Russia-linked APT Sofacy leverages BREXIT lures in recent attacks

Russia-linked cyber-espionage group Sofacy, (aka APT28, Pawn Storm, Fancy Bear, Sednit, Tsar Team, and Strontium) use BREXIT lures in recent attacks. The APT group used Brexit-themed bait documents on the same day the UK Prime Minister Theresa...

December 4, 2018  By Pierluigi Paganini   Posted In  APT  Breaking News  Hacking 

Experts found data belonging to 82 Million US Users exposed on unprotected Elasticsearch Instances

Security experts at HackenProof are warning Open Elasticsearch instances expose over 82 million users in the United States. Experts from HackenProof discovered Open Elasticsearch instances that expose over 82 million users in the United States. Elasticsearch...

December 3, 2018  By Pierluigi Paganini   Posted In  Breaking News  Data Breach  Hacking 

New Zealand Security Bureau halts Spark from using Huawei 5G equipment

New Zealand intelligence agency asked mobile company Spark to avoid using Huawei equipment for 5G infrastructure. According to New Zealand's Government Communications Security Bureau, Huawei equipment for 5G infrastructure poses a "significant network...

December 3, 2018  By Pierluigi Paganini   Posted In  Breaking News  Intelligence 

Hacker hijacks printers worldwide to promote popular YouTube channel

The TheHackerGiraffe used the Printer Exploitation Toolkit (PRET) to hijack +50k vulnerable printers to Promote PewDiePie YouTube Channel. An anonymous hacker hijacked over 50,000 internet-connected printers worldwide to print out messages promoting the...

December 3, 2018  By Pierluigi Paganini   Posted In  Breaking News  Hacking 

Moscow’s New Cable Car closed due to a ransomware infection

Two days after Moscow opened a new cable car system hackers infected its computer systems with ransomware. The cable car system is long over 700 meters and spans across the Moscow river linking the Luzhniki Olympic Complex to the observation platform...

December 2, 2018  By Pierluigi Paganini   Posted In  Breaking News  Hacking  Malware 

Security Affairs newsletter Round 191 – News of the week

A new round of the weekly SecurityAffairs newsletter arrived! The best news of the week with Security Affairs. Let me inform you that my new book, "Digging in the Deep Web" is online with a special deal 20% discount Kindle Edition Paper Copy Once...

December 2, 2018  By Pierluigi Paganini   Posted In  Breaking News 

Cisco addressed SQL Injection flaw in Cisco Prime License Manager

Cisco has released security updates to address a vulnerability in the web framework code of Cisco Prime License Manager that could be exploited by an attacker to execute arbitrary SQL queries. Cisco has fixed a vulnerability in Cisco Prime License...

December 2, 2018  By Pierluigi Paganini   Posted In  Breaking News  Security 

ETERNALSILENCE – 270K+ devices vulnerable to UPnProxy Botnet build using NSA hacking tools

Over 270,000 connected devices run vulnerable implementations of UPnP, threat actors are attempting to recruit them in a multi-purpose botnet. In April, Akamai reported that threat actors compromised 65,000 home routers by exploiting vulnerabilities...

December 1, 2018  By Pierluigi Paganini   Posted In  Breaking News  Cyber Crime  Hacking  Internet of Things 

MITRE evaluates Enterprise security products using the ATT&CK Framework

The MITRE Corporation’s ATT&CK framework has been used to evaluate the efficiency of several enterprise security products designed by several vendors. In April, MITRE announced a new service based on its ATT&CK (Adversarial Tactics, Techniques,...

December 1, 2018  By Pierluigi Paganini   Posted In  Breaking News  Security 

New PowerShell-based Backdoor points to MuddyWater

Security researchers at Trend Micro recently discovered PowerShell-based backdoor that resembles a malware used by MuddyWater threat actor. Malware researchers at Trend Micro have discovered a Powershell-based backdoor that is very similar to a malware...

November 30, 2018  By Pierluigi Paganini   Posted In  APT  Breaking News  Cyber warfare  Hacking  Malware 


Page 1 of 748