Oktacron - Cyber Security RSS Feeds History

FBI issued a second flash alert about ProLock ransomware in a few months

cyware Sep 07, 2020 Threat Intel & Info Sharing

As per the FBI, the ransomware operators gain access to hacked networks via the Qakbot (Qbot) trojan. Experts from Group-IB say they also target unprotected RDP servers with weak credentials.

Analyzing Dharma Ransomware-as-a-Service

cyware Sep 07, 2020 Trends, Reports, Analysis

Dharma operators use a combination of licensed third-party freeware software, publicly-available exploits, internal Windows tools, and commonly-used security tools, integrated via bespoke scripts.

New Breed of Cryptocurrency Attacks Taking a Toll on Users

cyware Sep 07, 2020 Trends, Reports, Analysis

Lately, several threat actors have joined forces to profit off of digital currencies by launching a large number of malicious fraud and hacking campaigns against cryptocurrency businesses.

Organizations Face Constant War Against Cyber Espionage

cyware Sep 07, 2020 Threat Actors

Recently, DeathStalker APT was found launching cyberespionage campaigns against targets spread across Europe and Latin America.

Taking a Look into Conti that Just Launched Its Data Leak Site

cyware Sep 07, 2020 Trends, Reports, Analysis

The Conti ransomware has taken a leap in its modus operandi by launching a leak website to name and shame its non-paying victims and intimidate others to quickly pay up a ransom.

The Defense Sector Has Become an El Dorado for Attackers

cyware Sep 07, 2020 Trends, Reports, Analysis

Attackers are employing backdoors capable of maintaining persistence on infected systems, listing and exfiltrating critical files, scouring drives, killing system processes, and executing arbitrary code.

Prison Phone Service Telmate Exposes Millions of Messages, Personal Records

cyware Sep 07, 2020 Breaches and Incidents

A CompariTech security researcher found hundreds of millions of intimate messages from many millions of inmates were sitting exposed on the web.

Researchers develop secure multi-user quantum communication network

cyware Sep 07, 2020 New Cyber Technologies

The invention, led by the University of Bristol, is understood to be the largest-ever quantum network of its kind and could be used to secure people’s online communication.

How to protect yourself from the hidden threat of evasive scripts

cyware Sep 07, 2020 Trends, Reports, Analysis

While Emotet is one example of a threat that uses scripts as part of its evasive strategy, there are many other types of script-based evasion techniques organizations need to be aware of.

Most cyber-security reports only focus on the cool threats

cyware Sep 07, 2020 Trends, Reports, Analysis

A group of academic researchers found that a majority of the security reports focus on cybercrime gangs and nation-state actors, instead of threats related to civil society.

Zooming in on Transparent Tribe

cyware Sep 07, 2020 Trends, Reports, Analysis

From enhancing its operations and starting massive espionage campaigns to developing new tools and shifting its focus to Afghanistan, the group has undergone tremendous evolution.

Malware gang uses .NET library to generate Excel docs that bypass security checks

cyware Sep 07, 2020 Malware and Vulnerabilities

The OOXML spreadsheet files generated by Epic Manchego lacked a section of compiled VBA code, specific to Excel documents compiled in Microsoft's proprietary Office software.

WhatsApp Discloses Six Bugs That Allows Attackers to Execute Code

cyware Sep 07, 2020 Malware and Vulnerabilities

Through their new dedicated security advisory site, WhatsApp disclosed six security bugs that allow attackers to execute remote code.

Newcastle University cyber attack 'to take weeks to fix'

cyware Sep 07, 2020 Incident Response, Learnings

Newcastle University apologized to students and staff for the "ongoing" disruption. The university said its teams were working with a number of agencies, including police, to find out what happened.

Netwalker Ransomware Operators Target Argentina’s Immigration Agency

cyware Sep 07, 2020 Breaches and Incidents

Argentina’s immigration agency, Dirección Nacional de Migraciones, was hit by a ransomware attack that caused the interruption of the border crossing into and out of the country for four hours.

Ransomware Remains 'Significant' Threat, Australia Warns

cyware Sep 07, 2020 Trends, Reports, Analysis

Email continues to be one of the top attack vectors used by both criminals and nation-states, because it's able to sneak ransomware, information stealers, and other threats inside organizations.

US Issues Cybersecurity Principles for Space Systems

cyware Sep 07, 2020 Laws, Policy, Regulations

The Space Policy Directive-5 recommends best practices to secure the information systems, networks, and “radio-frequency-dependent wireless communication channels” that power US space systems.

Service NSW reveals 738GB of customer data was stolen during email breach

cyware Sep 07, 2020 Breaches and Incidents

Service NSW has revealed that the personal information of 186,000 customers was stolen because of a cyber attack earlier this year on 47 staff email accounts.

Israeli Chip Manufacturer Tower Semiconductor Halts Operations Due to Cyberattack

cyware Sep 07, 2020 Breaches and Incidents

Israeli chip manufacturer Tower Semiconductor said on Sunday some of its systems were hit by a cyberattack and as a result, it was putting on hold some servers and manufacturing operations.

Hackers are Obsessed with Cryptocurrency and It’s Only Intensifying

cyware Sep 07, 2020 Trends, Reports, Analysis

Cryptocurrency theft is growing both in terms of frequency of attacks and breadth of targets.

Visa Warns of Payment Card Theft by Baka Card Skimmer

cyware Sep 07, 2020 Malware and Vulnerabilities

Visa issued a warning regarding a new e-skimmer known as Baka that removes itself from memory after having exfiltrating payment card details.

Windows 10 themes can be abused to steal Windows accounts

cyware Sep 07, 2020 Malware and Vulnerabilities

This weekend, security researcher Jimmy Bayne (@bohops) revealed that specially crafted Windows themes could be used to perform Pass-the-Hash attacks.

Data Residency Company InCountry Raises $18 Million

cyware Sep 07, 2020 Companies to Watch

Data residency-as-a-service platform provider InCountry last week announced it raised $18 million in new funding, which brings the total capital secured by the company to $39 million.

Money from bank hacks rarely gets laundered through cryptocurrencies

cyware Sep 07, 2020 Trends, Reports, Analysis

Despite being considered a cybercrime haven, cryptocurrencies play a very small role in laundering funds obtained from bank hacks; the SWIFT financial organization said in a report last week.

Five Eyes Cybersecurity Agencies Release Incident Response Guidance

cyware Sep 07, 2020 Incident Response, Learnings

Cybersecurity agencies in Australia, Canada, New Zealand, the United Kingdom, and the United States have published a joint advisory focusing on detecting malicious activity and incident response.

Telefonica continues cyber shopping spree with iHackLabs

cyware Sep 07, 2020 Companies to Watch

Madrid-based Telefónica, one of the world's largest telephone and mobile network providers, has ventured into the cybersecurity training market by buying iHackLabs.

SQL Injection is Still a Critical Attack Vector

cyware Sep 07, 2020 Trends, Reports, Analysis

SQL injection attacks are inexpensive and easy to execute, and the aftermath can be disastrous for the victims. Undoubtedly, this method remains popular among hackers.

Cyberattacks on state, local government up 50%

cyware Sep 07, 2020 Trends, Reports, Analysis

Many of the cyberattacks on state, local, tribal, and territorial governments are not complicated and could be avoided through improved cyber hygiene and two-factor authentication, a new report says.

WordPress Sites Attacked in Their Millions

cyware Sep 07, 2020 Malware and Vulnerabilities

Millions of WordPress sites are being probed in automated attacks looking to exploit a recently discovered plugin vulnerability, according to security researchers.

WSJ: China to launch initiative to set global data-security rules

cyware Sep 07, 2020 Laws, Policy, Regulations

China is launching an initiative to set global standards on data security, countering U.S. efforts to persuade countries to ringfence their networks from Chinese technology.

Darknet Market's Peacemaker Sentenced To 11 Years In Prison

packetstormsecurity Sep 07, 2020 headline,cybercrime,fraud

Teen Hacker Charged With Paralyzing Miami Schools

packetstormsecurity Sep 07, 2020 headline,hacker,government,usa,denial of

CEOs Could Be Held Personally Liable For Cyberattacks That Kill

packetstormsecurity Sep 07, 2020 headline,hacker,cybercrime,science