Major cybersecurity events on 2nd April 2020: COVID-themed scams surge. Zoom’s popularity adversely impacts the remote conferencing giant through various malicious schemes. Facebook disables Instagram, Facebook impersonators’ accounts. New class of Windows vulnerabilities discovered.Continue readingTwitter bug caches private files, Facebook takes down fake accounts, Mandrake targets Aussies, MakeFrame targets SMBs, and more
Tag: Linux
Major cybersecurity events on 1st April 2020: Two Zoom zero-day vulnerabilities could allow root privileges to attackers. Windows vulnerability, SMBGhost, exploited for local privilege escalation. Wiper malware dubbed “Coronavirus” render disks unusable. Phishing emails lure victims with financial relief for Coronavirus.Continue readingZoom under scrutiny, Phishing campaigns evade Office 365 ATPs, Wiper targets Windows, and more
Round Up of Major Breaches and Scams Threat group steals data by bypassing server firewall and masking C2 traffic What appears to be a state-sponsored threat group is using a technique called “Cloud Snooper” to bypass a server’s firewall to communicate with command and control (C2). The attackers deployed a rootkit that then installs a…Continue readingCloudSEK Daily Threat Bulletin – 25th February 2020
Round Up of Major Breaches and Scams Facility of US natural gas operator shuts down due to ransomware attack A facility of a US natural gas operator was targeted by a ransomware attack that used poor segmentation of its IT-OT networks to infect Windows-based assets. The threat actor used a Spearphishing link to access their…Continue readingCloudSEK Daily Threat Bulletin – 19th February 2020
Just 3 weeks before the legislative election, it has been found that Israel’s ruling party has inadvertently exposed all 6.5 million eligible voters’ personal information. And despite the growing sophistication of cyber-attacks, simple but severe Business Email Compromise attacks, are the leading cause for cybercrime losses. Phishing efforts continue to get more convincing, with a…Continue readingCloudSEK Daily Threat Bulletin – 12th February 2020
From charity organizations to government entities, just in the last few days, we have seen the impact of attacks on, 12 Indian government entities, the city of Racine, a voter registration website, and the Red Kite Community Housing charity. With Emotet finding a new carrier in W-9 tax forms, it is more obvious than ever…Continue readingCloudSEK Daily Threat Bulletin – 5th February 2020