2018, Architecture and Internet - Cyber Security Informer

The FBI warns of HiatusRAT scanning campaigns against Chinese-branded web cameras and DVRs

Security Affairs

DECEMBER 17, 2024

The FBI warned of a fresh wave of HiatusRAT malware attacks targeting internet-facing Chinese-branded web cameras and DVRs. In this latest campaign, our investigation also uncovered prebuilt Hiatus binaries that target new architectures such as Arm, Intel 80386, and x86-64 and previously targeted architectures such as MIPS, MIPS64, and i386.

Architecture

Architecture Internet Internet Malware

Experts found multiple flaws in Mercedes-Benz infotainment system

Security Affairs

JANUARY 21, 2025

The experts used a diagnostic software to analyze the vehicle architecture, scan the Electronic Control Unit (ECU), identify its version, and test diagnostic functions. The research combined hardware interfaces and software to communicate with the vehicle via Diagnostic Over Internet Protocol (DoIP).

Software

Software Architecture Media Engineering

Flaws in mobile Internet protocol GTP allow hackers to target 5G users

Security Affairs

JUNE 15, 2020

” Between 2018 and 2019 the researchers assessed 28 telecom operators in Europe, Asia, Africa, and South America and verifies the presence of the vulnerabilities in the GTP protocol. The second architectural flaw is related subscriber credentials that are checked on S-GW (SGSN) equipment by default. ” continues the report.

Mobile

Mobile Internet Internet Advertising

Webinars

How to Avoid Pitfalls In Automation: Keep Humans In the Loop

MORE WEBINARS

Google Responds to Warrants for “About” Searches

Schneier on Security

OCTOBER 13, 2020

On October 25, 2018, police obtained records showing that Molina’s Honda had been impounded earlier that year after Molina’s stepfather was caught driving the car without a license. . We have knowingly and willingly built the architecture of a police state, just so companies can show us ads.

Surveillance

Surveillance Wireless Accountability Architecture

Ghost Ransomware a Persistent Global Threat to Critical Infrastructure

SecureWorld News

FEBRUARY 20, 2025

Experts warn that organizations must act decisively to protect against this growing threat by implementing Zero Trust architectures, patching vulnerabilities, and strengthening identity security. Report ransomware incidents to the FBI Internet Crime Complaint Center (IC3) , CISA, or MS-ISAC. Develop and test ransomware response plans.

Ransomware

Ransomware IoT Encryption Social Engineering

WordCamp San Diego 2018: 2 Days of Sunshine & Community

SiteLock

AUGUST 27, 2021

Drilling down in specificity supports the DRY methodology and helps you keep your sanity in modern content architectures growing in complexity. Blocks & Triangles: Front-end Architecture in the Gutenberg Era. With my longtime love for Information Architecture and Content Strategy, this man was talkin’ my language!

Architecture

Architecture Internet Internet

FreeRTOS flaws expose millions of IoT devices to cyber attacks

Security Affairs

OCTOBER 22, 2018

Researchers found that one of the most popular Internet of Things real-time operating system, FreeRTOS, is affected by serious vulnerabilities. Researchers at Zimperium’s zLabs team have found that one of the most popular Internet of Things real-time operating system, FreeRTOS , is affected by serious vulnerabilities. CVE-2018-16522.

IoT

IoT Cyber Attacks Internet Internet

Critical Apache Struts flaw CVE-2018-11776 exploited in attacks in the wild

Security Affairs

AUGUST 28, 2018

According to the threat intelligence firm Volexity, the CVE-2018-11776 vulnerability is already being abused in malicious attacks in the wild. Just yesterday I wrote about the availability online of the exploit code for the recently discovered Critical remote code execution vulnerability CVE-2018-11776 in Apache Struts 2.

Architecture

Architecture Cryptocurrency Advertising Wireless

Experts spotted a new Mirai variant that targets new processors

Security Affairs

APRIL 10, 2019

Palo Alto Networks researchers discovered a new variant of the Mirai malware that is targeting more processor architectures than previous ones. Mirai botnet continues to be one of the most dangerous malware in the threat landscape, experts at Palo Alto Networks discovered a new variant that targets more processor architectures than before.

Architecture

Architecture DDOS IoT Internet

DanaBot banking Trojan evolves and now targets European countries

Security Affairs

SEPTEMBER 22, 2018

Security experts at ESET have recently observed a surge in activity of DanaBot banking Trojan that is now targeting Poland, Italy, Germany, Austria, and as of September 2018, Ukraine. Sniffer plug-in – injects malicious scripts into a victim’s browser, usually while visiting internet banking sites. ” concludes ESET.

Banking

Banking Advertising VPN Architecture

A new Zerobot variant spreads by exploiting Apache flaws

Security Affairs

DECEMBER 22, 2022

Microsoft Threat Intelligence Center (MSTIC) researchers discovered a new variant of the Zerobot botnet (aka ZeroStresser) that was improved with the capabilities to target more Internet of Things (IoT) devices. The IT giant is tracking this cluster of threat activity as DEV-1061. “Since the release of Zerobot 1.1,

IoT

IoT DDOS Malware Firmware

5 IoT Security Predictions for 2019

Security Affairs

DECEMBER 21, 2018

2018 was the year of the Internet of Things (IoT), massive attacks and various botnets hit smart devices, These are 5 IoT Security Predictions for 2019. IoT Attacks in 2018. Yet, the major attack of 2018 was definitely VPNFilter, hitting over half a million devices, mostly routers, from a wide range of known vendors.

IoT

IoT Manufacturing Internet Internet

Enemybot, a new DDoS botnet appears in the threat landscape

Security Affairs

APRIL 17, 2022

The botnet targets multiple architectures, including arm, bsd, x64, and x86. Then the script downloads the actual Enemybot binary which is compiled for the target device’s architecture. The researchers attribute the botnet to the cybercrime group Keksec which focuses on DDoS-based extortion.

DDOS

DDOS Architecture Malware Cybercrime

Experts Fear Crooks are Cracking Keys Stolen in LastPass Breach

Krebs on Security

SEPTEMBER 5, 2023

LastPass says that since 2018 it has required a twelve-character minimum for master passwords, which the company said “greatly minimizes the ability for successful brute force password guessing.” In February 2018, LastPass changed the default to 100,100 iterations. And very recently, it upped that again to 600,000.

Cryptocurrency

Cryptocurrency Passwords Encryption Accountability

MY TAKE: Why locking down ‘firmware’ has now become the next big cybersecurity challenge

The Last Watchdog

JUNE 10, 2019

These are the carriers that provide Internet access to rural areas all across America. Loucaides One type of common firmware vulnerability isn’t so much a coding flaw as it is an architectural soft spot, if you will. telecoms by Chinese tech giant Huawei. Talk more soon. Acohido Pulitzer Prize-winning business journalist Byron V.

Firmware

Firmware Cybersecurity Technology Engineering

Czech cyber-security agency warns over Huawei, ZTE security threat

Security Affairs

DECEMBER 18, 2018

In November 2018, the Wall Street Journal reported that the US Government was urging its allies, including Germany, to exclude Huawei from critical infrastructure and 5G architectures. The Chinese firm was already excluded by several countries from building their 5G internet networks.

Manufacturing

Manufacturing Advertising Internet Internet

US officials claim Huawei Equipment has secret backdoor for spying

Security Affairs

FEBRUARY 13, 2020

In November 2018, the Wall Street Journal reported that the US Government was urging its allies to exclude Huawei from critical infrastructure and 5G architectures. Huawei issued a statement on Wednesday denying any accusation, it “has never and will never covertly access telecom networks, nor do we have the capability to do so.”.

Manufacturing

Manufacturing Advertising Surveillance Architecture

Czech public radio says Huawei Czech Unit secretly collected data

Security Affairs

JULY 22, 2019

In December 2018, the Czech National Cyber and Information Security Agency warned against using the equipment manufactured by Chinese firms Huawei and ZTE because they pose a threat to state security. The Chinese firm was already excluded by several countries from building their 5G internet networks.

Manufacturing

Manufacturing Internet Internet Advertising

Mozi Botnet is responsible for most of the IoT Traffic

Security Affairs

SEPTEMBER 20, 2020

. “Our analysis of this particular sample indicates the file executes on microprocessor without interlocked pipelined stages (MIPS) architecture. This is an extension understood by machines running reduced instruction set computer (RISC) architecture, which is prevalent on many IoT devices.” ” continues the analysis.

IoT

IoT DDOS Architecture Passwords

NEW TECH: Will ‘Secure Access Service Edge’ — SASE — Be the Answer to Secure Connectivity?

The Last Watchdog

DECEMBER 8, 2020

Related: The shared burden of securing the Internet of Things. Company networks must support endless permutations of users and apps, both on-premises and in the Internet cloud. Acohido is dedicated to fostering public awareness about how to make the Internet as private and secure as it ought to be. (LW

Firewall

Firewall Digital transformation Internet Internet

WatchBog cryptomining botnet now uses Pastebin for C2

Security Affairs

SEPTEMBER 13, 2019

The attackers were able to exploit CVE-2018-1000861 to gain a foothold and install the Watchbog malware on the affected systems.” ” Recently, experts at Intezer researchers have spotted a strain of the Linux mining that also scans the Internet for Windows RDP servers vulnerable to the Bluekeep.

Architecture

Architecture Cryptocurrency Malware Advertising

Amadey malware spreads via software cracks laced with SmokeLoader

Security Affairs

JULY 25, 2022

Amadey Bot is a data-stealing malware that was first spotted in 2018, it also allows operators to install additional payloads. computer name, user name, OS version, architecture type, list of installed anti-malware products) to the operators. It also supports a feature to register itself to Task Scheduler for the same purpose.

Software

Software Malware Cybercrime VPN

APT groups chain VPN and Windows Zerologon bugs to attack US government networks

Security Affairs

OCTOBER 12, 2020

The Netlogon service is an Authentication Mechanism used in the Windows Client Authentication Architecture which verifies logon requests, and it registers, authenticates, and locates Domain Controllers. CISA and FBI have observed attacks carried out by APT actors that combined two the CVE-2018-13379 and CVE-2020-1472 flaws.

VPN

VPN Government Authentication Advertising

Germany’ BSI chief says ‘No Evidence’ of Huawei spying

Security Affairs

DECEMBER 17, 2018

In November 2018, the Wall Street Journal reported that the US Government is urging its allies, including Germany, to exclude Huawei from critical infrastructure and 5G architectures. Huawei was already excluded by several countries from building their 5G internet networks.

Technology

Technology Advertising Internet Internet

Torii botnet, probably the most sophisticated IoT botnet of ever

Security Affairs

SEPTEMBER 29, 2018

According to experts from Avast, the Torii bot has been active since at least December 2017, it could targets a broad range of architectures, including ARM, MIPS, x86, x64, PowerPC, and SuperH. The Torii IoT botnet stands out for the largest sets of architectures it is able to target. ” reads the analysis published by Avast.

IoT

IoT Architecture Advertising DDOS

NEW TECH: Alcide introduces a “microservices firewall” as a dynamic ‘IaaS’ market takes shape

The Last Watchdog

APRIL 23, 2019

billion in 2018. Tech vendors and their enterprise customers want to leverage distributed architectures and multiple cloud platforms to the hilt. We want to have a feedback loop that resonates with the workflows these new architectures deliver,” Naor told me. billion in 2021 , up from $40.8 Talk more soon.

Marketing

Marketing Firewall Architecture Software

EnemyBot malware adds new exploits to target CMS servers and Android devices

Security Affairs

MAY 30, 2022

The botnet targets multiple architectures, including arm, bsd, x64, and x86. LFI CVE-2018-16763 Fuel CMS 1.4.1 LFI CVE-2018-16763 Fuel CMS 1.4.1 The botnet was first discovered by Fortinet in March, the DDoS botnet targeted several routers and web servers by exploiting known vulnerabilities.

Malware

Malware DDOS IoT Cybercrime

Cyclops Blink malware: US and UK authorities issue alert

Malwarebytes

FEBRUARY 24, 2022

But the NCSC warns that it is likely that Sandworm is capable of compiling the same or very similar malware for other architectures and firmware. Internet access to the management interface of any device is a security risk. Cyclops Blink has been found in WatchGuard’s firewall devices since at least June 2019.

Malware

Malware Firewall Firmware DDOS

New DigiCert poll shows companies taking monetary hits due to IoT-related security missteps

The Last Watchdog

NOVEMBER 15, 2018

Even as enterprises across the globe hustle to get their Internet of Things business models up and running, there is a sense of foreboding about a rising wave of IoT-related security exposures. We live in a world where we have nearly three Internet-connected devices for every human on the planet.

IoT

IoT Encryption Authentication Penetration Testing

Group-IB presents its annual report on global threats to stability in cyberspace

Security Affairs

NOVEMBER 29, 2019

The new “ Hi-Tech Crime Trends 2019/2020 ” report describes attacks on various industries and critical infrastructure facilities, as well as campaigns aimed at destabilization of the Internet in certain countries. Internet destabilization at state level. As for 2019, it has become the year of covert military operations in cyberspace.

Banking

Banking Telecommunications Marketing Internet

New Mirai botnet hides C2 server in the Tor network to prevent takedowns

Security Affairs

AUGUST 1, 2019

Mirai malware first appeared in the wild in 2016 when the expert MalwareMustDie discovered it in massive attacks aimed at Internet of Things (IoT) devices. Satori , Masuta , Wicked Mirai , JenX , Omni, and the OMG are just the last variants appeared online in 2018. ” continues the report.

Architecture

Architecture IoT Malware Advertising

US officials meet UK peers to remark the urgency to ban Huawei 5G tech

Security Affairs

JANUARY 13, 2020

Since November 2018, the US Government has invited its allies to exclude Chinese equipment from critical infrastructure and 5G architectures over security concerns.

Telecommunications

Telecommunications Government Advertising Architecture

A new development shows a potential shift to using Mirai to target enterprises

Security Affairs

MARCH 18, 2019

Mirai malware first appeared in the wild in 2016 when the expert MalwareMustDie discovered it in massive attacks aimed at Internet of Things (IoT) devices. Satori , Masuta , Wicked Mirai , JenX , Omni, and the OMG botnet are just the last variants appeared online in 2018. The new Mirai variant targets embedded devices (i.e.

IoT

IoT Wireless DDOS Advertising

New Bill prohibits intelligence sharing with countries using Huawei 5G equipment

Security Affairs

JANUARY 12, 2020

Since November 2018, the US Government has invited its allies to exclude Chinese equipment from critical infrastructure and 5G architectures over security concerns.

Telecommunications

Telecommunications Advertising Architecture Government

Nine 2019 Cybersecurity Predictions

Security Affairs

JANUARY 8, 2019

The Internet of Things is a remarkable benchmark in human technological advancement. Their way in was through the company’s internet-connected HVAC system. The whole of the internet sits on a perilous foundation. So many companies require nearly constant access to the internet to remain operational and solvent.

Cybersecurity

Cybersecurity Small Business Internet Internet

ROUNDTABLE: Why T-Mobile’s latest huge data breach could fuel attacks directed at mobile devices

The Last Watchdog

AUGUST 19, 2021

The configuration issue made this access point publicly available on the Internet. Chris Clements, VP of Solutions Architecture, Cerberus Sentinel. For T-Mobile, this is the sixth major breach since 2018. According to the attackers, this was a configuration issue on an access point T-Mobile used for testing.

Mobile

Mobile Data breaches Authentication Accountability

SAP systems are targeted within 72 hours after updates are released

Security Affairs

APRIL 6, 2021

Sophisticated attackers show a deep knowledge of the SAP architecture, they use to chain multiple vulnerabilities to target specific SAP applications to maximize the efficiency of the intrusions, in many cases experts observed the use of private exploits. ” concludes the report. ” concludes the report.

Risk

Risk Architecture Accountability Cybersecurity

Russia-linked Cyclops Blink botnet targeting ASUS routers

Security Affairs

MARCH 18, 2022

Cyclops Blink is believed to be a replacement for the VPNFilter botnet, which was first exposed in 2018 and at the time was composed of more than 500,000 compromised routers and network-attached storage (NAS) devices. ” Cyclops Blink is nation-state botnet with a modular architecture, it is written in the C language. .

IoT

IoT Firewall Malware Internet

The War in Technology: A Digital Iron Curtain Goes Up

SecureWorld News

MARCH 10, 2022

Many threats that have until now been theoretical—like creation of a "Ru-net" as an alternative to the Internet—are becoming a reality. Cutting off Internet access to a country the size of Texas is not as simple as cutting a few cables or bombing a few cell towers. There are many tech angles to the war in Ukraine.

Technology

Technology Internet Internet Telecommunications

A new Cross-Platform Mirai Variant appeared in the wild

Security Affairs

AUGUST 24, 2018

Mirai malware first appeared in the wild in 2016 when the expert MalwareMustDie discovered it in massive attacks aimed at Internet of Things (IoT) devices. Satori , Masuta , Wicked Mirai , JenX , Omni, and the OMG botnet are just the last variants appeared online in 2018. ” reads the analysis published by Symantec.

Architecture

Architecture IoT Malware Advertising

10KBLAZE exploits could affect 9 out of 10 SAP installs of more than 50k customers

Security Affairs

MAY 2, 2019

According to a report published in April 2018 by security firm Onapsis, 90 percent SAP systems were impacted by 13 Year-Old configuration vulnerability that affects SAP Netweaver and that can be exploited by a remote unauthenticated attacker who has network access to the system.

Cyber Attacks

Cyber Attacks Advertising Architecture Risk

Chinese APT FunnyDream targets a South East Asian government

Security Affairs

NOVEMBER 17, 2020

According to Kaspersky Lab , FunnyDream has been active at least since 2018 and targeted high-profile entities in Malaysia, Taiwan and the Philippines. The researchers were able to identify the C2 architecture because the domains or IP addresses of command and control servers are hardcoded in binary files. ” concludes the report.

Government

Government Malware Architecture Hacking

RSAC insights: ‘SASE’ disrupts networking by meshing security, connectivity at the services edge

The Last Watchdog

MAY 14, 2021

Early SD-WAN solutions “were built only to replace an MPLS-VPN with an Internet-based VPN,” Ahuja says. A paradigm shift in fundamental network architecture is sorely needed. This is why in August of 2018 Gartner’s leading security analysts Neil MacDonald, Lawrence Orans and Joe Skorupa coined and defined the SASE model.

Firewall

Firewall Mobile VPN Digital transformation

Weak Cybersecurity? Here’s Something You Can Do About It

Adam Levin

NOVEMBER 15, 2019

A 2018 study regarding VPN use worldwide is worth considering. Usage increased 185% from 2016 to 2017 and 165% from 2017 to 2018. If, for example, a user resides in a country with major Internet restrictions (think: the Great Firewall of China ), he or she may connect to a VPN outside of that country and bypass local laws.

VPN

VPN Cybersecurity Firewall Data breaches

The FBI warns of HiatusRAT scanning campaigns against Chinese-branded web cameras and DVRs

Experts found multiple flaws in Mercedes-Benz infotainment system

Webinars

Trending Sources

Flaws in mobile Internet protocol GTP allow hackers to target 5G users

Webinars

Google Responds to Warrants for “About” Searches

Ghost Ransomware a Persistent Global Threat to Critical Infrastructure

WordCamp San Diego 2018: 2 Days of Sunshine & Community

FreeRTOS flaws expose millions of IoT devices to cyber attacks

Critical Apache Struts flaw CVE-2018-11776 exploited in attacks in the wild

Experts spotted a new Mirai variant that targets new processors

DanaBot banking Trojan evolves and now targets European countries

A new Zerobot variant spreads by exploiting Apache flaws

5 IoT Security Predictions for 2019

Enemybot, a new DDoS botnet appears in the threat landscape

Experts Fear Crooks are Cracking Keys Stolen in LastPass Breach

MY TAKE: Why locking down ‘firmware’ has now become the next big cybersecurity challenge

Czech cyber-security agency warns over Huawei, ZTE security threat

US officials claim Huawei Equipment has secret backdoor for spying

Czech public radio says Huawei Czech Unit secretly collected data

Mozi Botnet is responsible for most of the IoT Traffic

NEW TECH: Will ‘Secure Access Service Edge’ — SASE — Be the Answer to Secure Connectivity?

WatchBog cryptomining botnet now uses Pastebin for C2

Amadey malware spreads via software cracks laced with SmokeLoader

APT groups chain VPN and Windows Zerologon bugs to attack US government networks

Germany’ BSI chief says ‘No Evidence’ of Huawei spying

Torii botnet, probably the most sophisticated IoT botnet of ever

NEW TECH: Alcide introduces a “microservices firewall” as a dynamic ‘IaaS’ market takes shape

EnemyBot malware adds new exploits to target CMS servers and Android devices

Cyclops Blink malware: US and UK authorities issue alert

New DigiCert poll shows companies taking monetary hits due to IoT-related security missteps

Group-IB presents its annual report on global threats to stability in cyberspace

New Mirai botnet hides C2 server in the Tor network to prevent takedowns

US officials meet UK peers to remark the urgency to ban Huawei 5G tech

A new development shows a potential shift to using Mirai to target enterprises

New Bill prohibits intelligence sharing with countries using Huawei 5G equipment

Nine 2019 Cybersecurity Predictions

ROUNDTABLE: Why T-Mobile’s latest huge data breach could fuel attacks directed at mobile devices

SAP systems are targeted within 72 hours after updates are released

Russia-linked Cyclops Blink botnet targeting ASUS routers

The War in Technology: A Digital Iron Curtain Goes Up

A new Cross-Platform Mirai Variant appeared in the wild

10KBLAZE exploits could affect 9 out of 10 SAP installs of more than 50k customers

Chinese APT FunnyDream targets a South East Asian government

RSAC insights: ‘SASE’ disrupts networking by meshing security, connectivity at the services edge

Weak Cybersecurity? Here’s Something You Can Do About It

Stay Connected