-
The Week in Ransomware - December 18th 2020 - Targeting Israel
The SolarWinds supply chain attack has dominated this week's cybersecurity news, but there was still plenty of ransomware news this week.
- December 18, 2020
- 05:59 PM
0
-
Stealthy Magecart malware mistakenly leaks list of hacked stores
A list of dozens of online stores hacked by a web skimming group was inadvertently leaked by a dropper used to deploy a stealthy remote access trojan (RAT) on compromised e-commerce sites.
- December 18, 2020
- 02:47 PM
0
-
Europol launches new decryption platform for law enforcement
Europol and the European Commission have launched a new decryption platform that will help boost Europol's ability to gain access to information stored in encrypted media collected during criminal investigations.
- December 18, 2020
- 01:01 PM
- 0
-
Windows 10 updates cause CorsairVBusDriver BSOD crash loop
Microsoft's December 2020 Windows 10 updates are conflicting with the Corsair Utility Engine software and causing the operating system to go into a BSOD crash loop.
- December 18, 2020
- 12:23 PM
- 10
-
NSA warns of hackers forging cloud authentication information
An advisory from the U.S. National Security Agency is providing Microsoft Azure administrators guidance to detect and protect against threat actors looking to access resources in the cloud by forging authentication information.
- December 18, 2020
- 11:56 AM
- 0
-
Google Chrome disables insecure form warnings after complaints
Google has disabled a feature that displays a warning when submitting insecure forms after receiving many complaints from users and website administrators.
- December 18, 2020
- 10:37 AM
- 0
-
Microsoft identifies 40+ victims of SolarWinds hack, 80% from US
Microsoft said that over 40 of its customers had their networks infiltrated by hackers following the SolarWinds supply chain attack after they installed backdoored versions of the Orion IT monitoring platform.
- December 18, 2020
- 08:56 AM
- 1
-
Microsoft confirms breach in SolarWinds hack, denies infecting others
Microsoft has confirmed that they were hacked in the recent SolarWinds attacks but denied that their software was compromised in a supply-chain attack to infect customers.
- December 17, 2020
- 07:59 PM
- 1
-
SolarWinds hackers breach US nuclear weapons agency
Nation-state hackers have breached the networks of the National Nuclear Security Administration (NNSA) and the US Department of Energy (DOE).
- December 17, 2020
- 04:29 PM
- 0
-
Bouncy Castle crypto authentication bypass vulnerability revealed
A severe authentication bypass vulnerability has been reported in Bouncy Castle, a popular open-source cryptography library. When exploited, the vulnerability (CVE-2020-28052) can allow an attacker to gain access to user and administrator accounts due to a cryptographic weakness in the manner passwords are checked.
- December 17, 2020
- 03:26 PM
- 0
-
US think tank breached three times in a row by SolarWinds hackers
An advanced hacking group believed to be working for the Russian government has compromised the internal network of a think tank in the U.S. three times.
- December 17, 2020
- 03:17 PM
- 0
-
Ransomware masquerades as mobile version of Cyberpunk 2077
A threat actor is distributing fake Windows and Android installers for the Cyberpunk 2077 game that is installing a ransomware calling itself CoderWare.
- December 17, 2020
- 02:01 PM
- 0
-
CISA: Hackers breached US govt using more than SolarWinds backdoor
The US Cybersecurity and Infrastructure Security Agency (CISA) said that the APT group behind the recent compromise campaign targeting US government agencies used more than one initial access vector.
- December 17, 2020
- 12:48 PM
- 1
-
Iranian nation-state hackers linked to Pay2Key ransomware
Iranian-backed hacking group Fox Kitten has been linked to the Pay2Key ransomware operation that has recently started targeting organizations from Israel and Brazil.
- December 17, 2020
- 12:01 PM
- 0
-
WordPress plugin with 5 million installs has a critical vulnerability
The team behind a popular WordPress plugin has disclosed a critical file upload vulnerability and issued a patch. The vulnerable plugin, Contact Form 7, has over 5 million active installations making this upgrade a necessity for WordPress site owners out there.
- December 17, 2020
- 10:52 AM
- 0
-
FBI, CISA officially confirm US govt hacks after SolarWinds breach
The compromise of multiple US federal networks following the SolarWinds breach was officially confirmed for the first time in a joint statement released earlier today by the FBI, DHS-CISA, and the Office of the Director of National Intelligence (ODNI).
- December 17, 2020
- 09:39 AM
- 0
-
Holiday deal: 40% off Malwarebytes Premium and Teams
Malwarebytes is running a holiday deal where you can get 40% off Malwarebytes Premium and the Malwarebytes for Teams business product for a limited time.
- December 17, 2020
- 06:30 AM
- 0
-
Malicious Chrome, Edge extensions with 3M installs still in stores
Malicious Chrome and Edge browser extensions with over 3 million installs, most of them still available on the Chrome Web Store and the Microsoft Edge Add-ons portal, are capable of stealing users' info and redirecting them to phishing sites.
- December 16, 2020
- 05:04 PM
- 1
-
FireEye, Microsoft create kill switch for SolarWinds backdoor
Microsoft, FireEye, and GoDaddy have collaborated to create a kill switch for the SolarWinds Sunburst backdoor that forces the malware to terminate itself.
- December 16, 2020
- 04:21 PM
- 1
-
Emulated mobile devices used to steal millions from US, EU banks
Threat actors behind an ongoing worldwide mobile banking fraud campaign were able to steal millions from multiple US and EU banks, needing just a few days for each attack.
- December 16, 2020
- 12:26 PM
- 0
Sponsor Posts
VMDR Vulnerability Management, Detection and Response — Discover, assess, prioritize, and patch critical vulnerabilities in real time and across your global hybrid-IT landscape all from a single solution.
JSCM's Intelligent & Flexible Cyber Security — Helping organizations assess risk and solve complex CyberSecurity problems for more than 20 years.
-
How to remove the PBlock+ adware browser extension
Filed Under: Adware -
Remove the Toksearches.xyz Search Redirect
Filed Under: Adware -
Remove the Smashapps.net Search Redirect
Filed Under: Adware -
Remove the Smashappsearch.com Search Redirect
Filed Under: Adware -
Remove the BipApp Chrome Extension
Filed Under: Adware
