Architecture and Hacking - Cyber Security Informer

Deloitte denied its systems were hacked by Brain Cipher ransomware group

Security Affairs

DECEMBER 9, 2024

In addition to emails, hackers had potential access to IP addresses, architectural diagrams for businesses and health information. Deloitte discovered the hack in March 2017, and according to The Guardian, the attackers may have had access to the company systems since October or November 2016.

Hacking

Hacking Ransomware Accountability Architecture

Nation-State Attacker of Telecommunications Networks

Schneier on Security

OCTOBER 22, 2021

Someone has been hacking telecommunications networks around the world: LightBasin (aka UNC1945) is an activity cluster that has been consistently targeting the telecommunications sector at a global scale since at least 2016, leveraging custom tools and an in-depth knowledge of telecommunications network architectures.

Telecommunications

Telecommunications Architecture Mobile Hacking

DOGE as a National Cyberattack

Schneier on Security

FEBRUARY 13, 2025

Second, data exposure: Beyond accessing personal information and transaction records, these operators can copy entire system architectures and security configurations—in one case, the technical blueprint of the country’s federal payment infrastructure.

Government

Government Artificial Intelligence Banking Software

Why blockchain-based cybersecurity may be the answer for vulnerable IoT networks

Tech Republic Security

JANUARY 17, 2020

CES 2020: A "hacked" robot was on display to demonstrate how SigmaDots serverless architecture is poised to fend off IoT security threats.

IoT

IoT Architecture Cybersecurity Hacking

Google fixed a critical vulnerability in Chrome browser

Security Affairs

OCTOBER 30, 2024

Google has patched a critical Chrome vulnerability, tracked as CVE-2024-10487, reported by Apple Security Engineering and Architecture (SEAR) on October 23, 2024. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Google Chrome )

Engineering

Engineering Architecture Hacking Information Security

Building a Ransomware Resilient Architecture

eSecurity Planet

DECEMBER 2, 2022

While security teams layer essential preventative measures, resilience measures also need to be implemented in an architecture to reduce the impact of ransomware attacks on your backups. Threat actors cannot hack what they cannot see. Figure 1: Typical VLAN architecture. Figure 2: Resilient VLAN architecture.

Architecture

Architecture Ransomware Backups Firewall

The FBI warns of HiatusRAT scanning campaigns against Chinese-branded web cameras and DVRs

Security Affairs

DECEMBER 17, 2024

In this latest campaign, our investigation also uncovered prebuilt Hiatus binaries that target new architectures such as Arm, Intel 80386, and x86-64 and previously targeted architectures such as MIPS, MIPS64, and i386. reads the report published by Black Lotus Labs. The feds urge to report any signs of compromise to the FBI or IC3.

Architecture

Architecture Internet Internet Malware

LW ROUNDTABLE — How 2024’s cyber threats will transform the security landscape in 2025

The Last Watchdog

DECEMBER 16, 2024

Meanwhile, while business logic hacks, supply chain holes, and cyber extortion continue to loom large. Attackers arent hacking in theyre logging in. With adversaries destroying backups to increase extortion payouts, recovery will grow harder and slower, emphasizing the need for stronger security controls and architecture.

Cyber threats

Cyber threats CISO IoT Phishing

ZuoRAT Malware Is Targeting Routers

Schneier on Security

JUNE 30, 2022

Dubbed ZuoRAT, the remote access Trojan is part of a broader hacking campaign that has existed since at least the fourth quarter of 2020 and continues to operate.

Malware

Malware DNS Architecture Hacking

Banshee macOS stealer supports new evasion mechanisms

Security Affairs

JANUARY 10, 2025

In August 2024, Russian crooks advertised a macOS malware called BANSHEE Stealer that can target both x86_64 and ARM64 architectures. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking,Banshee Stealer) The report includes Indicators of Compromise (IoCs) for this new variant.

Malware

Malware Advertising Antivirus Cybercrime

CERT-UA warns of cyber espionage against the Ukrainian defense industry using Dark Crystal RAT

Security Affairs

MARCH 20, 2025

The modular architecture of the malware allows to extend its functionalities for multiple malicious purposes, including surveillance, reconnaissance, information theft, DDoS attacks, and arbitrary code execution. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking,Ukraine)

Computers and Electronics

Computers and Electronics Telecommunications Malware Surveillance

Attackers exploit recently disclosed Palo Alto Networks PAN-OS firewalls bug

Security Affairs

FEBRUARY 15, 2025

“we have explored a suspicious (and quite common) architecture where authentication is enforced at a proxy later but then the request is passed through a second layer with different behavior.” ” reads the report published by Assetnote.

Firewall

Firewall Authentication Architecture Risk

New Triada Trojan comes preinstalled on Android devices

Security Affairs

APRIL 2, 2025

The most interesting characteristic of the Triada Trojan is its modular architecture, which gives it theoretically a wide range of abilities. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking,malware)

Malware

Malware Cryptocurrency Mobile Firmware

Palo Alto Networks warns that CVE-2025-0111 flaw is actively exploited in attacks

Security Affairs

FEBRUARY 19, 2025

we have explored a suspicious (and quite common) architecture where authentication is enforced at a proxy later but then the request is passed through a second layer with different behavior. Fundamentally, these sorts of architectures lead to things like header smuggling and path confusion, which can result in many impactful bugs!

Firewall

Firewall Authentication Architecture Internet

Chinese AI platform DeepSeek faced a “large-scale” cyberattack

Security Affairs

JANUARY 28, 2025

DeepSeek’s AI model is highly appreciated due to its exceptional performance, low costs, versatility across various industries, and innovative architecture that enhances learning and decision-making. ” Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking,AI platform)

Artificial Intelligence

Artificial Intelligence DDOS Architecture Marketing

News alert: SquareX discloses nasty browser-native ransomware that’s undetectable by antivirus

The Last Watchdog

MARCH 28, 2025

Mar 28, 2025, CyberNewswire — From WannaCry to the MGM Resorts Hack, ransomware remains one of the most damaging cyberthreats to plague enterprises. Every month, SquareXs research team releases a major web attack that focuses on architectural limitations of the browser and incumbent security solutions. Palo Alto, Calif.,

Antivirus

Antivirus Ransomware Social Engineering Engineering

What Is a DMZ Network? Definition, Architecture & Benefits

eSecurity Planet

APRIL 7, 2023

DMZ network architecture DMZ Architecture There are two main layout options to choose from when developing a DMZ subnetwork: a single firewall layout and a dual firewall layout. Unfortunately, home networks tend to be easy to hack due to limited security investments on the part of the owner.

Architecture

Architecture Firewall Network Security Technology

Two new nations join the list of countries posing as hacking threat

CyberSecurity Insiders

MARCH 23, 2022

Adam Meyers, the Vice President of Intelligence, CrowdStrike, confirmed the news and said that the addition of two countries suggests us that the hacking talent and other resources available in Turkey and Columbia are extremely affordable, when compared to other parts of the world.

Hacking

Hacking Cyber threats Architecture Cyber Attacks

Experts found multiple flaws in Mercedes-Benz infotainment system

Security Affairs

JANUARY 21, 2025

The experts used a diagnostic software to analyze the vehicle architecture, scan the Electronic Control Unit (ECU), identify its version, and test diagnostic functions. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking,Mercedes)

Software

Software Architecture Media Engineering

Rules File Backdoor: AI Code Editors exploited for silent supply chain attacks

Security Affairs

MARCH 19, 2025

” Rule files are configuration files that guide AI Agent behavior in code generation and modification, defining coding standards, project architecture, and best practices.

Architecture

Architecture Risk Hacking Software

Software Vulnerabilities in the Boeing 787

Schneier on Security

AUGUST 16, 2019

Boeing maintains that other security barriers in the 787's network architecture would make that progression impossible. But he says his research nonetheless represents a significant step toward showing the possibility of an actual plane-hacking technique. "We

Software

Software Architecture Engineering Hacking

MY TAKE: Why companies had better start taking the security pitfalls of API proliferation seriously

The Last Watchdog

JANUARY 4, 2022

A big reason why APIs haven’t gotten the attention they deserve may be that, from a security standpoint, they fall into a category of hacking tactics known as Living off the Land, or LotL. Legacy security architectures just don’t fit this massively complex, highly dynamic environment. Here are my key takeaways: Manipulating APIs.

Digital transformation

Digital transformation Hacking Architecture Cyber Risk

Experts warn of a surge in activity associated FICORA and Kaiten botnets

Security Affairs

DECEMBER 27, 2024

It first terminates processes with the same file extension as “FICORA” and then downloads and executes the malware targeting multiple Linux architectures. 221”) to fetch the bot to target various Linux architectures. The malware kills known botnet processes to ensure it remains the only one running.

Architecture

Architecture Malware DNS DDOS

Sophos details five years of China-linked threat actors’ activity targeting network devices worldwide

Security Affairs

NOVEMBER 2, 2024

. “The adversaries appear to be well-resourced, patient, creative, and unusually knowledgeable about the internal architecture of the device firmware. ” Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, China-linked threat actors)

Firmware

Firmware Government Firewall Malware

Okta Screws Up (Yet Again) — ALL Customers’ Data Hacked, not just 1%

Security Boulevard

NOVEMBER 29, 2023

The post Okta Screws Up (Yet Again) — ALL Customers’ Data Hacked, not just 1% appeared first on Security Boulevard. You had one job: Last month’s sheer incompetence descends this week into UTTER FARCE.

Hacking

Hacking Social Engineering Authentication Architecture

Top 9 Trends In Cybersecurity Careers for 2025

eSecurity Planet

OCTOBER 18, 2024

Knowledge of cloud systems architecture and how it interacts with various devices is invaluable. EC-Council : The International Council of E-Commerce Consultants, or EC-Council, offers several certifications for different career paths but is best known for its white-hat hacking program. Salary: $150,000 to $225,000, Mondo.

Cybersecurity

Cybersecurity Artificial Intelligence Penetration Testing CISO

Deloitte denied its systems were hacked by Brain Cipher ransomware group

Security Affairs

DECEMBER 9, 2024

In addition to emails, hackers had potential access to IP addresses, architectural diagrams for businesses and health information. Deloitte discovered the hack in March 2017, and according to The Guardian, the attackers may have had access to the company systems since October or November 2016.

Hacking

Hacking Ransomware Accountability Architecture

News Alert: Silent Signal discovers a critical vulnerability in IBM i System – CVE-2023-30990

The Last Watchdog

JULY 7, 2023

Budapest, Hungary, July 07, 2023 — Silent Signal, a leading technology provider of state-of-the-art ethical hacking services and solutions, discovered and reported a vulnerability to IBM, that has been confirmed and identified under CVE-2023-30990. Discovery and exploitation of the legendary IBM i System. IBM i 7.3, and IBM i 7.5

Architecture

Architecture Hacking Media Government

Can ships be hacked?

Pen Test Partners

APRIL 11, 2024

TL;DR Ships can be hacked Was the MV Dali hacked? Initial outlandish claims asserted that the MV Dali was certainly hacked, whilst others made the equally incorrect claim that there was no possible way that any ship could be hacked. Ships can be hacked. Propulsion should be available shortly after Hacking ships?

Hacking

Hacking Engineering Computers and Electronics Risk

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 35

Security Affairs

MARCH 2, 2025

DragonForce Ransomware Group is Targeting Saudi Arabia Massive Botnet Targets M365 with Stealthy Password Spraying Attacks Notorious Malware, Spam Host Prospero Moves to Kaspersky Lab ACRStealer Infostealer Exploiting Google Docs as C2 #StopRansomware: Ghost (Cring) Ransomware The GitVenom campaign: cryptocurrency theft using GitHub Silent Killers: (..)

Malware

Malware Architecture IoT Ransomware

News alert: INE Security spotlights healthcare companies facing rising exposure to costly breaches

The Last Watchdog

MARCH 24, 2025

In 2023 alone, there were 725 hacking-related breaches reported in U.S. Some of the leading cybersecurity certifications being pursued in the healthcare sector include: CISSP (Certified Information Systems Security Professional) a globally respected credential covering security architecture, risk management, and governance.

Healthcare

Healthcare Penetration Testing Education Cyber threats

Cisco IOS XR flaw allows attackers to crash BGP process on routers

Security Affairs

MARCH 15, 2025

It is based on a microkernel architecture, designed for high availability, scalability, and modularity. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking,Cisco IOS XR) IOS XR is a network operating system developed by Cisco for carrier-grade and service provider routers.

Software

Software Architecture Hacking Risk

U.S. CISA adds SonicWall SonicOS and Palo Alto PAN-OS flaws to its Known Exploited Vulnerabilities catalog

Security Affairs

FEBRUARY 18, 2025

we have explored a suspicious (and quite common) architecture where authentication is enforced at a proxy later but then the request is passed through a second layer with different behavior. Fundamentally, these sorts of architectures lead to things like header smuggling and path confusion, which can result in many impactful bugs!

Firewall

Firewall Firmware Authentication VPN

RansomHub Responsible for Christie's Hack, Threatens Data Leak

SecureWorld News

MAY 30, 2024

To be proactive against breaches and limit the impact if one occurs, companies should adopt a Zero-Trust, zero knowledge security architecture, implement access controls to restrict access to sensitive data, and train employees to spot and report suspicious activity."

Identity Theft

Identity Theft Hacking Ransomware Data breaches

BSides Sofia 2023 – Radoslav Gerganov – Hyundai Head Unit Hacking

Security Boulevard

JULY 18, 2023

Permalink The post BSides Sofia 2023 – Radoslav Gerganov – Hyundai Head Unit Hacking appeared first on Security Boulevard. Our thanks to BSides Sofia for publishing their presenter’s tremendous BSides Sofia 2023 content on the organizations’ YouTube channel.

Hacking

Hacking Architecture CISO Education

China-linked LightBasin group accessed calling records from telcos worldwide

Security Affairs

OCTOBER 20, 2021

China-linked cyberespionage group LightBasin hacked mobile telephone networks around the world and used specialized tools to access calling records. ” The hacking group initially compromised one of the telecommunication companies by leveraging external DNS (eDNS) servers which are part of the General Packet Radio Service (GPRS) network.

Telecommunications

Telecommunications Mobile Hacking Architecture

BSides Sofia 2023 – Vasil Velichkov – Hacking Attacks Against Government Institutions

Security Boulevard

JULY 16, 2023

Permalink The post BSides Sofia 2023 – Vasil Velichkov – Hacking Attacks Against Government Institutions appeared first on Security Boulevard. Our thanks to BSides Sofia for publishing their presenter’s tremendous BSides Sofia 2023 content on the organizations’ YouTube channel.

Government

Government Hacking Architecture CISO

New NKAbuse malware abuses NKN decentralized P2P network protocol

Security Affairs

DECEMBER 15, 2023

The malicious code can target various architectures, it supports both flooder and backdoor capabilities. The primary target of NKAbuse is Linux desktops, however, it can target MISP and ARM architecture. NKN (New Kind of Network) is a decentralized peer-to-peer network protocol that relies on blockchain technology.

Malware

Malware Architecture Technology DDOS

Pink Botnet infected over 1.6 Million Devices, it is one of the largest botnet ever seen

Security Affairs

NOVEMBER 1, 2021

The botnet leverages a robust architecture based on a combination of third-party services, P2P, and Command & Control servers. This architecture was implemented to make the botnet resilient to takedowns by law enforcement and security firms with the support of the vendors of the infected devices. Pierluigi Paganini.

Architecture

Architecture DDOS Advertising DNS

GUEST ESSAY: Why online supply chains remain at risk — and what companies can do about it

The Last Watchdog

JUNE 30, 2021

The Solarwinds hack has brought vendor supply chain attacks — and the lack of readiness from enterprises to tackle such attacks — to the forefront. Let’s discuss how the SolarWinds hack relates to a regular website supply chain. Related: Equipping Security Operations Centers (SOCs) for the long haul.

Risk

Risk Architecture Hacking Media

Dark Mirai botnet spreads targeting RCE on TP-Link routers

Security Affairs

DECEMBER 9, 2021

TPLINK #cybersecurity #rce #cve #hacking #routerhacking #kpmghungary I found an RCE vulnerability in a TP-Link TL-WR840N EU V5 router (CVE-2021-41653). Like the Mirai botnet, Dark Mirai determines the victim’s architecture to fetch and download the matching payload. SecurityAffairs – hacking, botnet). Pierluigi Paganini.

Firmware

Firmware Architecture Malware Hacking

DEF CON 31 – Panel: ‘Hack the Future – Why Congress & White House Support AI Red Teaming’

Security Boulevard

NOVEMBER 20, 2023

Permalink The post DEF CON 31 – Panel: ‘Hack the Future – Why Congress & White House Support AI Red Teaming’ appeared first on Security Boulevard. Originating from the conference events at Caesars Forum, Flamingo, Harrah’s and Linq in Las Vegas, Nevada ; via the organizations YouTube channel.

Hacking

Hacking Architecture Education Information Security

Multiple Git flaws led to credentials compromise

Security Affairs

JANUARY 27, 2025

“As we saw, text-based protocols are often vulnerable to injection, and a small architecture flaw can lead to a big security issue.” ” Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking,credential leakage) .

Architecture

Architecture Hacking Information Security

SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 14

Security Affairs

OCTOBER 6, 2024

Rhadamanthys Stealer Adds Innovative AI Feature in Version 0.7.0

Malware

Malware Architecture Cryptocurrency Cyber Attacks

Deloitte denied its systems were hacked by Brain Cipher ransomware group

Nation-State Attacker of Telecommunications Networks

Trending Sources

DOGE as a National Cyberattack

Why blockchain-based cybersecurity may be the answer for vulnerable IoT networks

Google fixed a critical vulnerability in Chrome browser

Building a Ransomware Resilient Architecture

The FBI warns of HiatusRAT scanning campaigns against Chinese-branded web cameras and DVRs

LW ROUNDTABLE — How 2024’s cyber threats will transform the security landscape in 2025

ZuoRAT Malware Is Targeting Routers

Banshee macOS stealer supports new evasion mechanisms

CERT-UA warns of cyber espionage against the Ukrainian defense industry using Dark Crystal RAT

Attackers exploit recently disclosed Palo Alto Networks PAN-OS firewalls bug

New Triada Trojan comes preinstalled on Android devices

Palo Alto Networks warns that CVE-2025-0111 flaw is actively exploited in attacks

Chinese AI platform DeepSeek faced a “large-scale” cyberattack

News alert: SquareX discloses nasty browser-native ransomware that’s undetectable by antivirus

What Is a DMZ Network? Definition, Architecture & Benefits

Two new nations join the list of countries posing as hacking threat

Experts found multiple flaws in Mercedes-Benz infotainment system

Rules File Backdoor: AI Code Editors exploited for silent supply chain attacks

Software Vulnerabilities in the Boeing 787

MY TAKE: Why companies had better start taking the security pitfalls of API proliferation seriously

Experts warn of a surge in activity associated FICORA and Kaiten botnets

Sophos details five years of China-linked threat actors’ activity targeting network devices worldwide

Okta Screws Up (Yet Again) — ALL Customers’ Data Hacked, not just 1%

Top 9 Trends In Cybersecurity Careers for 2025

Deloitte denied its systems were hacked by Brain Cipher ransomware group

News Alert: Silent Signal discovers a critical vulnerability in IBM i System – CVE-2023-30990

Can ships be hacked?

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 35

News alert: INE Security spotlights healthcare companies facing rising exposure to costly breaches

Cisco IOS XR flaw allows attackers to crash BGP process on routers

U.S. CISA adds SonicWall SonicOS and Palo Alto PAN-OS flaws to its Known Exploited Vulnerabilities catalog

RansomHub Responsible for Christie's Hack, Threatens Data Leak

BSides Sofia 2023 – Radoslav Gerganov – Hyundai Head Unit Hacking

China-linked LightBasin group accessed calling records from telcos worldwide

BSides Sofia 2023 – Vasil Velichkov – Hacking Attacks Against Government Institutions

New NKAbuse malware abuses NKN decentralized P2P network protocol

Pink Botnet infected over 1.6 Million Devices, it is one of the largest botnet ever seen

GUEST ESSAY: Why online supply chains remain at risk — and what companies can do about it

Dark Mirai botnet spreads targeting RCE on TP-Link routers

DEF CON 31 – Panel: ‘Hack the Future – Why Congress & White House Support AI Red Teaming’

Multiple Git flaws led to credentials compromise

SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 14

Stay Connected