News

Cybercrime , Fraud Management & Cybercrime , Fraud Risk Management Report: Pen Testing Tool a Favorite Among Lower-Level Threat Groups Doug Olenick (DougOlenick) • June 30, 2021     The solid blue line tracks the number of organizations Proofpoint saw being targeted by attackers using Cobalt Strike. (Source: Proofpoint) The legitimate security penetration testing tool…

Executive Summary Informations Name CVE-2021-22354 First vendor Publication 2021-06-30 Vendor Cve Last vendor Modification 2021-06-30 Security-Database Scoring CVSS v3 Cvss vector : N/A Overall CVSS Score NA Base Score NA Environmental Score NA impact SubScore NA Temporal Score NA Exploitabality Sub Score NA   Calculate full CVSS 3.0 Vectors scores Security-Database Scoring CVSS v2 Cvss…

COPENHAGEN – Denmark’s central bank was compromised in last year’s global SolarWinds hacking operation, leaving a “backdoor” to its network open for seven months, IT media Version2 reported on Tuesday, citing documents related to the case. The hackers, accused by the United States of working for Russian intelligence, were unusually sophisticated and modified code in…

Endpoint Security , Governance & Risk Management , IT Risk Management Company Advises Users to Maintain Proper Security Policies as It Prepares Hotfix Prajeet Nair (@prajeetspeaks) • June 30, 2021     (Photo: Zyxel) Zyxel, a Taiwanese networking device manufacturer, is notifying customers about an ongoing series of attacks on some of its enterprise firewall…

Breach Notification , Cybercrime , Endpoint Security Manufacturer Stopped Supporting Targeted Network-Attached Storage Devices in 2015 Mathew J. Schwartz (euroinfosec) • June 28, 2021     Screen grab posted by the owner of a LAN-connected Western Digital My Book Live after it was apparently hit by a data-wiping attack that also changed the device’s admin…

Critical Infrastructure Security , Cybercrime , Cybercrime as-a-service Code for Generating Unique Copies of Crypto-Locking Malware Uploaded to VirusTotal Mathew J. Schwartz (euroinfosec) • June 29, 2021     Tests of the Babuk builder found that it generates working copies of the malicious executable and decryptor. (Source: Kevin Beaumont) The code used to build copies…

Executive Summary Informations Name CVE-2021-22326 First vendor Publication 2021-06-30 Vendor Cve Last vendor Modification 2021-06-30 Security-Database Scoring CVSS v3 Cvss vector : N/A Overall CVSS Score NA Base Score NA Environmental Score NA impact SubScore NA Temporal Score NA Exploitabality Sub Score NA   Calculate full CVSS 3.0 Vectors scores Security-Database Scoring CVSS v2 Cvss…

Governance & Risk Management , IT Risk Management GAO Offers Recommendations to Improve Space Agency’s Cyber Protections Scott Ferguson (Ferguson_Writes) • June 29, 2021     Photo: NASA via Flickr/CC A government watchdog is urging NASA‘s administrator to make multiple improvements to its cybersecurity and risk management policies to counter threats to the space agency’s…

It seems that law enforcement agencies have seized the servers and customer logs for DoubleVPN, a double-encryption service commonly used by threat actors to evade detection while performing malicious activities. DoubleVPN is a Russian-based VPN service specialized in the double-encryption of the data sent through their service. DoubleVPN works by encrypting the requests when using…