Security Affairs

OCTOBER 13, 2021

A Chinese-speaking hacking group exploited a Windows zero-day vulnerability in a wave of attacks on defense and IT businesses. A Chinese-speaking hacking group exploited a zero-day vulnerability in the Windows Win32k kernel driver to deploy a new remote access trojan (RAT), tracked as MysterySnail. SecurityAffairs – hacking, Windows).

Hacking 114

Hacking Malware Government Technology 114

Security Affairs

JUNE 19, 2020

The exploit used by Turla, referred to as CVE-2008-3431 , abuses two vulnerabilities, but only one was ever fixed in the aforementioned CVE. The other vulnerability was chained by Turla operators with the CVE-2008-3431 flaw in the first version of their exploit. SecurityAffairs – hacking, Turla). Pierluigi Paganini.

Malware 144

Malware Advertising InfoSec Hacking 144

Security Affairs

JUNE 5, 2019

Many security experts have already developed their own exploit code for this issue without publicly disclosing it for obvious reasons. Microsoft has released patches for Windows 7, Server 2008, XP and Server 2003. SecurityAffairs – BlueKeep, hacking). Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Penetration Testing 109

Penetration Testing Firewall Authentication Advertising 109

Security Affairs

NOVEMBER 3, 2019

Experts have spotted the first mass-hacking campaign exploiting the BlueKeep exploit , crooks leverage the exploit to install a cryptocurrency miner. Security researchers have spotted the first mass-hacking campaign exploiting the BlueKeep exploit , the attack aims at installing a cryptocurrency miner on the infected systems.

Cyber Attacks 94

Cyber Attacks Penetration Testing Cryptocurrency Hacking 94

Security Affairs

APRIL 23, 2020

A security expert uncovered an old APT operation, tracked Nazar, by analyzing the NSA hacking tools included in the dump leaked by Shadow Brokers in 2017. SecurityAffairs – Nazar, hacking). The post Expert identifies new Nazar APT group referenced in 2017 Shadow Brokers leak appeared first on Security Affairs.

Hacking 139

Hacking Advertising Malware Engineering 139

Security Affairs

MARCH 31, 2021

The Internet Engineering Task Force (IETF) formally deprecates Transport Layer Security (TLS) versions 1.0 (RFC was recommended for IETF protocols in 2008 and became obsolete with the introduction of TLS version 1.3 If you want to receive the weekly Security Affairs Newsletter for free subscribe here. RFC 2246) and 1.1 (RFC

Internet 120

Internet Internet Engineering Hacking 120

Security Affairs

JUNE 18, 2019

Enable Network Level Authentication in Windows 7, Windows Server 2008, and Windows Server 2008 R2. Microsoft has released patches for Windows 7, Server 2008, XP and Server 2003. SecurityAffairs – BlueKeep, hacking). The post DHS also issued an alert for the Windows BlueKeep flaw appeared first on Security Affairs.

Authentication 103

Authentication Advertising Malware Firewall 103

Security Affairs

JULY 9, 2020

The zero vulnerability was reported to ACROS by a security researcher who wanted to remain anonymous. The vulnerability affects Windows client running on old versions of Windows OS, including Windows 7 and Windows Server 2008 R2 and earlier. SecurityAffairs – hacking, RCE). ” reads a post published by the experts.

Advertising 138

Advertising Hacking Software Information Security 138

Security Affairs

MARCH 27, 2020

The security patches developed by 0patch address the issues for Windows 7 and Windows Server 2008 R2 without ESU. The service will also release unofficial patches for Windows 7 and Server 2008 R2 with ESU, Windows 8.1, and Windows Server 2012.

Advertising 142

Advertising Risk Internet Internet 142

Krebs on Security

JULY 25, 2023

Now new findings reveal that AVrecon is the malware engine behind a 12-year-old service called SocksEscort , which rents hacked residential and small business devices to cybercriminals looking to hide their true location online. SSC asked fellow forum members for help in testing the security of a website they claimed was theirs: myiptest[.]com

Malware 236

Malware VPN Internet Internet 236

Security Affairs

MAY 29, 2020

The seller claims the database dates back as 2019, but Cyble researchers noted the last DOB record was from 2008. The database size is 3.5 GB, exposed data includes full name, full address, ID, gender, date of birth, and other info. Experts are still investigating the leak and will provide an update as soon as possible.

Advertising 145

Advertising Data breaches Government Information Security 145

Security Affairs

DECEMBER 18, 2023

Qakbot , also known as QBot, QuackBot and Pinkslipbot, is an info-stealing malware that has been active since 2008. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, malware) The malware spreads via malspam campaigns, it inserts replies in active email threads.

Malware 131

Malware Phishing Ransomware Hacking 131

Security Affairs

SEPTEMBER 7, 2019

It has been developed to target only the 64-bit versions of Windows 7 and Windows 2008 R2. The initial PR of the exploit module targets 64-bit versions of Windows 7 and Windows 2008 R2.” SecurityAffairs – BlueKeep, hacking). The post Experts add a BlueKeep exploit module to MetaSploit appeared first on Security Affairs.

Penetration Testing 106

Penetration Testing Advertising Malware Engineering 106

Security Affairs

APRIL 29, 2021

.” The Lambert APT (aka Longhorn APT ) has been active since at least 2008, but its first samples were spotted in 2014. Across the years, the researchers found analyzed multiple backdoors and hacking tools composing the arsenal of the cyberespionage group. SecurityAffairs – hacking, CIA). Pierluigi Paganini.

Malware 124

Malware Hacking Government Telecommunications 124

Security Affairs

DECEMBER 17, 2021

and above 2008 Workspace ONE UEM patch 20.8.0.36 SecurityAffairs – hacking, VMware Workspace ONE UEM). The post VMware fixes critical SSRF flaw in Workspace ONE UEM Console appeared first on Security Affairs. and above 2105 Workspace ONE UEM patch 21.5.0.37 and above 2102 Workspace ONE UEM patch 21.2.0.27 Pierluigi Paganini.

Authentication 127

Authentication Hacking Software Information Security 127

Security Affairs

JUNE 7, 2022

QBot, aka Qakbot and Pinkslipbot , has been active since 2008, it is used by threat actors for collecting browsing data and banking credentials and other financial information from the victims. Please vote for Security Affairs and Pierluigi Paganini in every category that includes them (e.g. Pierluigi Paganini.

Ransomware 145

Ransomware Backups Malware Firewall 145

Security Affairs

MAY 31, 2019

Many security experts have already developed their own exploit code for this issue without publicly disclosing it for obvious reasons. Microsoft has released patches for Windows 7, Server 2008, XP and Server 2003. ” Microsoft also pointed out that workstations not connected to the Internet are also exposed to the risk of a hack.

Internet 110

Internet Internet Malware Advertising 110

Security Affairs

AUGUST 1, 2019

Back in 2008, a whistle-blower identifies a vulnerability in Cisco video surveillance software, but the tech giant continued to sell the software to US agencies until July 2013. Cisco is going to pay $8.6 million to settle a legal dispute for selling vulnerable software to the US government. ” reported The New York Times.

Surveillance 109

Surveillance Technology Government Software 109

Security Affairs

JULY 13, 2022

Qakbot , also known as QBot, QuackBot and Pinkslipbot, is an info-stealing malware that has been active since 2008. SecurityAffairs – hacking, malware). The post Qakbot operations continue to evolve to avoid detection appeared first on Security Affairs. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Malware 136

Malware Hacking Cybercrime Information Security 136

Security Affairs

FEBRUARY 22, 2021

The Chinese APT group had access to an NSA Equation Group, NSA hacking tool and used it years before it was leaked online by Shadow Brokers group. used a tool dubbed Jian, which is a clone of NSA Equation Group ‘s “EpMe” hacking tool years before it was leaked online by Shadow Brokers hackers.

Hacking 113

Hacking Malware Software Information Security 113

Security Affairs

JANUARY 18, 2022

VPNLab was launched in 2008 and was offering online anonymity to criminal organizations. VPNLab operators were advertising their platform on several hacking forums and dark web forums. SecurityAffairs – hacking, VPNLab). The authorities seized 15 VPNLab.net servers across 10 countries. Pierluigi Paganini.

VPN 108

VPN Cybercrime Ransomware Advertising 108

Security Affairs

JANUARY 24, 2022

’ In February 2008, the US authorities dismantled the global cybercrime organization tracked as Infraud Organization, which was involved in stealing and selling credit card and personal identity data. Russia’s FSB and law enforcement have detained four members of the Infraud Organization hacking group. Pierluigi Paganini.

Cybercrime 121

Cybercrime Hacking Cryptocurrency Ransomware 121

Security Affairs

OCTOBER 7, 2023

Qakbot , also known as QBot, QuackBot and Pinkslipbot, is an info-stealing malware that has been active since 2008. In August, the FBI announced that the Qakbot botnet was dismantled as a result of an international law enforcement operation named Operation ‘Duck Hunt.’

Malware 133

Malware Ransomware Phishing Hacking 133

Security Affairs

MARCH 8, 2020

SurfingAttack – hacking phones via ultrasonic waves. CIA Hacking unit APT-C-39 hit China since 2008. SecurityAffairs – hacking, newsletter). The post Security Affairs newsletter Round 254 appeared first on Security Affairs. . $1B to help telecom carriers to rip and replace Huawei and ZTE equipment.

Data breaches 94

Data breaches Advertising Mobile Ransomware 94

Security Affairs

JUNE 3, 2022

LuoYu has been active since at least 2008, it focuses on targets located in China, such as foreign diplomatic organizations established in the country, members of the academic community, or companies from the defense, logistics and telecommunications sectors. SecurityAffairs – hacking, LuoYu). To nominate, please visit:?.

Malware 145

Malware Telecommunications Hacking Internet 145

Security Affairs

JUNE 28, 2020

x branch was released in 2008 and was initially scheduled to reach EOL in November 2018. SecurityAffairs – hacking, Magento). x EOL is set on June 30, 75% of installs potentially impacted appeared first on Security Affairs. Adobe delayed MAGENTO 1.X X EOL two times, the firstTWICE. x store owners. x version. .

Advertising 120

Advertising Cyber Attacks Hacking Software 120

Security Affairs

AUGUST 20, 2020

Microsoft released this week an out-of-band security update for Windows 8.1 Both vulnerabilities were addressed by Microsoft in August, the August 2020 Patch Tuesday security updates fixed the flaws in Windows 10, Windows 7, and Windows Server 2008, 2012, 2016, 2019, and Windows Server versions 1903, 1909, and 2004.

Advertising 105

Advertising Hacking Information Security Malware 105

Security Affairs

DECEMBER 1, 2023

Qakbot , also known as QBot, QuackBot and Pinkslipbot, is an info-stealing malware that has been active since 2008. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, ransomware) The malware spreads via malspam campaigns, it inserts replies in active email threads.

Ransomware 122

Ransomware Malware Retail Insurance 122

Security Affairs

JANUARY 18, 2022

However, experts warn that removing the above updates they will also remove bundled security updates that address vulnerabilities patched with the release of the January 2021 Patch Tuesday. . SecurityAffairs – hacking, Windows emergency out-of-band). Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

VPN 114

VPN Media Hacking Information Security 114

Security Affairs

NOVEMBER 29, 2020

SecurityAffairs – hacking, newsletter). The post Security Affairs newsletter Round 291 appeared first on Security Affairs. Pierluigi Paganini.

Data breaches 105

Data breaches Social Engineering Ransomware Malware 105

Security Affairs

OCTOBER 6, 2020

. “One of the adversaries noticed by our analysts was interesting because the attacker leveraged an older vulnerability for SharePoint (CVE-2019-0604) to exploit remotely unpatched servers (typically Windows Server 2008 and Windows Server 2012) and then implant a web shell to gain persistent access and code execution.”

Authentication 136

Authentication Advertising Architecture Cyber Attacks 136

Security Affairs

MARCH 11, 2023

The PlugX backdoor has been used since 2008 by multiple China-linked APT groups, including Mustang Panda , Winnti , and APT41 In the attacks observed by ASEC, once exploited the vulnerability, threat actors executed a PowerShell command to create a file named esetservice.exe. ” reads the analysis published by ASEC.

Malware 98

Malware Software Hacking Information Security 98

Security Affairs

JANUARY 31, 2024

It was operating between 2008 and 2013. According to German media , one of the two operators was also involved in the operations of the site mega-downloads.net. Movie2k was a platform involved in the unauthorized distribution of copyrighted movies, TV shows, and other media content.

Media 127

Media Cybercrime Advertising Information Security 127

Security Affairs

MAY 28, 2019

Many security experts have already developed their own exploit code for this issue without publicly disclosing it for obvious reasons. Microsoft has released patches for Windows 7, Server 2008, XP and Server 2003. SecurityAffairs – BlueKeep, hacking). Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Internet 111

Internet Internet Advertising Malware 111

The Security Ledger

DECEMBER 29, 2021

Back in 2008, the late, great security researcher Dan Kaminsky discovered a serious security flaw in a ubiquitous Internet technology: the domain name system, or DNS. Mark Stanislav is a VP of Information Security at Gemini. Also: if you enjoy this podcast, consider signing up to receive it in your email.

DNS 98

DNS Internet Internet Cyber Attacks 98

Security Affairs

JULY 8, 2021

2008 and 2012 but require Point&Print configured for Windows 2016,2019,10 & 11(?). SecurityAffairs – hacking, PrintNightmare). The post Experts bypassed Microsoft’s emergency patch for the PrintNightmare appeared first on Security Affairs. These work out of the box on Windows 7, 8, 8.1, Pierluigi Paganini.

Engineering 102

Engineering Hacking Malware Information Security 102

Security Affairs

AUGUST 14, 2019

The flaws affect Windows 7 SP1, Windows Server 2008 R2 SP1, Windows Server 2012, Windows 8.1, Windows XP, Windows Server 2003, and Windows Server 2008 are not affected. Microsoft Security Response Center (MSRC) revealed that Microsoft found the flaws while was analyzing the security of the RDS package. Pierluigi Paganini.

Authentication 109

Authentication Advertising Internet Internet 109