Krebs on Security

SEPTEMBER 14, 2021

Top of the critical heap is CVE-2021-40444 , which affects the “MSHTML” component of Internet Explorer (IE) on Windows 10 and many Windows Server versions. Allan Liska , senior security architect at Recorded Future , said a similar vulnerability — CVE-2021-28316 — was announced in April.

Spyware 58

Spyware Social Engineering Surveillance Internet 58

Krebs on Security

NOVEMBER 9, 2021

The other critical flaw patched today that’s already being exploited in the wild is CVE-2021-42321 , yet another zero-day in Microsoft Exchange Server. As Exchange zero-days go, CVE-2021-42321 appears somewhat mild by comparison. Microsoft has published a blog post/FAQ about the Exchange zero-day here.

Backups 288

Backups Passwords Authentication Internet 288

Troy Hunt

JULY 13, 2021

Pre-pairing everything before they go into the roof: pic.twitter.com/wfHeXrZdqd — Troy Hunt (@troyhunt) May 24, 2021 And this is where the problems begin. pic.twitter.com/lyq1wbTICX — Troy Hunt (@troyhunt) June 7, 2021 "See log for details." " Ok then: FFS.

Internet 357

Internet Internet IoT Firmware 357

Schneier on Security

JUNE 14, 2021

This is a current list of where and when I am scheduled to speak: I’ll be part of a European Internet Forum virtual debate on June 17, 2021. The topic is “Decrypting the encryption debate: How to ensure public safety with a privacy-preserving and secure Internet?” Details to come.

Internet 324

Internet Internet Encryption Technology 324

The Last Watchdog

NOVEMBER 3, 2021

We’ve been named one of the Top 10 cybersecurity webzines in 2021. Acohido is dedicated to fostering public awareness about how to make the Internet as private and secure as it ought to be. The recognition comes from Cyber Security Hub, a website sponsored by IQPC Digital. But there’s a lot more to get done.

Cybersecurity 278

Cybersecurity Data breaches Mobile Internet 278

Schneier on Security

JULY 14, 2021

This is a current list of where and when I am scheduled to speak: I’m speaking at Norbert Wiener in the 21st Century , a virtual conference hosted by The IEEE Society on Social Implications of Technology (SSIT), July 23-25, 2021. I’m speaking at DEFCON 29 , August 5-8, 2021. I’ll be speaking at an Informa event on September 14, 2021.

Internet 331

Internet Internet Technology 331

Schneier on Security

AUGUST 14, 2021

This is a current list of where and when I am scheduled to speak: I’m speaking (via Internet) at SHIFT Business Festival in Finland, August 25-26, 2021. I’ll be speaking at an Informa event on September 14, 2021. I’m keynoting CIISec Live —an all-online event—September 15-16, 2021. Details to come.

Data privacy 326

Data privacy Internet Internet Cybersecurity 326

The Last Watchdog

MAY 25, 2021

Resilience was the theme of RSA Conference 2021 which took place virtually last week. For a lively debrief of RSA Conference 2021, please give the accompanying podcast a listen. Acohido is dedicated to fostering public awareness about how to make the Internet as private and secure as it ought to be.

Internet 214

Internet Internet Cybersecurity Software 214

Krebs on Security

JUNE 8, 2021

Among the zero-days are: – CVE-2021-33742 , a remote code execution bug in a Windows HTML component. – CVE-2021-31955 , an information disclosure bug in the Windows Kernel. – CVE-2021-31956 , an elevation of privilege flaw in Windows NTFS.

Backups 338

Backups Ransomware Cyber threats Phishing 338

Krebs on Security

MARCH 2, 2021

Adair said while the exploits used by the group may have taken great skills to develop, they require little technical know-how to use and can give an attacker easy access to all of an organization’s email if their vulnerable Exchange Servers are directly exposed to the Internet.

Internet 326

Internet Internet Software Education 326

Daniel Miessler

DECEMBER 18, 2021

From the Apache advisory: It was found that the fix to address CVE-2021-44228 in Apache Log4j 2.15.0 Just to point out to those panicking about this right now: this is a very uncommon situation to be vulnerable from this cve in a “readily exploitable from the internet” way. And the internet moves fast. The bypasses of 2.15

Internet 363

Internet Internet Information Security 363

Schneier on Security

JANUARY 6, 2022

The privacy-oriented search engine netted more than 35 billion search queries in 2021 , a 46.4% DuckDuckGo has had a banner year : And yet, DuckDuckGo. jump over 2020 (23.6 That’s big.

Engineering 350

Engineering Internet Internet 350

Daniel Miessler

MARCH 24, 2021

This post is an attempt to create an easy-to-use security model for the average internet user. Mar 24, 2021 — Thanks to Andrew R. Mar 24, 2021 — Someone mentioned that there are higher ranks of authentication out there, which I agree with, but this is specifically for everyday users. How to use this model.

Authentication 363

Authentication Passwords Internet Internet 363

Krebs on Security

SEPTEMBER 8, 2021

According to a security advisory from Redmond, the security hole CVE-2021-40444 affects the “MSHTML” component of Internet Explorer (IE) on Windows 10 and many Windows Server versions. Virtually every month in 2021 so far, Microsoft has been forced to respond to zero-day threats targeting huge swaths of its user base.

Software 355

Software Engineering Internet Internet 355

Schneier on Security

SEPTEMBER 19, 2024

The FBI has shut down a botnet run by Chinese hackers: The botnet malware infected a number of different types of internet-connected devices around the world, including home routers, cameras, digital video recorders, and NAS drives.

Telecommunications 289

Telecommunications Media Malware Internet 289

Schneier on Security

JANUARY 14, 2021

This is a current list of where and when I am scheduled to speak: I’m speaking (online) as part of Western Washington University’s Internet Studies Lecture Series on January 20, 2021. I’m speaking at ITY Denmark on February 2, 2021. I’ll be speaking at an Informa event on February 28, 2021.

Internet 238

Internet Internet Technology 238

Schneier on Security

DECEMBER 20, 2021

According to Citzen Lab: We conducted Internet scanning for Predator spyware servers and found likely Predator customers in Armenia, Egypt, Greece, Indonesia, Madagascar, Oman, Saudi Arabia, and Serbia. By the way, this vulnerability was patched on 13 Sep 2021 in iOS 14.8.

Manufacturing 351

Manufacturing Spyware Hacking Internet 351

Krebs on Security

MARCH 31, 2023

Authorities in Germany this week seized Internet servers that powered FlyHosting , a dark web offering that catered to cybercriminals operating DDoS-for-hire services, KrebsOnSecurity has learned. The German authorities did not name the suspects or the Internet service in question.

DDOS 287

DDOS Internet Internet Cybercrime 287

Krebs on Security

JANUARY 8, 2022

In January 2021, Avira was acquired by Tempe, Ariz.-based NortonLifeLock announced Avira Crypto in late October 2021 , but multiple other antivirus products have flagged Avira’s installer as malicious or unsafe for including a cryptominer as far back as Sept. Founded in 2006, Avira Operations GmbH & Co. Avira Free Antivirus).

Antivirus 362

Antivirus Cryptocurrency Identity Theft Software 362

Daniel Miessler

MAY 19, 2021

Even the median random organization with an internet presence has 17 internet-facing assets. Even the median random organization with an internet presence has 17 internet-facing assets. But it turns out, most of that data is from lost phones, so it doesn’t appear major afterall.

Data breaches 192

Data breaches Social Engineering Ransomware Phishing 192

Krebs on Security

SEPTEMBER 10, 2021

The assault came from “ Meris ,” the same new “Internet of Things” (IoT) botnet behind record-shattering attacks against Russian search giant Yandex this week and internet infrastructure firm Cloudflare earlier this summer. Cloudflare recently wrote about its attack , which clocked in at 17.2 Image: Qrator.

IoT 317

IoT DDOS Internet Internet 317

SecureList

MARCH 12, 2024

Profile of participants and applications We collected the data from a sample of the application security assessment projects our team completed in 2021–2023. SQL Injection Most high-risk vulnerabilities in 2021–2023 were associated with SQL Injection. More than a third (39%) used the microservice architecture.

Passwords 141

Passwords Authentication Architecture Risk 141

The Last Watchdog

DECEMBER 9, 2021

In 2021 we witnessed the continuation of the seismic shift in how people work, a change that started at the beginning of the global pandemic. The acceleration of cloud, mobility, and security initiatives proved to be critical for organizations looking to weather the new threats and disruptions.

Mobile 177

Mobile IoT Cybersecurity Digital transformation 177

Security Affairs

SEPTEMBER 26, 2024

internet service providers (ISPs) as part of a cyber espionage campaign code-named Salt Typhoon. internet service providers in recent months as part of a cyber espionage campaign code-named Salt Typhoon. internet-service providers in recent months in pursuit of sensitive information, according to people familiar with the matter.”

Internet 137

Internet Internet DNS Telecommunications 137

Krebs on Security

SEPTEMBER 1, 2021

based Internet address for more than a decade — simply vanished. Using services like VIP72, customers can select network nodes in virtually any country, and relay their traffic while hiding behind some unwitting victim’s Internet address. The domain Vip72[.]org “ Haxdoor ,” and “ Nuclear Grabber.”

Malware 311

Malware Cybercrime Internet Internet 311

Schneier on Security

OCTOBER 14, 2024

Perfectl in an impressive piece of malware: The malware has been circulating since at least 2021. It gets installed by exploiting more than 20,000 common misconfigurations, a capability that may make millions of machines connected to the Internet potential targets, researchers from Aqua Security said.

Malware 253

Malware Cryptocurrency Internet Internet 253

Schneier on Security

APRIL 2, 2024

More from ArsTechnica: In 2021, someone with the username JiaT75 made their first known commit to an open source project. I simply don’t believe this was the only attempt to slip a backdoor into a critical piece of Internet software, either closed source or open source. It was an incredibly complex backdoor.

Social Engineering 356

Social Engineering Engineering Software Encryption 356

Schneier on Security

APRIL 11, 2024

Last week, the internet dodged a major nation-state attack that would have had catastrophic cybersecurity repercussions worldwide. There are libraries for everything: displaying objects in 3D, spell-checking, performing complex mathematics, managing an e-commerce shopping cart, moving files around the internet—everything.

Software 359

Software Engineering Internet Internet 359

Krebs on Security

JANUARY 11, 2022

In May 2021, Microsoft patched a similarly critical and wormable vulnerability in the HTTP Protocol Stack; less than a week later, computer code made to exploit the flaw was posted online. . As usual, the SANS Internet Storm Center has a per-patch breakdown by severity and impact. “Test and deploy this patch quickly.”

Social Engineering 281

Social Engineering Backups Malware Engineering 281

Krebs on Security

JUNE 14, 2022

Today, however, the group began publishing individual victim websites on the public Internet, with the leaked data made available in an easily searchable form. But the website erected by ALPHV as part of this new pressure tactic is available on the open Internet. “It’ll p**s people off and make class actions more likely.”

Ransomware 290

Ransomware Internet Internet Cybercrime 290

Krebs on Security

MARCH 4, 2021

In two of the intrusions, the attackers made off with the forums’ user databases, including email and Internet addresses and hashed passwords. 27, 2021, a monitoring system detected unauthorized secure shell access to the server and an attempt to dump network traffic. “Our [bitcoin] wallet has been cracked.

Cybercrime 363

Cybercrime Hacking Passwords Accountability 363

Krebs on Security

MARCH 5, 2021

On March 2, Microsoft released emergency security updates to plug four security holes in Exchange Server versions 2013 through 2019 that hackers were actively using to siphon email communications from Internet-facing systems running Exchange. 6, 2021, a day when most of the world was glued to television coverage of the riot at the U.S.

Hacking 364

Hacking Software Government Internet 364

Krebs on Security

JULY 2, 2021

A statement published on its support site March 12, 2021 says the company will no longer provide further security updates to the MyCloud OS 3 firmware. Domanski said MyCloud users on OS 3 can virtually eliminate the threat from this attack by simply ensuring that the devices are not set up to be reachable remotely over the Internet.

Firmware 359

Firmware Passwords Internet Internet 359

Krebs on Security

JUNE 10, 2022

At the outset of their federal criminal trial for hijacking vast swaths of Internet addresses for use in large-scale email spam campaigns, three current or former executives at online advertising firm Adconion Direct (now Amobee ) have pleaded guilty to lesser misdemeanor charges of fraud and misrepresentation via email.

Government 300

Government Marketing Internet Internet 300

Krebs on Security

DECEMBER 2, 2021

In January 2021, technology vendor Ubiquiti Inc. 28, other Ubiquiti employees spotted the unusual downloads, which had leveraged internal company credentials and a Surfshark VPN connection to hide the downloader’s true Internet address. But Sharp was a member of the team doing the forensic investigation, the indictment alleges.

VPN 257

VPN Internet Internet Accountability 257

Krebs on Security

JUNE 7, 2022

Netflix has a new documentary series airing next week — “ Web of Make Believe: Death, Lies & the Internet ” — in which Yours Truly apparently has a decent amount of screen time.

Cybercrime 322

Cybercrime Internet Internet Web Fraud 322

Krebs on Security

AUGUST 11, 2022

Of those, 232 included an alias that indicated the customer had signed up at some AT&T property; 190 of the aliased email addresses were “ +att@”; 42 were “ +uverse@ ,” an oddly specific reference to a DirecTV/AT&T entity that included broadband Internet. “Therefore, the auction is suspended.

Mobile 49

Mobile Internet Internet Accountability 49