CVE-2021-28810

CVE-2021-28810

If exploited, this vulnerability allows an attacker to access resources which are not otherwise accessible without proper authentication. Roon Labs has already fixed this vulnerability in the following versions: Roon Server 2021-05-18 and later.

Woman Charged for Involving in TrickBot Banking Malware Creation

Woman Charged for Involving in TrickBot Banking Malware Creation

Softpedia News / Security 8. June 2021 This article has been indexed from Softpedia News / Security The US Department of Justice charged a woman for her alleged involvement as a programmer in a cybercrime group that helped develop TrickBot, according to The Hacker News.   The woman in question, Alla Witte, nicknamed Max, of…

New Kubernetes malware backdoors clusters via Windows containers

New Kubernetes malware backdoors clusters via Windows containers

New malware active for more than a year is compromising Windows containers to compromise Kubernetes clusters with the end goal of backdooring them and paving the way for attackers to abuse them in other malicious activities. Kubernetes, initially developed by Google and currently maintained by the Cloud Native Computing Foundation, is an open-source system that…

Deloitte & Touche buys up most of CloudQuest – Channel EYE

Deloitte & Touche buys up most of CloudQuest – Channel EYE

Posted on June 8, 2021 by Nick Farrell – News Deloitte & Touche has made its second cloud cybersecurity acquisition of the year, buying almost all  CloudQuest’s assets. The idea is that CloudQuest’s cloud-native security capabilities will help Deloitte more seamlessly manage security workflows, reduce risk and improve data security as it expands its portfolio…

FBI Used Hackers’ Bitcoin Password to Recover Colonial Pipeline Ransom

FBI Used Hackers’ Bitcoin Password to Recover Colonial Pipeline Ransom

The Department of Justice announced Monday that it had recovered a majority of the ransom paid by Colonial Pipeline to hackers who shut down its operations last month and caused massive fuel shortages and price hikes. The DOJ said that it had recovered $2.3 million worth of bitcoin out of the $4.4 million ransom that…

Colonial Pipeline was Hacked Using a Single Compromised Password

Colonial Pipeline was Hacked Using a Single Compromised Password

The ybersecurity specialist who responded to the incident points out that the major cyberattack that shut down the main fuel pipeline in the United States was the result of a single compromised password, as Al Jazeera notes.   According to Charles Carmakal, senior vice president at the cybersecurity firm Mandiant, part of FireEye Inc, the…

$2.3 Million of Colonial Pipeline Ransom Payment Recovered

$2.3 Million of Colonial Pipeline Ransom Payment Recovered

Justice Department Tracked the Payment to an FBI-Controlled Bitcoin Wallet Doug Olenick (DougOlenick) • June 7, 2021     The U.S. Justice Department on Monday reported it recouped $2.3 million of the $4.4 million ransom Colonial Pipeline Co. paid following a May 7 DarkSide ransomware attack. The DOJ’s Ransomware and Digital Extortion Task Force…

Attackers are scanning for vulnerable VMware servers, patch now!

Attackers are scanning for vulnerable VMware servers, patch now!

Threat actors are actively scanning for Internet-exposed VMware vCenter servers unpatched against a critical remote code execution (RCE) vulnerability impacting all vCenter deployments and patched by VMware ten days ago. The ongoing scanning activity was spotted by threat intelligence company Bad Packets yesterday and confirmed earlier today by cybersecurity expert Kevin Beaumont. Security researchers have also developed and published a proof-of-concept…

Cobalt Gang Members Sentenced by Kazakhstan District Court

Cobalt Gang Members Sentenced by Kazakhstan District Court

Cybercrime , Cybercrime as-a-service , Fraud Management & Cybercrime Money Mule Convictions Unlikely to Slow Gang Activity Rashmi Ramesh • June 7, 2021     Cobalt gang members arrested, sentenced (Photo: Pixabay) A district court in Kazakhstan last Wednesday sentenced two unidentified Cobalt, aka Carbanak, gang members to serve eight years in prison on robbery…

Live Updates: Majority of Colonial Pipeline Ransom Recovered, Justice Dept. Says

Live Updates: Majority of Colonial Pipeline Ransom Recovered, Justice Dept. Says

Here’s what you need to know: Video transcript Back transcript Justice Dept. Recovers Millions from Colonial Pipeline Hack The Justice Department said on Monday that it had recovered the majority of the ransom paid to the hackers who shut down the computer systems of the Colonial Pipeline last month. The Department of Justice, working with…