Archive for the ‘cybercrime/malcode’ category: Page 5
Jul 22, 2021
This New Malware Hides Itself Among Windows Defender Exclusions to Evade Detection
Posted by Saúl Morales Rodriguéz in category: cybercrime/malcode
Researchers warn about a new malware that hides among Windows Defender’s exclusions to evade detection by the antivirus program.
Jul 22, 2021
Home and office routers come under attack
Posted by Quinn Sena in categories: business, cybercrime/malcode, habitats
Stealth recon and intrusion
On Wednesday, France’s National Agency for Information Systems Security—abbreviated as ANSSI—warned national businesses and organizations that the group was behind a massive attack campaign that was using hacked routers prior to carrying out reconnaissance and attacks as a means to cover up the intrusions.
“ANSSI is currently handling a large intrusion campaign impacting numerous French entities,” an ANSSI advisory warned. “Attacks are still ongoing and are led by an intrusion set publicly referred to as APT31. It appears from our investigations that the threat actor uses a network of compromised home routers as operational relay boxes in order to perform stealth reconnaissance as well as attacks.”
Continue reading “Home and office routers come under attack” »
Jul 20, 2021
China accused of cyber-attack on Microsoft — BBC News
Posted by Raphael Ramos in category: cybercrime/malcode
The UK, US and EU have accused China of carrying out a major cyber-attack earlier this year on Microsoft Exchange email servers.
The attack affected at least 30000 organisations globally.
Continue reading “China accused of cyber-attack on Microsoft — BBC News” »
Jul 18, 2021
Private Israeli spyware used to hack cellphones of journalists, activists worldwide
Posted by Quinn Sena in categories: business, cybercrime/malcode, military, mobile phones, surveillance
Military-grade spyware licensed by an Israeli firm to governments for tracking terrorists and criminals was used in attempted and successful hacks of 37 smartphones belonging to journalists, human rights activists, business executives and two women close to murdered Saudi journalist Jamal Khashoggi, according to an investigation by The Washington Post and 16 media partners.
The phones appeared on a list of more than 50000 numbers that are concentrated in countries known to engage in surveillance of their citizens and also known to have been clients of the Israeli firm, NSO Group, a worldwide leader in the growing and largely unregulated private spyware industry, the investigation found.
The list does not identify who put the numbers on it, or why, and it is unknown how many of the phones were targeted or surveilled. But forensic analysis of the 37 smartphones shows that many display a tight correlation between time stamps associated with a number on the list and the initiation of surveillance, in some cases as brief as a few seconds.
Jul 17, 2021
Disable Windows print spooler or you could be hacked, says Microsoft
Posted by Genevieve Klien in category: cybercrime/malcode
Facepalm: Microsoft is once again advising its customers to disable Windows print spooler, after a new vulnerability that allows hackers to execute malicious code on machines has emerged. While a patch fixing the flaw will be released in due course, the most effective workaround currently on the table is to stop and disable the print spooler service entirely.
This is the third print spooler vulnerability to emerge in just five weeks. While a critical flaw was originally identified and patched in June, a similar flaw – dubbed PrintNightmare – came to light shortly after and was subsequently patched (with mixed success).
Continue reading “Disable Windows print spooler or you could be hacked, says Microsoft” »
Jul 14, 2021
Microsoft attributes new SolarWinds attack to a Chinese hacker group
Posted by Quinn Sena in category: cybercrime/malcode
Hackers were targeting SolarWinds’ Serv-U software.
Microsoft reported Tuesday that it identified a zero-day exploit in SolarWinds’ software. The zero-day originated from a group of Chinese hackers trying to reach the US defense industry. SolarWinds has since patched the exploit.
Jul 12, 2021
VU raises $12M to remove cybersecurity friction from digital experiences
Posted by Genevieve Klien in categories: cybercrime/malcode, government
Pretty soon, people won’t have to provide a fingerprint or a driver license to prove their identity — if VU has its way.
The Argentina-based fraud and identity protection company announced $12 million in Series B funding Monday from backers including software developer Globant, as well as Agrega Partners, NXTP Ventures, Bridge One, the IDB Lab and Telefónica. The new funding gives the company total venture-backed investments of $20 million, CEO Sebastián Stranieri told TechCrunch.
Stranieri, who has worked in the cybersecurity industry for the past 20 years, got the idea for VU in 2007 after spending hours helping his grandmother verify her identity with the Argentinian government in what turned out to be a two-minute process.
Continue reading “VU raises $12M to remove cybersecurity friction from digital experiences” »
Jul 12, 2021
Hackers accessed Mint Mobile subscribers’ data and ported some numbers
Posted by Genevieve Klien in categories: cybercrime/malcode, mobile phones
Mint Mobile is an American telecommunications company which sells mobile phone services and operates as an MVNO on T-Mobile’s cellular network in the United States.
BleepingComputer reported that Mint Mobile has disclosed a data breach that exposed subscribers’ account information and ported phone numbers to another carrier.
The data breach notification sent to the impacted subscribers reveals that an unauthorized person gained access to their data between June 8th and June 10th. The company did not reveal how hackers had access to the subscribers’ data.
Jul 11, 2021
‘Lack of Cybersecurity Is a Clear & Immediate Danger to Society’: Klaus Schwab, Cyber Polygon 2021
Posted by Genevieve Klien in categories: biotech/medical, business, cybercrime/malcode, transportation
World Economic Forum Founder Klaus Schwab opens Cyber Polygon 2021 with a warning: “A lack of cybersecurity has become a clear and immediate danger to our society worldwide.”
Giving the welcoming remarks at Cyber Polygon for the second year in a row, Schwab spoke at length about the World Economic Forum’s (WEF) desire to tackle cybersecurity by bringing together a closer merger of corporations, small businesses, and governments.