Netgear Fixes Critical Flaws Affecting Smart Switches

Netgear Fixes Critical Flaws Affecting Smart Switches

Breach Notification , Endpoint Security , Governance & Risk Management Details on 2 of the 3 Vulnerabilities Released Mihir Bagwe • September 7, 2021     Gynvael Coldwind, a security researcher on Google’s security team, has identified three critical vulnerabilities affecting several Netgear smart switch products that, if exploited, give the attacker complete control over…

Alleged Trickbot Developer Arrested in South Korea

Alleged Trickbot Developer Arrested in South Korea

Cybercrime , Cybercrime as-a-service , Cyberwarfare / Nation-State Attacks Russian Gang Member Was Stranded After COVID-19 Restriction Prajeet Nair (@prajeetspeaks) • September 7, 2021     A Russian citizen, alleged to be working as a developer for the malware-spreading organization Trickbot, reportedly has been arrested at Seoul-Incheon International Airport. He was questioned by Korean authorities…

Germany blames Russia for cyber attack weeks from election day

Germany blames Russia for cyber attack weeks from election day

Germany has blamed Russia for a cyber attack on politicians just weeks before its general election. Berlin said it had “reliable information” that Russia’s GRU military intelligence service was behind the attack. The German Foreign Ministry said hackers had tried to steal email passwords from lawmakers in what may have been an attempt at election…

Irish Police ‘Significantly Disrupt’ Attackers’ Operations

Irish Police ‘Significantly Disrupt’ Attackers’ Operations

Critical Infrastructure Security , Cybercrime , Cybercrime as-a-service Conti Ransomware Attackers’ Infrastructure Targeted After Health Service Disruption Mihir Bagwe • September 6, 2021     GNCCB has deployed this splash screen on seized domains (Source: Garda.ie) Ireland’s cybercrime police, the Garda National Cyber Crime Bureau, have conducted a “significant disruption operation” targeting the IT infrastructure…

Netgear Addresses Severe Bugs Affecting Several of Its Smart Switches

Netgear Addresses Severe Bugs Affecting Several of Its Smart Switches

Last week, multinational computer networking company Netgear released security patches to tackle three high-severity flaws impacting over 20 of its products, mostly smart switches. The flaws were found and reported to the company by security engineer Gynvael Coldwind and are tracked by the vendor as PSV-2021-0140, PSV-2021-0144, PSV-2021-0145. The three vulnerabilities received a CVSS score…

Latest Atlassian Confluence Flaw Exploited to Breach Jenkins Project Server

Latest Atlassian Confluence Flaw Exploited to Breach Jenkins Project Server

The maintainers of Jenkins—a popular open-source automation server software—have disclosed a security breach after unidentified threat actors gained access to one of their servers by exploiting a recently disclosed vulnerability in Atlassian Confluence service to install a cryptocurrency miner. The “successful attack,” which is believed to have occurred last week, was mounted against its Confluence…

Russia Behind the Cyberattacks Against German Parliament

Russia Behind the Cyberattacks Against German Parliament

According to a statement made by a spokesperson for the foreign ministry in Berlin during a press conference on Monday, Russia is held responsible for a cyberattack that affected the German parliament. The attack comes ahead of Germany’s parliamentary election on September 26th, just as it did in 2015 ahead of previous elections. The newly…

Ransomware gangs target companies using these criteria

Ransomware gangs target companies using these criteria

Ransomware gangs increasingly purchase access to a victim’s network on dark web marketplaces and from other threat actors. Analyzing their want ads makes it possible to get an inside look at the types of companies ransomware operations are targeting for attacks. When conducting a cyberattack, ransomware gangs must first gain access to a corporate network…

Traffic Exchange Networks Distributing Malware Disguised as Cracked Software

Traffic Exchange Networks Distributing Malware Disguised as Cracked Software

An ongoing campaign has been found to leverage a network of websites acting as a “dropper as a service” to deliver a bundle of malware payloads to victims looking for “cracked” versions of popular business and consumer applications. “These malware included an assortment of click fraud bots, other information stealers, and even ransomware,” researchers from…