Oktacron - Cyber Security RSS Feeds History

Episode 209: Fortinet’s Renee Tarun on Scaling InfoSec To Meet Tomorrow’s Challenges

securityledger Apr 02, 2021 CISO Close Up

The information security industry needs both better tools to fight adversaries, and more people to do the fighting, says Fortinet Deputy CISO Renee Tarun in this interview with The Security Ledger Podcast’s Paul Roberts. The post Episode 209: Fortinet’s Renee Tarun on Scaling InfoSec To Meet Tomorrow’s show more ...

Challenges appeared first on The...Read the whole entry... » Related StoriesEpisode 207: Sara Tatsis of Blackberry on finding and Keeping Women in CyberEncore Edition: Veracode CEO Sam King on Infosec’s Leaky Talent PipelineEpisode 205 – Google’s Camille Stewart: InfoSec’s Lack of Diversity is a Cyber Risk

Android “System Update” malware steals photos, videos, GPS location

cyware Apr 02, 2021 Malware and Vulnerabilities

A newly discovered piece of Android malware shares the same capabilities found within many modern stalkerware-type apps—it can swipe images and video, rifle through online searches, record phone calls, and video, and peer into GPS location data.

Cybercriminal hacks vaccine marketplace, makes over $752K

cyware Apr 02, 2021 Breaches and Incidents

In a bizarre incident, a hacker has taken down a vaccine marketplace being run on the Dark Web, created fake orders, canceled them, and took a refund in Bitcoins worth $752,000.

Coinhive domain repurposed to warn visitors of hacked sites, routers

cyware Apr 02, 2021 Threat Intel & Info Sharing

After taking over the domains for the notorious Coinhive in-browsing Monero mining service, a researcher is now displaying alerts on hacked websites that are still injecting the mining service's JavaScript.

In wake of PHP Git server attack, developers should employ encryption

cyware Apr 02, 2021 Incident Response, Learnings

A researcher said that two malicious commits that were added to the PHP web development programming language’s official Git server earlier this week may have been prevented if the maintainers had enabled signed commits (encryption) on the server.

NIST Publishes Guide for Securing Hotel Property Management Systems

cyware Apr 02, 2021 Trends, Reports, Analysis

The National Institute of Standards and Technology (NIST) has released a cybersecurity guide for the hospitality industry to help reduce security risks related to hotel property-management system software.

Dutch watchdog fines Booking.com $560k after it kept customer data thefts quiet for more than 3 weeks

cyware Apr 02, 2021 Incident Response, Learnings

The Netherlands Data Protection Authority has fined Booking.com $560,000 for notifying it too late that criminals had accessed the data of 4,109 people who booked a hotel room via the website.

Ubiquiti Shares Dive After Reportedly Downplaying 'Catastrophic' Data Breach

cyware Apr 02, 2021 Companies to Watch

Shares of New York City-based IoT device maker Ubiquiti (NYSE: UI) fell significantly this week following a report claiming that the recently disclosed data breach was “catastrophic” and that its impact was downplayed.

After Hack, Officials Draw Attention to Supply Chain Threats

cyware Apr 02, 2021 Trends, Reports, Analysis

The U.S. government is working to draw attention to supply chain vulnerabilities, an issue that received particular attention late last year after suspected Russian hackers gained access to federal agencies and private corporations.

Mobile providers exposing sensitive data to leakage and theft

cyware Apr 02, 2021 Trends, Reports, Analysis

Data exposure is a significant, unaddressed problem for Europe’s top mobile providers and, by extension, more than 253 million customers who sign up for their services and share sensitive personal data, according to research by Tala Security.

Wipro acquires Ampion to deliver combined portfolio of transformation offerings

cyware Apr 02, 2021 Companies to Watch

Wipro announced that it has signed an agreement to acquire Ampion, an Australia-based provider of cybersecurity, DevOps, and quality engineering services. Ampion was formed through the merger of IT services providers ‘Revolution IT’ and ‘Shelde’.

Ragnarok Ransomware Hits Boggi Milano Menswear

cyware Apr 02, 2021 Breaches and Incidents

Luxury Italian men’s clothing line Boggi Milano has confirmed what Ragnarok was already bragging about on the Dark Web: The brand was hit with a ransomware attack, according to multiple sources.

Recent Hancitor Infections Use Cobalt Strike and a Network Ping Tool

cyware Apr 02, 2021 Threat Actors

As early as October 2020, Hancitor began utilizing Cobalt Strike and some of these infections utilized a network ping tool to enumerate the infected host’s internal network.

Just like cyber became a C-suite issue, it's also your governor's concern

cyware Apr 02, 2021 Govt., Critical Infrastructure

Just like the executive suite, governors cannot afford to sit on the sidelines as malicious cyber actors threaten entities operating under their purview, be they local elections, critical infrastructure, school districts, or public services.

Molson Coors Cyberattack, Storms Could Cost Company $140 Million

cyware Apr 02, 2021 Companies to Watch

Known brewing giant Molson Coors said that a disruptive cyberattack, combined with winter storms in Texas, could cost the company upwards of $140 million in short-term EBITDA.

Bahamut Possibly Responsible for Multi-Stage Infection Chain Campaign

cyware Apr 02, 2021 Malware and Vulnerabilities

Threat researchers discovered cyberthreat actors distributing malicious documents exploiting a vulnerability (CVE-2017-8570) during a multi-stage infection chain to install a Visual Basic (VB) executable on target machines.

Ransomware Declared As a National Security Threat by DHS

cyware Apr 02, 2021 Threat Intel & Info Sharing

In an RSA conference webcast, Alejandro Mayorkas, the U.S. Secretary of Homeland Security, stated that fighting ransomware attacks is now the Department of Homeland Security's number one priority, and a plan to be more proactive is already in place.

US DOJ Warns Against Phishing Attacks Using Vaccine Surveys to Steal Personal Info

cyware Apr 02, 2021 Threat Intel & Info Sharing

The US Department of Justice warns of phishing attacks using fake post-vaccine surveys to steal money from people or tricking them into handing over their personal information.

Airlift Express Fixes Vulnerabilities in Its E-commerce Store

cyware Apr 02, 2021 Malware and Vulnerabilities

A team of security researchers from PrivacySavvy recently discovered an OTP vulnerability in Airlift Express, which could lead to account hacks and exploits by cybercriminals.

MacKenzie Scott Grant scam more widespread than initially thought

cyware Apr 02, 2021 Identity Theft, Fraud, Scams

A massive phishing campaign reaching tens of thousands of inboxes impersonated the MacKenzie Bezos-Scott grant foundation promising financial benefits to recipients in exchange for a processing fee.

Trustwave Uncovers Vulnerability in Popular Website CMS

cyware Apr 02, 2021 Malware and Vulnerabilities

In a blog post on its website, Trustwave researchers outlined details of a privilege escalation issue, in the popular website CMS, Umbraco, which allows low privileged users to elevate themselves to the status of admin.

GitHub Arctic Vault likely has leaked MedData patient records

cyware Apr 02, 2021 Breaches and Incidents

The private data was leaked on GitHub repositories last year whose contributors carry the "Arctic Code Vault" badge. This means these repositories could now be a part of a huge open-source repo collection bound to last 1,000 years.

Ransomware gang wanted $40 million in Florida schools cyberattack

cyware Apr 02, 2021 Incident Response, Learnings

Fueled by large payments from victims, ransomware gangs have started to demand ridiculous ransom payments from organizations that can not afford to pay them. One such example is the Broward County Public Schools where hackers demanded $40 Million.

Non-Fungible Tokens: Of Course They're Attracting Scammers

cyware Apr 02, 2021 Identity Theft, Fraud, Scams

Since digital ownership of Twitter CEO Jack Dorsey's first tweet sold for $2.9 million, security researchers now expect fraudsters to focus more on non-fungible token aficionados.

Leaker Dismisses MobiKwik's Not-So-Nimble Breach Denial

cyware Apr 02, 2021 Incident Response, Learnings

A broker of breached data claims via dedicated .onion leak site to have deleted 8TB of stolen MobiKwik customer data that the company denies was stolen. The listing for 8.2TB of stolen data was withdrawn by a cybercrime forum seller.

ZBL EPON ONU Broadband Router 1.0 Remote Privilege Escalation

packetstormsecurity Apr 02, 2021 Feed

ZBL EPON ONU Broadband Router version 1.0 suffers from a privilege escalation vulnerability. The limited administrative user (admin:admin) can elevate his/her privileges by sending a HTTP GET request to the configuration backup endpoint or the password page and disclose the http super user password. Once authenticated as super, an attacker will be granted access to additional and privileged functionalities.

Ubuntu Security Notice USN-4900-1

packetstormsecurity Apr 02, 2021 Feed

Ubuntu Security Notice 4900-1 - It was discovered that OpenEXR incorrectly handled certain malformed EXR image files. If a user were tricked into opening a crafted EXR image file, a remote attacker could cause a denial of service, or possibly execute arbitrary code.

Trojan-Downloader.Win32.Delf.nzg Insecure Permissions

packetstormsecurity Apr 02, 2021 Feed

Trojan-Downloader.Win32.Delf.nzg malware suffers from an insecure permissions vulnerability.

Trojan-Downloader.Win32.Delf.ur Insecure Permissions

packetstormsecurity Apr 02, 2021 Feed

Trojan-Downloader.Win32.Delf.ur malware suffers from an insecure permissions vulnerability.

Trojan-Downloader.Win32.Delf.oxz Insecure Permissions

packetstormsecurity Apr 02, 2021 Feed

Trojan-Downloader.Win32.Delf.oxz malware suffers from an insecure permissions vulnerability.

Dutch Watchdog Fines Booking.com 475,000 Euros For Keeping Customer Data Theft Quiet

packetstormsecurity Apr 02, 2021 headline,hacker,government,privacy,data

DeepDotWeb Dark Web Admin Pleads Guilty To Drug, Gun Kickbacks

packetstormsecurity Apr 02, 2021 headline,government,bank,cybercrime,frau

Feds Indict Kansas Man For Allegedly Hacking Into Water Supply

packetstormsecurity Apr 02, 2021 headline,hacker,government,usa,terror,sc

Legacy QNAP NAS Devices Vulnerable To Zero-Day Attack

packetstormsecurity Apr 02, 2021 headline,privacy,data loss,flaw

SQLMAP - Automatic SQL Injection Tool 1.5.4

packetstormsecurity Apr 02, 2021 Feed

sqlmap is an open source command-line automatic SQL injection tool. Its goal is to detect and take advantage of SQL injection vulnerabilities in web applications. Once it detects one or more SQL injections on the target host, the user can choose among a variety of options to perform an extensive back-end database show more ...

management system fingerprint, retrieve DBMS session user and database, enumerate users, password hashes, privileges, databases, dump entire or user's specified DBMS tables/columns, run his own SQL statement, read or write either text or binary files on the file system, execute arbitrary commands on the operating system, establish an out-of-band stateful connection between the attacker box and the database server via Metasploit payload stager, database stored procedure buffer overflow exploitation or SMB relay attack and more.

F5 BIG-IP 16.0.x Remote Code Execution

packetstormsecurity Apr 02, 2021 Feed

F5 BIG-IP version 16.0.x suffers from an iControl REST remote code execution vulnerability.

Cyber security aggregator - feeds history

Episode 209: Fortinet’s Renee Tarun on Scaling InfoSec To Meet Tomorrow’s Challenges

Android “System Update” malware steals photos, videos, GPS location

Cybercriminal hacks vaccine marketplace, makes over $752K

Coinhive domain repurposed to warn visitors of hacked sites, routers

In wake of PHP Git server attack, developers should employ encryption

NIST Publishes Guide for Securing Hotel Property Management Systems

Dutch watchdog fines Booking.com $560k after it kept customer data thefts quiet for more than 3 weeks

Ubiquiti Shares Dive After Reportedly Downplaying 'Catastrophic' Data Breach

After Hack, Officials Draw Attention to Supply Chain Threats

Mobile providers exposing sensitive data to leakage and theft

Wipro acquires Ampion to deliver combined portfolio of transformation offerings

Ragnarok Ransomware Hits Boggi Milano Menswear

Recent Hancitor Infections Use Cobalt Strike and a Network Ping Tool

Just like cyber became a C-suite issue, it's also your governor's concern

Molson Coors Cyberattack, Storms Could Cost Company $140 Million

Bahamut Possibly Responsible for Multi-Stage Infection Chain Campaign

Ransomware Declared As a National Security Threat by DHS

US DOJ Warns Against Phishing Attacks Using Vaccine Surveys to Steal Personal Info

Airlift Express Fixes Vulnerabilities in Its E-commerce Store

MacKenzie Scott Grant scam more widespread than initially thought

Trustwave Uncovers Vulnerability in Popular Website CMS

GitHub Arctic Vault likely has leaked MedData patient records

Ransomware gang wanted $40 million in Florida schools cyberattack

Non-Fungible Tokens: Of Course They're Attracting Scammers

Leaker Dismisses MobiKwik's Not-So-Nimble Breach Denial

ZBL EPON ONU Broadband Router 1.0 Remote Privilege Escalation

Ubuntu Security Notice USN-4900-1

Trojan-Downloader.Win32.Delf.nzg Insecure Permissions

Trojan-Downloader.Win32.Delf.ur Insecure Permissions

Trojan-Downloader.Win32.Delf.oxz Insecure Permissions

Dutch Watchdog Fines Booking.com 475,000 Euros For Keeping Customer Data Theft Quiet

DeepDotWeb Dark Web Admin Pleads Guilty To Drug, Gun Kickbacks

Feds Indict Kansas Man For Allegedly Hacking Into Water Supply

Legacy QNAP NAS Devices Vulnerable To Zero-Day Attack

SQLMAP - Automatic SQL Injection Tool 1.5.4

F5 BIG-IP 16.0.x Remote Code Execution

202020212022202320242025