2011, Information Security and Internet

New Leak Shows Business Side of China’s APT Menace

Krebs on Security

FEBRUARY 22, 2024

Security experts who reviewed the leaked data say they believe the information is legitimate, and that i-SOON works closely with China’s Ministry of State Security and the military. In 2021, the Sichuan provincial government named i-SOON as one of “the top 30 information security companies.”

Government

Government Hacking Cyber threats Mobile

U.S. agency cautions employees to limit phone use due to Salt Typhoon hack of telco providers

Security Affairs

NOVEMBER 10, 2024

government agency created in 2011 to protect consumers in the financial sector, ensuring fair, transparent, and competitive financial markets The agency has issued a directive to employees to reduce the use of their phones and invite them to use Microsoft Teams and Cisco WebEx for their meetings and conversations that involve nonpublic data.

Hacking

Hacking Internet Internet Mobile

Iranian Charming Kitten APT targets various entities in Brazil, Israel, and the U.A.E. using a new backdoor

Security Affairs

SEPTEMBER 11, 2023

Microsoft has been tracking the threat actors at least since 2013, but experts believe that the cyberespionage group has been active since at least 2011 targeting journalists and activists in the Middle East, as well as organizations in the United States, and entities in the U.K., Israel, Iraq, and Saudi Arabia. ” concludes the post.

Internet

Internet Internet Healthcare Education

Google disrupts the Glupteba botnet

Security Affairs

DECEMBER 7, 2021

The blockchain-enabled botnet has been active since at least 2011, researchers estimate that the Glupteba botnet is currently composed of more than 1 million Windows PCs around the world. Google partnered with Internet infrastructure providers and hosting providers, such as CloudFlare, to take down servers used by the gang.

Backups

Backups Advertising Accountability Malware

KashmirBlack, a new botnet in the threat landscape that rapidly grows

Security Affairs

OCTOBER 26, 2020

KashmirBlack scans the internet for sites using vulnerable CMS versions and attempting to exploit known vulnerabilities to them and take over the underlying server. Experts observed a continuous growth of the botnet since its discovery along with an increasing level of complexity.

Advertising

Advertising Cryptocurrency Internet Internet

Silent Night Zeus botnet available for sale in underground forums

Security Affairs

MAY 23, 2020

The source code of the Zeus Trojan is available in the cybercrime underground since 2011 allowing crooks to develop their own release since. Experts found multiple variants in the wild, many of them belonging to the Terdot Zbot/Zloader malware family. Experts believe that Axe is the developer of the Axe Bot 1.4.1, comparing Axe Bot 1.4.1

Banking

Banking Advertising Malware Data collection

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

The Last Watchdog

JUNE 21, 2020

The above-mentioned AIDS Trojan hailing from the distant pre-Internet era was the progenitor of the trend, but its real-world impact was close to zero. David Balaban is a computer security researcher with over 17 years of experience in malware analysis and antivirus software evaluation.

Ransomware

Ransomware Hacking Encryption Penetration Testing

Glupteba botnet is back after Google disrupted it in December 2021

Security Affairs

DECEMBER 19, 2022

The blockchain-enabled botnet has been active since at least 2011, researchers estimated that the Glupteba botnet was composed of more than 1 million Windows PCs around the world as of December 2021.

DNS

DNS Antivirus Cryptocurrency Software

Chinese APT Tropic Trooper target air-gapped military Networks in Asia

Security Affairs

MAY 15, 2020

The Tropic Trooper APT that has been active at least since 2011, it was first spotted in 2015 by security experts at Trend Micro when it targeted government ministries and heavy industries in Taiwan and the military in the Philippines. “tracert -h 8 8.8.8.8”

Government

Government Malware Advertising Architecture

More than 3,000 Openfire servers exposed to attacks using a new exploit

Security Affairs

AUGUST 24, 2023

Any version released before then is not vulnerable, and these older versions make up nearly 25% of the internet-facing Openfire servers. released in 2011.” ” “We found there are a variety of Openfire forks that may or may not be vulnerable, making up about 5% of the internet-facing servers.

Internet

Internet Internet Engineering Authentication

Number of hacktivist attacks declined by 95 percent since 2015

Security Affairs

MAY 18, 2019

“Yet amid all the concern, there is one threat trend that our data suggests has been on the decline: hacktivism — the subversive use of internet-connected devices and networks to promote a political or social agenda.” and Turkey have arrested at least 62 hacktivists since 2011, but the actual number could be greater.

Advertising

Advertising Data collection DDOS Healthcare

MY TAKE: Michigan’s Cyber Range hubs provide career paths to high-schoolers, underutilized adults

The Last Watchdog

NOVEMBER 28, 2018

The Ann Arbor-based nonprofit began as a partnership among three state universities in 1966 and is one of the original building blocks of the Internet. Healtcare company Spectrum Health is a consortium member, and its director of information security, Jim Kuiphof, serves as an advisor to Tuttle. My guess is that Gov.

Cybersecurity

Cybersecurity System Administration Manufacturing Education

Group-IB blocked more than 180,000 links to pirated copies of Game of Thrones

Security Affairs

MAY 21, 2019

Group-IB‘s fight against digital piracy started in 2011, when the Anti-Piracy Department was established. The average time to detect the first pirated copy on the Internet is 30 minutes. 80% of pirated links are successfully blocked by Group-IB team within 24 hours of their appearance on the Internet.

Media

Media Advertising Internet Internet

Google obtained a temporary court order against CryptBot distributors

Security Affairs

APRIL 28, 2023

The blockchain-enabled botnet has been active since at least 2011, researchers estimated that the Glupteba botnet was composed of more than 1 million Windows PCs around the world as of December 2021.

Malware

Malware Cybercrime Cryptocurrency Media

NSA Launches New Cybersecurity Directorate

Security Affairs

OCTOBER 5, 2019

At that time, Gerstell said that the NSA wouldn’t “hack back” in the case of a cyberattack and that the Agency was instead focused on defending key information and infrastructure from theft or damage by foreign actors. Businesses are increasingly relying on Internet of Things or “smart” devices to provide data.

Cybersecurity

Cybersecurity Banking Advertising Hacking

Copycat Criminals mimicking Lockbit gang in northern Europe

Security Affairs

JANUARY 28, 2023

Those flaws have been exploited through unattended exposure through a company’s branch internet gateway. About the author: Luca Mella , Cyber Security Expert, Response & Threat Intel | Manager In 2019, Luca was mentioned as one of the “32 Influential Malware Research Professionals”.

Penetration Testing

Penetration Testing Ransomware Firewall Social Engineering

China-linked APT40 used ScanBox Framework in a long-running espionage campaign

Security Affairs

AUGUST 31, 2022

Justice Department (DoJ) indicted four members of the China-linked cyber espionage group APT40 (aka TEMP.Periscope , TEMP.Jumper , and Leviathan ) for hacking tens of government organizations, private businesses and universities around the world between 2011 and 2018.

Energy and Utilities

Energy and Utilities Manufacturing Government Media

Dissecting the malicious arsenal of the Makop ransomware gang

Security Affairs

MARCH 14, 2023

The gang leverages exposed remote administration services and internet-facing vulnerabilities to gain and maintain access to victim networks. He is a former member of the ANeSeC CTF team, one of the firsts Italian cyber wargame teams born back in 2011.

Ransomware

Ransomware Software System Administration Encryption

Key aerospace player Safran Group leaks sensitive data

Security Affairs

MARCH 15, 2023

It is crucial to ensure that leaked keys are in longer bit-lengths and encoded using secure encryption/hashing algorithms. Additionally, the company should consider whether the platform needs to be accessible through the internet or only through a VPN, which would provide an additional layer of security.

Manufacturing

Manufacturing Media Accountability Risk

Ready to move to the cloud? Here’s what you need to do when vetting service providers

SC Magazine

MAY 19, 2021

Visitors crowd a cloud computing presentation at the CeBIT technology trade fair on March 2, 2011 in Hanover, Germany. Security pros have a lot on their plate dealing with all the breaches and vulnerabilities thrown at them every day. Randy Vickers, chief information security officer for the U.S.

Firewall

Firewall Cloud Migration Architecture Information Security

The Essential Guide to Radio Frequency Penetration Testing

Pen Test

OCTOBER 12, 2023

In contemporary times, with the exponential growth of the Internet of Things (IoT), smart homes, connected cars, and wearable devices, the importance of RF pentesting has soared significantly. GHz and 5 GHz bands, providing high-speed wireless internet connectivity (Kurkovsky, 2006). IoT Security Techniques and Implementation.

Penetration Testing

Penetration Testing Wireless IoT Technology

Happy 10th anniversary & Kali's story.so far

Kali Linux

MARCH 28, 2023

Domain The team knew how much BackTrack was growing in popularity, and as they did not switch the project name when using Ubuntu, it was time to create its own place on the Internet. It was not until May 2011 that the next major version of BackTrack got released, which also happens to be the last, BackTrack 5.

InfoSec

InfoSec Penetration Testing Architecture Software

Black Hat USA 2023 NOC: Network Assurance

Cisco Security

AUGUST 28, 2023

This allows us to capture telemetry from the edge devices’ egress interface giving us insights into traffic from the external internet, inbound to the Blackhat network. A lot has changed since my first Black Hat at Caeser’s Palace in 2011, it really is a shame. You don’t see many extreme mohawks or Viking hats these days.

Wireless

Wireless DNS Mobile Technology

Phishers turning hard-working: CERT-GIB records upsurge of phishing resource blockages as duration of attacks grows

Security Affairs

MAY 8, 2020

It should be noted that some of the tech companies provide a wide range of Internet-related services and some of them, like cloud storages and email services, form separate categories. CERT-GIB’s findings indicate that phishing attack perpetrators have revised their so-called target pool.

Phishing

Phishing Spyware Banking Malware

The 2016 Presidential Candidates and Cybersecurity. Where Do They Stand?

SiteLock

AUGUST 27, 2021

Regardless of the reason, cybersecurity is a national security issue and the next president will be tasked with addressing it. According to CBS News, fifty-five percent of Information Security professionals believe cybersecurity should be an essential issue in the 2016 election. Start with your website.

Cybersecurity

Cybersecurity Internet Internet Cyber Attacks

ChatGPT: Cybersecurity friend or foe?

Malwarebytes

MAY 21, 2023

Why ChatGPT security concerns are both overblown and valid Artificial intelligence (AI) was once a science fiction cautionary tale—stories consistently warned against designing machines capable of surpassing human ingenuity. The program can help close the security knowledge gap by assisting in employee training.

Cybersecurity

Cybersecurity Artificial Intelligence Social Engineering Engineering

Cyber Security Informer

New Leak Shows Business Side of China’s APT Menace

U.S. agency cautions employees to limit phone use due to Salt Typhoon hack of telco providers

Trending Sources

Iranian Charming Kitten APT targets various entities in Brazil, Israel, and the U.A.E. using a new backdoor

Google disrupts the Glupteba botnet

KashmirBlack, a new botnet in the threat landscape that rapidly grows

Silent Night Zeus botnet available for sale in underground forums

SHARED INTEL: How ransomware evolved from consumer trickery to deep enterprise hacks

Glupteba botnet is back after Google disrupted it in December 2021

Chinese APT Tropic Trooper target air-gapped military Networks in Asia

More than 3,000 Openfire servers exposed to attacks using a new exploit

Number of hacktivist attacks declined by 95 percent since 2015

MY TAKE: Michigan’s Cyber Range hubs provide career paths to high-schoolers, underutilized adults

Group-IB blocked more than 180,000 links to pirated copies of Game of Thrones

Google obtained a temporary court order against CryptBot distributors

NSA Launches New Cybersecurity Directorate

Copycat Criminals mimicking Lockbit gang in northern Europe

China-linked APT40 used ScanBox Framework in a long-running espionage campaign

Dissecting the malicious arsenal of the Makop ransomware gang

Key aerospace player Safran Group leaks sensitive data

Ready to move to the cloud? Here’s what you need to do when vetting service providers

The Essential Guide to Radio Frequency Penetration Testing

Happy 10th anniversary & Kali's story.so far

Black Hat USA 2023 NOC: Network Assurance

Phishers turning hard-working: CERT-GIB records upsurge of phishing resource blockages as duration of attacks grows

The 2016 Presidential Candidates and Cybersecurity. Where Do They Stand?

ChatGPT: Cybersecurity friend or foe?

Stay Connected