Authorities Arrest Another TrickBot Gang Member in South Korea

Application Security , Governance & Risk Management , IT Risk Management Exploits Could Enable Remote Attacks on MS IIS and SQL Rashmi Ramesh • August 4, 2021     Researchers at Palo Alto Networks’ Unit 42 say they have demonstrated how exploits of Microsoft Jet Database Engine vulnerabilities could lead to remote attacks on Microsoft…

Cybercrime , Cybercrime as-a-service , Cyberwarfare / Nation-State Attacks Russian Gang Member Was Stranded After COVID-19 Restriction Prajeet Nair (@prajeetspeaks) • September 7, 2021     A Russian citizen, alleged to be working as a developer for the malware-spreading organization Trickbot, reportedly has been arrested at Seoul-Incheon International Airport. He was questioned by Korean authorities…

Podcast: Play in new window | Download (Duration: 21:36 — 29.7MB) | Embed Subscribe: Google Podcasts | Email | In this episode of the podcast (#214), Brandon Hoffman, the CISO of Intel 471 joins us to discuss the recent ransomware attack on the Georgia-based Colonial Pipeline, and the suspected group behind it: DarkSide a ransomware…

Attackers are looking to exploit critical VMware vCenter Server RCE flaw, patch ASAP! | IT Security News 25. February 2021 The day after VMware released fixes for a critical RCE flaw (CVE-2021-21972) found in a default vCenter Server plugin, opportunistic attackers began searching for publicly accessible vulnerable systems. We’ve detected mass scanning activity targeting vulnerable…

WASHINGTON (REUTERS) – Researchers who discovered a massive flaw in the main databases stored in Microsoft’s Azure cloud platform on Saturday (Aug 28) urged all users to change their digital access keys, not just the 3,300 it notified this week. As first reported by Reuters, researchers at a cloud security company called Wiz discovered this…