Security Affairs

MARCH 21, 2020

.” Experts from cyber-security firm Bad Packets speculate attackers might have exploited the CVE-2019-11510 vulnerability to compromise unpatched Pulse Secure VPN servers at the Fintech firm. . link] pic.twitter.com/JrdDojlTuF — Bad Packets Report (@bad_packets) March 20, 2020. Travelex deja vu?

Cyber Attacks 144

Cyber Attacks Data breaches Advertising Ransomware 144

Security Affairs

FEBRUARY 26, 2024

The company did not disclose details of the attack, however the decision to shut down the IT systems suggests it was the victim of a ransomware attack. This isn’t the first time that the company was the victim of a cyber attack. On December 28, 2020, ThyssenKrupp Materials group of companies based in U.S.

Cyber Attacks 132

Cyber Attacks Ransomware Engineering Banking 132

Security Affairs

MAY 8, 2020

Ruhr University Bochum (RUB) shuts down a large portion of its central IT infrastructure between May 6 and May 7, 2020. The Ruhr University Bochum (RUB), German, announced today that it was forced to shut down parts of its central IT infrastructure due to a cyber attack that took place overnight, between May 6 and May 7.

Cyber Attacks 137

Cyber Attacks VPN Advertising Hacking 137

CyberSecurity Insiders

SEPTEMBER 16, 2022

FBI has issued a formal alert on unpatched medical devices and says that these are extremely vulnerable to cyber attacks because of outdated software. Often such outdated devices bring in digital troubles to medical facilities as they can affect patient data, pose a risk to information security and data integrity.

Cyber Attacks 95

Cyber Attacks Spyware Manufacturing Software 95

Security Affairs

NOVEMBER 7, 2023

Iran-linked Agonizing Serpens group has been targeting Israeli organizations with destructive cyber attacks since January. personally identifiable information (PII) and intellectual property) and then deploy various wipers to cover the tracks. The tool sqlextractor (binary name sql.net4.exe)

Cyber Attacks 133

Cyber Attacks Education Technology Internet 133

Security Affairs

DECEMBER 6, 2020

This post includes the details of the COVID-19 themed attacks launched from October 1 to December 5, 2020. Below a list of attacks detected between October 1 to December 5, 2020. December 5 – COVID19 – Johnson & Johnson saw a 30% uptick in cyber-attacks. Pierluigi Paganini.

Cyber Attacks 110

Cyber Attacks Manufacturing Healthcare Data breaches 110

Security Affairs

DECEMBER 4, 2020

Hundreds of millions of Android users are potentially exposed to the risk of hack due to the use of Android Play Core Library versions vulnerable to CVE-2020-8913. The CVE-2020-8913 flaw is a local, arbitrary code execution vulnerability that resides exists in the SplitCompat.install endpoint in Android’s Play Core Library.

Hacking 134

Hacking Mobile Risk Cyber Attacks 134

Security Affairs

MAY 17, 2020

Elexon, a middleman in the UK power grid network, recently reported it was hit by a cyber attack. Elexon , a middleman in the UK power grid network, was the victim of a cyber attack, the incident impacted only affected the internal IT network, including the company’s email server, and employee laptops.

Cyber Attacks 106

Cyber Attacks VPN Advertising Cyber threats 106

Security Affairs

AUGUST 27, 2022

The state Infrastructure of Montenegro was hit by a massive and “unprecedented” cyber attack, authorities announced. An unprecedented cyber attack hit the Government digital infrastructure in Montenegro, the government has timely adopted measures to mitigate its impact. Embassy in the capital Podgorica.

Cyber Attacks 98

Cyber Attacks Government Telecommunications Malware 98

Security Affairs

MARCH 11, 2020

A flaw in the impacting Avast and AVG AntiTrack privacy software could expose users to browser hijacking and Man-in-The-Middle (MiTM) attacks. “A remote attacker running a malicious proxy could capture their victim’s HTTPS traffic and record credentials for later re-use. Pierluigi Paganini.

Cyber Attacks 100

Cyber Attacks Advertising Software Internet 100

Approachable Cyber Threats

SEPTEMBER 14, 2021

When we thought about 2020, it felt like hackers and ransomware should have been at the top (these fall under system intrusion). Our Analysis Perceptions of Data Breach Causes We were interested in comparing what DBIR, Google, news outlets, and academia reported as the causes of data breaches in 2020. Let's use that as our baseline.

Data breaches 98

Data breaches Social Engineering Engineering Computers and Electronics 98

Security Affairs

JANUARY 4, 2020

US Government fears a new wave of cyber attacks from Iran as retaliation for the airstrike that killed Maj. Krebs, Director of Cybersecurity and Infrastructure Security Agency (CISA) warned of a potential new wave of cyber attacks carried out by Iran-linked hacker groups targeting U.S. Christopher C. The post U.S.

Cyber Attacks 98

Cyber Attacks Backups Passwords Advertising 98

Security Affairs

NOVEMBER 2, 2024

Sophos, with the help of other cybersecurity firms, government, and law enforcement agencies investigated the cyber attacks and attributed them multiple China-linked APT groups, such as Volt Typhoon , APT31 and APT41 / Winnti.

Firmware 120

Firmware Government Firewall Malware 120

Security Affairs

FEBRUARY 26, 2023

The investigation conducted by News Corporation (News Corp) revealed that attackers remained on its network for two years. In February 2022, the American media and publishing giant News Corp revealed it was the victim of a cyber attack from an advanced persistent threat actor that took place in January 2022.

Identity Theft 98

Identity Theft Data breaches Insurance Hacking 98

Security Affairs

MARCH 7, 2021

Russia-linked APT groups leveraged the Lithuanian nation’s technology infrastructure to launch cyber-attacks against targets worldwide. APT29 state-sponsored hackers also exploited Lithuania’s information technology infrastructure to carry out attacks against “foreign entities developing a COVID-19 vaccine.”

Cyber Attacks 138

Cyber Attacks Spyware Government Hacking 138

Krebs on Security

OCTOBER 28, 2020

In March 2020, KrebsOnSecurity alerted Swedish security giant Gunnebo Group that hackers had broken into its network and sold the access to a criminal group which specializes in deploying ransomware. “The harsh and unfortunate reality is the security of a number of security companies is s**t,” Arena said.

Hacking 360

Hacking Ransomware Banking Accountability 360

Security Affairs

JULY 26, 2023

Two British ambulance services were not able to access electronic patient records after a cyber attack that hit their software provider Ortivus. Both organizations moved to a hosted environment for Ortivus’s MobiMed software following an agreement signed in 2020.

Cyber Attacks 98

Cyber Attacks Computers and Electronics Software Healthcare 98

The Last Watchdog

NOVEMBER 7, 2023

Recent cyber attacks on The Metropolitan Police and NHS Trusts through their supply chains have the potential to compromise the UK’s national security and private citizen data. A threat alert by the National Cyber Security Centre is also warning of increased state-sponsored attacks against UK critical national infrastructure.

Cyber Attacks 100

Cyber Attacks Risk Financial Services Media 100

Security Affairs

DECEMBER 11, 2020

The US CISA and the FBI warned about the increase in ransomware attacks targeting the US K-12 educational sector aimed at data theft and disruption of distance learning services. The number of attacks surged at the beginning of the 2020 school year. ” “ reads the alert issued by CISA. ” states the alert.

Education 133

Education Ransomware Cyber Attacks DDOS 133

Security Affairs

AUGUST 4, 2020

NetWalker ransomware operators continue to be very active, according to McAfee the cybercrime gang has earned more than $25 million since March 2020. McAfee researchers believe that the NetWalker ransomware operators continue to be very active, the gang is believed to have earned more than $25 million since March 2020. reads the alert.

Ransomware 86

Ransomware VPN Cybercrime Advertising 86

Security Affairs

OCTOBER 6, 2020

The United Nations International Maritime Organization (IMO) disclose a cyber attack that disrupted its IT systems. The United Nations International Maritime Organization (IMO) is a global standard-setting authority for the safety, security and environmental performance of international shipping. ” continues the statement.

Cyber Attacks 138

Cyber Attacks Advertising Malware Hacking 138

Security Affairs

MARCH 16, 2020

People cited by Bloomberg confirmed that the cyber attack aimed at slowing the agency’s systems down. Health and Human Services Department suffered a cyber-attack on its computer system Sunday night during the nation’s response to the coronavirus pandemic, according to three people familiar with the matter.”

Cyber Attacks 145

Cyber Attacks Advertising Healthcare Data breaches 145

Security Affairs

OCTOBER 30, 2020

Microsoft researchers are warning that threat actors are continuing to actively exploit the ZeroLogon vulnerability in attacks in the wild. The CVE-2020-1472 flaw is an elevation of privilege that resides in the Netlogon. ENABLE enforcement mode to address CVE-2020-1472 in your environment.

Authentication 144

Authentication Advertising Architecture Cybercrime 144

Schneier on Security

JUNE 8, 2021

When Israel in 2007 bombed a Syrian nuclear reactor, the raid was preceded by what is believed to have been a cyber attack on Syrian air defenses that resulted in radar screens showing no threat as bombers zoomed overhead. Militaries around the world are now exploiting these vulnerabilities in weapons systems to carry out operations.

Software 363

Software Cybersecurity Backups Manufacturing 363

Security Affairs

FEBRUARY 20, 2020

S ome operations at INA Group, Croatia’s biggest oil company, and its largest petrol station chain were disrupted by a cyber attack. A ransomware attack has disrupted operations at INA Group, Croatia’s biggest oil company, and its largest petrol station chain. ” states ZDNet that first reported the issue.

Ransomware 144

Ransomware Cyber Attacks Advertising Mobile 144

Security Affairs

JANUARY 4, 2021

The at-home laboratory services provider Apex Laboratory disclosed a ransomware attack, the hackers also stole some patient in the incident that took place on July 25, 2020. Further investigation allowed the company to discover that the data might have been stolen from its systems between July 21 and July 25, 2020.

Data breaches 136

Data breaches Ransomware Cyber Attacks Encryption 136

Security Affairs

FEBRUARY 9, 2020

Iran comes under cyber-attack again, a massive offensive brought down a large portion of the Iranian access to the Internet. Iran infrastructures are under attack, a massive cyberattack brought down a large portion of the Iranian access to the Internet, according to the experts the national connectivity fell to 75%.

DDOS 145

DDOS Internet Internet Telecommunications 145

Security Affairs

DECEMBER 11, 2024

has charged a Chinese national for hacking thousands of Sophos firewall devices worldwide in 2020. has charged the Chinese national Guan Tianfeng (aka gbigmao and gxiaomao) for hacking thousands of Sophos firewall devices worldwide in 2020. Tianfeng worked at Sichuan Silence Information Technology Co.,

Firewall 75

Firewall Hacking Malware Passwords 75

Security Affairs

SEPTEMBER 1, 2020

Norway’s parliament announced Tuesday that it was the target of a major cyber-attack that allowed hackers to access emails and data of a small number of parliamentary representatives and employees. “The parliament has recently been targetted in a vast cyber attack,” reads a statement from Norway’s parliament.

Cyber Attacks 139

Cyber Attacks Healthcare Advertising Phishing 139

CyberSecurity Insiders

AUGUST 11, 2021

A survey conducted by Gartner in 2019 said that 88% of companies operating worldwide were hit by a cyber attack and out of those, 51% of them experienced the incident for password steal. Norton Security that recently acquired Avast business for $8.3 billion by 2023.

Cyber Attacks 145

Cyber Attacks Marketing Passwords Government 145

Security Affairs

MARCH 3, 2021

Cybersecurity firm Qualys is the latest victim of a cyber attack, the company was likely hacked by threat actors that exploited a zero-day vulnerability in their Accellion FTA server. The attackers exfiltrate sensitive data from the target systems and then published it on the CLOP ransomware gang’s leak site. reported FireEye.

Ransomware 144

Ransomware Cybersecurity Cyber Attacks Data breaches 144

Security Affairs

JUNE 21, 2024

French information security agency ANSSI reported that Russia-linked threat actor Nobelium is behind a series of cyber attacks that targeted French diplomatic entities. The French information security agency ANSSI reported that Russia-linked APT Nobelium targeted French diplomatic entities.

Phishing 132

Phishing Accountability Information Security Cyber Attacks 132

Security Affairs

DECEMBER 4, 2020

The hackers claimed to have breached an Israeli water facility, likely recycled water, in a video that was published the night of December 1st, 2020. “The reservoir’s HMI system was connected directly to the internet, without any security appliance defending it or limiting access to it. ” concludes the post.

Cyber Attacks 138

Cyber Attacks Hacking Authentication Education 138

Security Affairs

JUNE 20, 2021

APT31 is also believed to be behind an attack on the Parliament of Finland that took place in 2020, according to the government experts , the hackers breached some parliament email accounts in December 2020. We are strongly opposed to the unfounded accusations against China.”

Government 142

Government Hacking Cyber Attacks Passwords 142

Security Affairs

SEPTEMBER 26, 2020

Chart: [link] pic.twitter.com/qgycevVsnT — CryptoQuant (@cryptoquant_com) September 26, 2020. Deposits and withdrawals have been temporarily suspended while the company is investigating the security incident. “We detected some large withdrawals since September 26, 2020 at 03:05:37 (UTC+8). Pierluigi Paganini.

Cryptocurrency 142

Cryptocurrency Hacking Advertising Internet 142

Security Affairs

JANUARY 12, 2022

CVE-2020-5902 F5 Big-IP CVE-2020-14882 Oracle WebLogic CVE-2021-26855 Microsoft Exchange (Note: this vulnerability is frequently observed used in conjunction with CVE-2021-26857, CVE-2021-26858, and CVE-2021-27065). Some of the hacking campaigns that were publicly attributed to Russian state-sponsored APT actors by U.S.

Malware 143

Malware Cyber threats Government Hacking 143

Security Affairs

OCTOBER 10, 2020

We’re seeing more activity leveraging the CVE-2020-1472 exploit (ZeroLogon). — Microsoft Security Intelligence (@MsftSecIntel) October 6, 2020. — Microsoft Security Intelligence (@MsftSecIntel) October 6, 2020. This is the second alert published by Microsoft related to Zerologon attack in the wild.

Cybercrime 137

Cybercrime Security Intelligence Authentication Banking 137