Delaware, USA – June 21, 2019 – Another phishing campaign with the upgraded DanaBot trojan is reported to target Poland and Italy. The new DanaBot strain comes with a Blitzkrieg ransomware module that changes the extension of the encrypted files to .non. Initially, the DanaBot malware was observed during the phishing campaign in Australia back […]
The officials of Riviera Beach, Florida, held a meeting and voted to pay the ransom of 65 bitcoins ($603,000) to regain access to the local services that had been knocked down by the ransomware attack earlier in May 2019. The ransomware attack paralyzed the operations of the Riviera Beach city services including website, billing system, […]
Delaware, USA – June 18, 2019 – One of the leaders of airplane parts manufacturing was informed to have shut down operations at its plants because of a large-scale ransomware attack. Asco Industries who is the leader in the design and manufacture of major functional components for Boeing and Airbus commercial passenger jets, Airbus A400M […]
I have been working in the company since its founding in 2015, and during this time SOC Prime has evolved from a small startup into a rapidly growing international company. Our employees are also growing professionally to keep up with the pace of development. For each of us, working at SOC Prime brought forth unexpected […]
Delaware, USA – June 13, 2019 – After publishing a proof-of-concept code for a critical vulnerability in the Magento content management system, the number of successful compromises of online stores increases significantly every month. Security update for the PRODSECBUG-2198 flaw was released at the end of March, and its exploitation began in less than a […]
Delaware, USA – June 12, 2019 – Microsoft released monthly updates yesterday patching 88 vulnerabilities, 21 of which are critical. Among the patched vulnerabilities are CVE-2019-1040 and CVE-2019-1019 which affect Microsoft’s NTLM authentication protocol and their exploitation allow adversaries to bypass all major NTLM protection mechanisms on all Windows versions. Preempt researchers have published a […]
Delaware, USA – June 11, 2019 – The attack occurred on June 5 in the middle of the night, when there were no employees in the office of the non-profit organization. Only one computer remained unencrypted which now is used as a server to partially maintain operations of the organization. Auburn Food Bank provides relief […]
Delaware, USA – June 10, 2019 – ICEFOG APT disappeared from the radar of researchers in 2013 after Kaspersky Lab experts revealed the activities of the group, but their custom malware is still used by multiple Chinese APT groups in highly targeted cyber espionage campaigns. At the CONFidence cybersecurity conference, Chi-en Shen, FireEye’s senior researcher, […]
Delaware, USA – June 7, 2019 – Iranian APT group conducts cyber espionage campaign targeting organizations in the telecommunication sector and governmental entities in the Middle Eastern and Middle Asian countries. ClearSky researchers observed the latest activity of the MuddyWater group and discovered new tricks used to infect victims. In the arsenal of the group […]
Delaware, USA – June 5, 2019 – Every day we are approaching WannaCry-like outbreak, as more and more information becomes available about the CVE-2019-0708 vulnerability aka BlueKeep. Reverse engineer Sean Dillon (Zǝɹosum0x0) developed a module for the Metasploit pentesting framework which exploits BlueKeep flaw to achieve remote code execution. The module allows the researcher to […]