According to a statement made by a spokesperson for the foreign ministry in Berlin during a press conference on Monday, Russia is held responsible for a cyberattack that affected the German parliament. The attack comes ahead of Germany’s parliamentary election on September 26th, just as it did in 2015 ahead of previous elections. The newly…
Ransomware gangs increasingly purchase access to a victim’s network on dark web marketplaces and from other threat actors. Analyzing their want ads makes it possible to get an inside look at the types of companies ransomware operations are targeting for attacks. When conducting a cyberattack, ransomware gangs must first gain access to a corporate network…
An ongoing campaign has been found to leverage a network of websites acting as a “dropper as a service” to deliver a bundle of malware payloads to victims looking for “cracked” versions of popular business and consumer applications. “These malware included an assortment of click fraud bots, other information stealers, and even ransomware,” researchers from…
The cybersecurity authorities of the U.S. Cyber command have recently been notified regarding the increase in the number of scans and attempts to exploit a newly identified vulnerability in corporate servers along with the Atlassian Confluence wiki engine installed. CVE-2021-26084 in Confluence Server and Confluence Data Center software is the vulnerability that has been confirmed…
Critical Infrastructure Security , Cybercrime , Cybercrime as-a-service Conti Ransomware Attackers’ Infrastructure Targeted After Health Service Disruption Mihir Bagwe • September 6, 2021 GNCCB has deployed a “splash screen” on seized domains (Source Garda.ie) Ireland’s cybercrime police, the Garda National Cyber Crime Bureau, have conducted a “significant disruption operation” targeting the IT infrastructure…
The US Securities and Exchange Commission has warned investors to be “extremely wary” of potential investment scams related to Hurricane Ida’s aftermath. This alert comes from SEC’s Office of Investor Education and Advocacy, which regularly issues investor alerts to warn investors about the latest investment frauds and scams. Scammers will likely set their targets on those who…
The U.S. Cyber Command on Friday warned of ongoing mass exploitation attempts in the wild targeting a now-patched critical security vulnerability affecting Atlassian Confluence deployments that could be abused by unauthenticated attackers to take control of a vulnerable system. “Mass exploitation of Atlassian Confluence CVE-2021-26084 is ongoing and expected to accelerate,” the Cyber National Mission…
E Hacking News – Latest Hacker News and IT Security News 5. September 2021 This article has been indexed from E Hacking News – Latest Hacker News and IT Security News Microsoft Threat Intelligence Center has published technical facts regarding a now-patched, 0-day remote code execution exploit affecting SolarWinds Serv-U managed file transfer service…
A security vulnerability in popular messaging app WhatsApp’s image filter function discovered by Check Point Research could have exploited more than two billion users worldwide if left unpatched. It is estimated more than 55 billion messages are being sent daily over WhatsApp, with 4.5 billion photos and one billion videos shared per day. Check Point Research recommends…
Critical Infrastructure Security , Cybercrime , Cybercrime as-a-service Authorities Target Health Sector Ransom Gang’s IT Infrastructure Mihir Bagwe • September 6, 2021 GNCCB has deployed a “splash screen” on seized domains (Source Garda.ie) The Irish law enforcement body, the Garda National Cyber Crime Bureau, has conducted a “significant disruption operation,” targeting the IT…
