Delaware, USA – February 11, 2020 – At the end of December last year, another threat to corporate networks appeared – Ragnar Locker, and it seems that its authors are following all fashion trends of the end of the 2019 season. Adversaries operate for only a month and a half and it is not yet […]
Delaware, USA – February 10, 2020 – Emotet once again confirms the reputation of “threat number one” in cyberspace: the new self-spreading module allows the malware to connect to Wi-Fi networks and infect more systems. Now we have one more reason not to use free Wi-FI in public places. Researchers at Binary Defense have discovered […]
Delaware, USA – February 7, 2020 – A Chinese cyberespionage group conducts targeted spear-phishing campaign to compromise systems of Malaysian government officials and exfiltrate sensitive data. Malaysia’s Computer Emergency Response Team issued a security advisory warning about an increase in number of victims involving the campaign. APT40 (also known as Leviathan and TEMP.Periscope) members send […]
Delaware, USA – February 6, 2020 – Cisco patched five critical vulnerabilities in Cisco Discovery Protocol (CDP) that were collectively named CDPwn, four of them could lead to remote code execution. “CDP is a Cisco proprietary Layer 2 (Data Link Layer) network protocol that is used to discover information about locally attached Cisco equipment. CDP […]
Delaware, USA – February 5, 2020 – At the end of January, Maze ransomware gang had a very busy week, and as a result of the attacks, several companies suffered cybersecurity incidents. On January 30, Bouygues Construction fell victim to Maze ransomware and the next day issued the confirmation of a cyberattack, promising to reveal […]
Delaware, USA – February 4, 2020 – Since mid-January, financially motivated cybercriminals from the TA505 group started using HTML attachments to infect victims with the FlawedGrace trojan. Microsoft reported that in this campaign TA505 first used this tactic. The campaign is still ongoing, and adversaries send phishing emails with HTML redirectors attached. When the victim […]
Delaware, USA – February 3, 2020 – Chinese cyberspies did not disregard the protests in Hong Kong and conducted a highly targeted cyber espionage campaign. The adversaries targeted five universities that were infected with a ‘refreshed’ version of ShadowPad malware. In November 2019, ESET detected malware on multiple systems of two Hong Kong universities that […]
Delaware, USA – January 31, 2020 – The notorious Iranian cyberespionage group began to hunt for government organizations in the United States modifying for this purpose the tools found in the group’s arsenal last summer. Intezer Labs researchers, Paul Litvak and Michael Kajilolti, discovered a new spear-phishing campaign by APT34 (aka OilRig and Helix Kitten) […]
Delaware, USA – January 30, 2020 – Last week Electronic Warfare Associates became a victim of the Ryuk gang and the company has not yet reported the security breach. The incident became known since the company’s web servers were encrypted, and even though they were turned off pretty quickly, Google cached ransom notes and encrypted […]
Delaware, USA – January 29, 2020 – Magento issued fresh updates for Magento Commerce and Open Source editions to address six critical and important vulnerabilities, two of which could be exploited for arbitrary code execution. Critical Vulnerability CVE-2020-3719 is an SQL injection flaw that could be exploited to leak sensitive information. Critical vulnerabilities CVE-2020-3718 and CVE-2020-3716, […]