Cybersecurity News


Half-Billion Compromised Credentials Lurking on Open Cloud Server

Half-Billion Compromised Credentials Lurking on Open Cloud Server A quarter-billion of those passwords were not seen in previous breaches that have been added to Have I Been Pwned.
21 December 2021

Two Active Directory Bugs Lead to Easy Windows Domain Takeover

Two Active Directory Bugs Lead to Easy Windows Domain Takeover Microsoft is urging customers to patch two Active Directory domain controller bugs after a PoC tool was publicly released on Dec. 12.
21 December 2021

FBI: Another Zoho ManageEngine Zero-Day Under Active Attack

FBI: Another Zoho ManageEngine Zero-Day Under Active Attack APT attackers are using a security vulnerability in ManageEngine Desktop Central to take over servers, deliver malware and establish network persistence.
21 December 2021

Conti Ransomware Gang Has Full Log4Shell Attack Chain

Conti Ransomware Gang Has Full Log4Shell Attack Chain Conti has become the first professional-grade, sophisticated ransomware group to weaponize Log4j2, now with a full attack chain.
20 December 2021

Robocalls More Than Doubled in 2021, Cost Victims $30B

Robocalls More Than Doubled in 2021, Cost Victims $30B T-Mobile reported blocking 21 billion scam calls during a record-smashing year for robocalls.
20 December 2021

Third Log4J Bug Can Trigger DoS; Apache Issues Patch

Third Log4J Bug Can Trigger DoS; Apache Issues Patch The new Log4j vulnerability is similar to Log4Shell in that it also affects the logging library, but this DoS flaw has to do with Context Map lookups, not JNDI.
20 December 2021

Don’t forget to unplug your devices before you leave for the holidays!

As you down tools for the holiday season, be sure to also switch off the standby lights – it’s both cost effective and better for the environment

The post Don’t forget to unplug your devices before you leave for the holidays! appeared first on WeLiveSecurity

20 December 2021

UN-backed investigator into possible Yemen war crimes targeted by spyware

UN-backed investigator into possible Yemen war crimes targeted by spyware

Analysis of Kamel Jendoubi’s mobile phone reveals he was targeted in August 2019

The mobile phone of a UN-backed investigator who was examining possible war crimes in Yemen was targeted with spyware made by Israel’s NSO Group, a new forensic analysis of the device has revealed.

Kamel Jendoubi, a Tunisian who served as the chairman of the now defunct Group of Eminent Experts in Yemen (GEE)– a panel mandated by the UN to investigate possible war crimes – was targeted in August 2019, according to an analysis of his mobile phone by experts at Amnesty International and the Citizen Lab at the University of Toronto.

Continue reading...
20 December 2021

How cut-and-pasted programming is putting the internet and society at risk | John Naughton

How cut-and-pasted programming is putting the internet and society at risk | John Naughton

A vulnerability has been exposed in Minecraft, the bestselling video game of all time – and the security implications outside the world of gaming are vast

In one of those delicious coincidences that warm the cockles of every tech columnist’s heart, in the same week that the entire internet community was scrambling to patch a glaring vulnerability that affects countless millions of web servers across the world, the UK government announced a grand new National Cyber Security Strategy that, even if actually implemented, would have been largely irrelevant to the crisis at hand.

Initially, it looked like a prank in the amazingly popular Minecraft game. If someone inserted an apparently meaningless string of characters into a conversation in the game’s chat, it would have the effect of taking over the server on which it was running and download some malware that could then have the capacity to do all kinds of nefarious things. Since Minecraft (now owned by Microsoft) is the best-selling video game of all time (more than 238m copies sold and 140 million monthly active users), this vulnerability was obviously worrying, but hey, it’s only a video game…

Continue reading...
18 December 2021

Facebook Bans Spy-for-Hire Firms for Targeting 50K People

Facebook Bans Spy-for-Hire Firms for Targeting 50K People Meta, Facebook’s parent company, said that the seven banned actors run fake accounts on its platforms to deceive users and plant malware on targets’ phones.
17 December 2021

Spider-Man Movie Release Frenzy Bites Fans with Credit-Card Harvesting

Spider-Man Movie Release Frenzy Bites Fans with Credit-Card Harvesting Attackers are using the excitement over the new Spider-Man movie to steal bank information and spread malware.  
17 December 2021

Malicious Joker App Scores Half-Million Downloads on Google Play

Malicious Joker App Scores Half-Million Downloads on Google Play Joker malware was found lurking in the Color Message app, ready to fleece unsuspecting users with premium SMS charges.
17 December 2021

Week in security with Tony Anscombe

Why the vulnerability in Log4j poses a grave threat – What businesses should know about Log4Shell – ESET wraps up a series of deep-dives into Latin American banking trojans

The post Week in security with Tony Anscombe appeared first on WeLiveSecurity

17 December 2021

Brand-New Log4Shell Attack Vector Threatens Local Hosts

Brand-New Log4Shell Attack Vector Threatens Local Hosts The discovery, which affects services running as localhost that aren't exposed to any network or the internet, vastly widens the scope of attack possibilities.
17 December 2021

Security firm Blumira discovers major new Log4j attack vector

A basic Javascript WebSocket connection can trigger a local Log4j remote code attack via a drive-by compromise. Wonderful. Truly wonderful.
17 December 2021

Convergence Ahoy: Get Ready for Cloud-Based Ransomware

Convergence Ahoy: Get Ready for Cloud-Based Ransomware Oliver Tavakoli, CTO at Vectra AI, takes us inside the coming nexus of ransomware, supply-chain attacks and cloud deployments.
17 December 2021

Conti Gang Suspected of Ransomware Attack on McMenamins

Conti Gang Suspected of Ransomware Attack on McMenamins The incident occurred last weekend at the popular chain of restaurants, hotels and breweries, which is still facing disruptions.
17 December 2021

‘Tropic Trooper’ Reemerges to Target Transportation Outfits

‘Tropic Trooper’ Reemerges to Target Transportation Outfits Analysts warn that the attack group, now known as 'Earth Centaur,' is honing its attacks to go after transportation and government agencies.
16 December 2021

‘PseudoManuscrypt’ Mass Spyware Campaign Targets 35K Systems

‘PseudoManuscrypt’ Mass Spyware Campaign Targets 35K Systems It’s similar to Lazarus’s Manuscrypt malware, but the new spyware is splattering itself onto government organizations and ICS in a non-Lazarus-like, untargeted wave of attacks.
16 December 2021

NY Man Pleads Guilty in $20 Million SIM Swap Theft

A 24-year-old New York man who bragged about helping to steal more than $20 million worth of cryptocurrency from a technology executive has pleaded guilty to conspiracy to commit wire fraud. Nicholas Truglia was part of a group alleged to have stolen more than $100 million from cryptocurrency investors using fraudulent "SIM swaps," scams in which identity thieves hijack a target’s mobile phone number and use that to wrest control over the victim’s online identities.
16 December 2021