Month: May 2019

0 Comments
Millions of files that are sitting out in the open across various file storage technologies are actually encrypted by ransomware More than 2.3 billion files have been found inadvertently exposed online over the past year, reads a report from threat intelligence outfit Digital Shadows. The firm’s new ‘Too Much Information: The Sequel’ report follows up
0 Comments
Insight Venture Partners has agreed to acquire a controlling interest in Recorded Future, a threat intelligence company, in addition to the minority stake it already owns. The all-cash transaction puts the value of Recorded Future at more than $780 million.  According to its press release, Recorded Future is the largest privately held threat intelligence software company
0 Comments
by John E Dunn One of computer security’s special frustrations is the phenomenon of malware that keeps re-infecting a system no matter how many times defenders think they’ve cleaned it. This was the puzzle that recently confronted Sophos Support when it was called in to investigate the mystery of an internet-facing Apache Tomcat web server
0 Comments
McAfee Advanced Threat Research recently released a blog detailing a vulnerability in the Mr. Coffee Coffee Maker with WeMo. Please refer to the earlier blog to catch up with the processes and techniques I used to investigate and ultimately compromise this smart coffee maker. While researching the device, there was always one attack vector that
0 Comments
Netflix’s chief content officer Ted Sarandos said the streaming service (which is spending billions of dollars on an ever-growing catalog of original content) will “rethink [its] whole investment in Georgia” if a recently-signed abortion law goes into effect. Sarandos’ statement was first published in Variety. The industry publication said it reached out to the major studios
0 Comments
ESET researchers analyze new TTPs attributed to the Turla group that leverage PowerShell to run malware in-memory only Turla, also known as Snake, is an infamous espionage group recognized for its complex malware. To confound detection, its operators recently started using PowerShell scripts that provide direct, in-memory loading and execution of malware executables and libraries.
0 Comments
Cyber Security researchers at Guardicore Labs today published a detailed report on a widespread cryptojacking campaign attacking Windows MS-SQL and PHPMyAdmin servers worldwide. Dubbed Nansh0u, the malicious campaign is reportedly being carried out by an APT-style Chinese hacking group who has already infected nearly 50,000 servers and are installing a sophisticated kernel-mode rootkit on compromised
0 Comments
Businesses of all sizes struggle with budget, access to qualified and affordable talent and the around-the-clock support needed in today’s rapidly changing and competitive environment. An overworked staff and inadequately managed and secured information systems can lead to tragic systems failure and security events, dissatisfied clients and employees. If a major security breach occurs or
0 Comments
Cryptopia, an exchange that was hacked and subsequently went into liquidation in May, has filed for bankruptcy protection in the United States. Grant Thornton will be handling the preservation of the data stored and hosted on servers with an Arizona-based firm, according to Yahoo News.  The bankruptcy court in the Southern District of New York issued an
0 Comments
Nearly 1 million Windows systems are still unpatched and have been found vulnerable to a recently disclosed critical, wormable, remote code execution vulnerability in the Windows Remote Desktop Protocol (RDP)—two weeks after Microsoft releases the security patch. If exploited, the vulnerability could allow an attacker to easily cause havoc around the world, potentially much worse
0 Comments
Most IT security professionals believe GDPR non-compliance is commonplace, as the landmark data protection legislation turns one tomorrow, according to Infosecurity Europe. Over 6400 industry practitioners responded to a Twitter poll run by the leading cybersecurity event, which runs from June 4-6. Some 68% said they thought many organizations have likely not taken the GDPR