Delaware, USA – June 18, 2019 – One of the leaders of airplane parts manufacturing was informed to have shut down operations at its plants because of a large-scale ransomware attack. Asco Industries who is the leader in the design and manufacture of major functional components for Boeing and Airbus commercial passenger jets, Airbus A400M […]
Delaware, USA – June 13, 2019 – After publishing a proof-of-concept code for a critical vulnerability in the Magento content management system, the number of successful compromises of online stores increases significantly every month. Security update for the PRODSECBUG-2198 flaw was released at the end of March, and its exploitation began in less than a […]
Delaware, USA – June 12, 2019 – Microsoft released monthly updates yesterday patching 88 vulnerabilities, 21 of which are critical. Among the patched vulnerabilities are CVE-2019-1040 and CVE-2019-1019 which affect Microsoft’s NTLM authentication protocol and their exploitation allow adversaries to bypass all major NTLM protection mechanisms on all Windows versions. Preempt researchers have published a […]
Delaware, USA – June 11, 2019 – The attack occurred on June 5 in the middle of the night, when there were no employees in the office of the non-profit organization. Only one computer remained unencrypted which now is used as a server to partially maintain operations of the organization. Auburn Food Bank provides relief […]
Delaware, USA – June 10, 2019 – ICEFOG APT disappeared from the radar of researchers in 2013 after Kaspersky Lab experts revealed the activities of the group, but their custom malware is still used by multiple Chinese APT groups in highly targeted cyber espionage campaigns. At the CONFidence cybersecurity conference, Chi-en Shen, FireEye’s senior researcher, […]
Delaware, USA – June 7, 2019 – Iranian APT group conducts cyber espionage campaign targeting organizations in the telecommunication sector and governmental entities in the Middle Eastern and Middle Asian countries. ClearSky researchers observed the latest activity of the MuddyWater group and discovered new tricks used to infect victims. In the arsenal of the group […]
Delaware, USA – June 5, 2019 – Every day we are approaching WannaCry-like outbreak, as more and more information becomes available about the CVE-2019-0708 vulnerability aka BlueKeep. Reverse engineer Sean Dillon (Zǝɹosum0x0) developed a module for the Metasploit pentesting framework which exploits BlueKeep flaw to achieve remote code execution. The module allows the researcher to […]
Delaware, USA – June 4, 2019 – Malware attacks not only the Web servers but also network drives and removable drives. Experts of Trend Micro analyzed new malware family and discovered that BlackSquid uses seven exploits to spread Monero miner. In the arsenal of malware, there are exploits for bugs in Rejetto HFS (CVE-2014-6287), Apache […]
Delaware, USA – June 3, 2019 – Appeared at the beginning of last year, the Ransomware-as-a-Service platform GandCrab quickly gained popularity and became a leader in the number of “customers”. According to the adversaries’ post on the popular underground forum Exploit.in, for the sixteen months the victims paid about $2 billion for decrypting their data, […]
Delaware, USA – May 31, 2019 – Turla APT attacks diplomats in Eastern Europe using new PowerShell loaders. ESET analyzed the detected malware samples and published a report on a new series of attacks. In their cyber espionage campaigns, the group uses custom sophisticated malware such as the newly discovered LightNeuron backdoor for Microsoft Exchange […]