Iowa agriculture business New Cooperative, the latest hack on food supply chain
The BlackMatter ransomware gang has struck an Iowa agricultural business, New Cooperative, and is demanding a $5.9 million ransom. Several security researchers first called attention to the hack on Monday,
BluStealer: from SpyEx to ThunderFox
Avast – Overview BluStealer is is a crypto stealer, keylogger, and document uploader written in Visual Basic that loads C#.NET hack tools to steal credentials. The family was first mentioned
Russian electronic voting system hit by 19 DDoS attacks in one day
By Waqas According to local Russian media, these DDoS attacks originated from several different countries including India, China, Brazil, Russia, and the US. This is a post from HackRead.com Read
Police say scammers who used email fraud, SIM swapping are connected to Italian mafia
Police in Europe have arrested more than 100 people who allegedly stole more than $11 million in a years-long fraud operation that law enforcement officials have linked to an Italian
Water Basilisk Uses New HCrypt Variant to Flood Victims with RAT Payloads
Trend Micro – Water Basilisk Uses New HCrypt Variant to Flood Victims with RAT Payloads In this blog entry we look into a fileless campaign that used a new HCrypt
What are tech companies doing about ethical use of data? Not much
Padlokr – Tech companies have an economic imperative to avoid grappling too seriously with the ethical issues surrounding data usage. Shutterstock James Arvanitakis, Western Sydney University Our relationship with tech
Anonymous says it's leaking hacked data from Epik, a right-wing hosting service
Members of the umbrella hacking movement Anonymous say they leaked information about a range of fringe websites after breaching Epik, a web hosting provider and domain registrar service, marking the
AT&T Phone-Unlocking Malware Ring Costs Carrier $200M
Threat Post – With the help of malicious insiders, a fraudster was able to install malware and remotely divorce iPhones and other handsets from the carrier’s U.S. network — all
DirtyMoe: Code Signing Certificate
Avast – Abstract The DirtyMoe malware uses a driver signed with a revoked certificate that can be seamlessly loaded into the Windows kernel. Therefore, one of the goals is to
Facebook says it will step up efforts to stop coordinated campaigns that cause harm
Facebook will ramp up efforts to curb coordinated activities from real users who are connected to dangerous activities in the real world, such as promotion of vaccine misinformation and organizing
Bitdefender releases REvil decryptor as ransomware gang shows signs of return
As law enforcement braces for the revival of the REvil ransomware gang, a cybersecurity firm on Thursday released a free decryption tool for early victims of the criminals. The decryptor,
Triple Extortion Ransomware: A New Challenge For Defenders
Ransomware developers have powerful financial incentives to continue adding new features to their code. From developers to affiliates, these malicious pieces of software enrich countless cyber criminals at great expense
Attackers Spread Cobalt Strike Through Backdoor in Common Apps
Security Intelligence – Attackers Spread Cobalt Strike Through Backdoor in Common Apps Researchers discovered a new attack campaign targeting online gambling companies in China with one of two malware payloads.
Integrate Serverless Security for Runtime Apps
Trend Micro – The serverless paradigm offers solutions to application building and deployment without the challenges of infrastructure management. Organizations no longer need to perform capacity planning of any kind,
The real dangers of vulnerable IoT devices
The landscape of the Internet of Things (IoT) devices has been explored strongly by criminals in the last few years, causing enormous constraints for home users and companies from the
How criminals leverage a Firefox fake extension to target Gmail accounts
Recently, malicious campaigns have been using fake web-browsers extensions commonly disseminated via Google Ads and other channels. This article will Proofpoint researchers found a new Firefox fake extension active since
Apple Issues Emergency Fix for NSO Zero-Click Zero Day
Threat Post – Citizen Lab urges Apple users to update immediately. The new zero-click zero-day ForcedEntry flaw affects all things Apple: iPhones, iPads, Macs and Watches. Apple users should immediately
Virginia National Guard suffers cyberattack as Marketo leaks data
By Waqas According to the organization, email accounts linked with Virginia National Guard were targeted in the cyberattack. This is a post from HackRead.com Read the original post: Virginia National