Microsoft Defender ATP Research Team discovered a fileless malware campaign that was spreading the information stealing Astaroth Trojan. Experts at the Microsoft Defender ATP Research Team discovered a fileless malware campaign that is delivering the information stealing Astaroth Trojan. The malware is able to log the usersâ keystrokes, collect information through hooking, access clipboard content, and monitor […]
Government computer systems at La Porte County, Indiana, were shut down after a cyber attack hit them on July 6. Experts believe it was a ransomware attack. On July 6, a cyber attack brought down government computer systems at La Porte County, Indiana. At the time of writing, there were only a few details about […]
Experts observed an increase of the malware spreading using less-known archive types as dropper,in particular ISO image.Delphi wrapper makes analysis harder Introduction In the last period, we observed an increase of the malware spreading using less-known archive types as an initial dropper, in particular, ISO image. The spread of threats exploiting ISO image to hide […]
The developer Tute Costa found a backdoor in the Ruby library during regular security audits before deploying his code in the production environment. The developer Tute Costa found a backdoor in the Ruby library during regular security audits. The dangerous code was used to check the password strength of user-chosen passwords when the library was being […]
The UK Information Commissioner’s Office (ICO) fined British Airways with ÂŁ183 million for failing to protect its customers’ data during last year’s security breach. The UK Information Commissioner’s Office (ICO) fined British Airways with ÂŁ183 million for failing to protect the personal information of roughly 500,000 customers during 2018 security breach. “Following an extensive investigation the ICO […]
Threat actors targeted two high-profile PGP project contributors with the intent to poison certificates used by the SKS keyserver network. Contributors to the PGP protocol GnuPG claim that threat actors are âpoisoningâ their certificates, this means that attackers spam their certificate with a large number of signatures. The intent is to make it impossible for […]
Security experts have uncovered a Magecart large-scale payment card skimming campaign that compromised 962 online stores based on Magento. Security experts at Sanguine Security have uncovered a new large-scale payment card skimming campaign that already hacked 962 online stores running on the Magento CMS. The list of hacked e-commerce also includes a number of websites belonging […]
A new round of the weekly SecurityAffairs newsletter arrived! The best news of the week with Security Affairs. Kindle Edition Paper Copy Once again thank you! Bulgarian IT expert arrested after disclosing a flaw in kindergarten software Germany and the Netherlands agreded to build TEN, the first ever joint military internet Germany and the Netherlands […]
Yesterday, July 6, 2019, hackers breached the GitHub account of Canonical Ltd., the company behind the Ubuntu Linux distribution. On July 6, 2019, hackers have breached the GitHub account of Canonical Ltd., the organization behind the Ubuntu Linux distribution. The company immediately launched an investigation, the good news is that the source code of the […]
Cyber criminals have exploited an unproperly implemented password reset process in 7-Eleven to make unwanted charges on 900 customers’ accounts. 7-Eleven Inc. is a Japanese-American international chain of convenience stores, news of the day is that hackers exploited a weakness in the password reset function to make unwanted charges on its customers’ accounts. Crooks targeted approximately 900 […]