Breaking News

Pierluigi Paganini May 28, 2019
APT10 is back with two new loaders and new versions of known payloads

The APT10 group has added two new malware loaders to its arsenal and used in attacks aimed at government and private organizations in Southeast Asia. In April 2019, China-linked cyber-espionage group tracked as APT10 has added two new loaders to its arsenal and used it against government and private organizations in Southeast Asia. The group […]

Pierluigi Paganini May 27, 2019
BlueKeep scans observed from exclusively Tor exit nodes

GreyNoise experts detected scans for systems vulnerable to the BlueKeep (CVE-2019-0708) vulnerability from exclusively Tor exit nodes. Microsoft Patch Tuesday updates for May 2019 address nearly 80 vulnerabilities, including an RDS vulnerability dubbed BlueKeep that can be exploited to carry out WannaCry-like attack. The issue is a remote code execution flaw in Remote Desktop Services (RDS) that it can […]

Pierluigi Paganini May 27, 2019
Crooks leverages .htaccess injector on Joomla and WordPress sites for malicious redirects

Security researchers are monitoring a new hacking campaign aimed at Joomla and WordPress websites, attackers used .htaccess injector for malicious redirect. Researchers at Sucuri are warning Joomla and WordPress websites admins of malicious hypertext access (.htaccess) injector found on a client website. The website was used by attackers to redirect traffic to advertising sites that […]

Pierluigi Paganini May 27, 2019
First American Financial exposed 16 years’ worth of personal and financial documents

The US real-estate insurance biz, First American Financial, accidentally leaked customers’ highly personal files online, hundreds of millions of documents. The US real-estate insurance company First American Financial Corp. accidentally leaked hundreds of millions of documents. The company has more than 18,000 employees and brought in more than $5.7 billion in 2018. Roughly 885 million insurance-related documents […]

Pierluigi Paganini May 27, 2019
Hacker breached Perceptics, a US maker of license plate readers

Perceptics, a maker of vehicle license plate scanning solutions used in the US, has been hacked, attackers stole data and offered for free on the dark web. Perceptics is a leader in license plate readers (LPRs), license plate recognition systems and vehicle identification products. The company was hacked and attackers stole data and offered business […]

Pierluigi Paganini May 26, 2019
Sectigo says that most of certificates reported by Chronicle analysis were already revoked

According to Sectigo, most of the certificates used to sign the malware submitted to VirusTotal and issued by the company were expired and were already revoked. This week experts at Chronicle published a study on signed malware registered on VirusTotal that states that most of the digital certificates used to sign malware samples found on […]

Pierluigi Paganini May 26, 2019
Security Affairs newsletter Round 215 – News of the week

A new round of the weekly SecurityAffairs newsletter arrived! The best news of the week with Security Affairs. Kindle Edition Paper Copy If you appreciate my effort in spreading cybersecurity awareness, please vote for Security Affairs in the section “Your Vote for the Best EU Security Tweeter” https://www.surveymonkey.com/r/EUBloggerAwards2018 Dutch intelligence investigate alleged Huawei ‘backdoor Salesforce […]

Pierluigi Paganini May 26, 2019
Remarks on NATO and its approach to the cyber offensive

This week NATO Secretary General Jens Stoltenberg explained during a conference at the Cyber Defence Pledge conference in London how the Alliance is countering cyber threats. This week during the Cyber Defence Pledge conference in London, NATO Secretary General Jens Stoltenberg explained how the Alliance is countering cyber threats. Stoltenberg declared that NATO is pushing […]

Pierluigi Paganini May 26, 2019
Police seized Bestmixer, the mixing service washed at least $200 million in a year

European law enforcement seized and shut down Bestmixer.io for reportedly laundering over $200 million in cryptocurrency. This week the Europol has dealt another blow to cybercrime, the European police along with the Dutch Fiscal Information and Investigation Service (FIOD), and Luxembourg authorities shut down Bestmixer.io, on one of the world’s leading cryptocurrency mixing services. A […]

Pierluigi Paganini May 25, 2019
Hackers target MySQL databases to deliver the GandCrab ransomware

Security experts at Sophos have detected a wave of attacks targeting Windows servers that are running MySQL databases with the intent of delivering the GandCrab ransomware Sophos researchers have observed a wave of attacks targeting Windows servers that are running MySQL databases, threat actors aim at delivering the GandCrab ransomware. This is the first time […]