2014 - Information Management Today

Coronavirus-themed attacks April 05 – April 11, 2020

Security Affairs

APRIL 12, 2020

In this post, I decided to share the details of the Coronavirus-themed attacks launched from April 05 to April 11, 2020. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Below a list of attacks detected this week.

Phishing

Phishing Ransomware Data breaches Government

Adobe fixed several memory corruption issues in some of its products

Security Affairs

MAY 20, 2020

for Adobe Premiere Rush 05/19/2020 05/19/2020 APSB20-28 Security?update for Adobe Audition 05/19/2020 05/19/2020 APSB20-27 Security?update for Adobe Premiere Pro 05/19/2020 05/19/2020 APSB20-25 Security?update 05/19/2020 05/19/2020. APSB20-29 Security?update update available?for

IT

IT Security Information Security

North Korean Lazarus APT stole credit card data from US and EU stores

Security Affairs

JULY 6, 2020

The activity of the Lazarus Group surged in 2014 and 2015, its members used mostly custom-tailored malware in their attacks and experts that investigated on the crew consider it highly sophisticated. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. ” concludes the researchers. Pierluigi Paganini.

Retail

Retail Phishing Marketing IT

Google addresses over 70 flaws in Android, including a remotely exploitable issue

Security Affairs

MARCH 4, 2020

Google also issued the 2020-03-05 security patch level that addresses 60 vulnerabilities in the system, kernel components, FPC, MediaTek, Qualcomm, and Qualcomm closed-source components. The 2020-03-05 security patch level also fixed a high severity issue (CVE-2020-0069) in MediaTek components that could lead to elevation of privilege.

Security

Security Risk IT Information Security

Millions of devices could be hacked exploiting flaws targeted by tools stolen from FireEye

Security Affairs

DECEMBER 24, 2020

110330 CVE-2019-0708 05/14/2019 Microsoft Windows Remote Desktop Services Remote Code Execution Vulnerability (Blue. million out of 7.54 50098 CVE-2016-0167 04/12/2016 Microsoft Windows Graphics Component Security Update (MS16-039) 7.8 110306 CVE-2018-8581 11/13/2018 Microsoft Exchange Server Elevation of Privilege Vulnerability 7.4

Passwords

Passwords Security Risk Information Security

FTC says $12 million were lost due to Coronavirus-related scams

Security Affairs

APRIL 14, 2020

.” Unfortunately, crooks continue to attempt to take advantage of the current COVID-19 outbreak, if you are interested in a list of recent Coronavirus-themed attacks give a look here: Coronavirus-themed attacks April 05 – April 11, 2020. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Security

Security IT

Experts found a remote-code execution flaw in SQLite

Security Affairs

MAY 11, 2019

.” Talos published technical details of the vulnerability that was addressed with the released of SQLite version 3.28 , Timeline for the vulnerability is: 2019-02-05 – Vendor Disclosure 2019-03-07 – 30 day follow up with vendor; awaiting moderator approval 2019-03-28 – Vendor patched 2019-05-09 – Public Release.

Libraries

Libraries Security IT

Google fixes a critical DoS flaw tracked as CVE-2019-2232 in Android

Security Affairs

DECEMBER 9, 2019

Google addressed more than 40 vulnerabilities, including 17 as part of the 2019-12-01 security patch level , and 27 more in the 2019-12-05 security patch level. The 2019-12-05 security patch level addresses one high-severity information disclosure issue in Framework and one in the System. Pierluigi Paganini.

Risk

Risk Security IT Information Security

CVE-2019-12735 – opening a specially crafted file in Vim or Neovim Editor could compromise your Linux system

Security Affairs

JUNE 10, 2019

Below the timeline of the flaw: 2019-05-22 Vim and Neovim maintainers notified 2019-05-23 Vim patch released 2019-05-29 Neovim patch released 2019-06-05 CVE ID CVE-2019-12735 assigned. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Security

Security Access IT Information Security

Hackers stole more than $150 million from KuCoin cryptocurrency exchange

Security Affairs

SEPTEMBER 26, 2020

“We detected some large withdrawals since September 26, 2020 at 03:05:37 (UTC+8). Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. ” reads a statement published by the company. Pierluigi Paganini.

Security

Security IT Information Security

Coronavirus-themed attacks April 19 – April 25, 2020

Security Affairs

APRIL 26, 2020

Coronavirus-themed attacks April 05 – April 11, 2020. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Coronavirus-themed attacks April 12 – April 18, 2020. Pierluigi Paganini. SecurityAffairs – Facebook, hacking).

Cybersecurity

Cybersecurity Government Security IT

Security Affairs newsletter Round 260

Security Affairs

APRIL 19, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. A new round of the weekly newsletter arrived! The best news of the week with Security Affairs. Pierluigi Paganini. SecurityAffairs – newsletter, hacking).

Security

Security Phishing Ransomware Sales

Comodo Antivirus is affected by several vulnerabilities

Security Affairs

JULY 23, 2019

05/07/19 – Comodo confirms some vulnerabilities, waiting to confirm others. 05/20/19 – Tenabe requests status update. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Access

Access Security IT Information Security

Orange Business Services hit by Nefilim ransomware operators

Security Affairs

JULY 17, 2020

A cryptovirus-type computer attack was detected by Orange teams during the night of Saturday 04 July to Sunday 05 July 2020. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. ” reads a statement issued by Orange.

Business Services

Business Services Ransomware Manufacturing Archiving

Google May 2019 Patches address 4 RCE flaws in Android

Security Affairs

MAY 8, 2019

and 9 and was addressed on all devices running the Android 2019-05-01 security patch level. . The Android 2019-05-01 security patch level also addresses a Moderate risk elevation of privilege vulnerability in Framework. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. ” reads the advisory.

Risk

Risk Security Access

First Google security patches for Android in 2019 fix a critical flaw

Security Affairs

JANUARY 9, 2019

The 2019-01-05 security patch level addressed a total of 14 vulnerabilities in Kernel components (7), NVIDIA components (1), Qualcomm components (3), and Qualcomm closed-source components (3). Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. 4 High risk elevation of privilege issues. Pierluigi Paganini.

Security

Security Risk IT

Brazilian trojan banker is targeting Portuguese users using browser overlay

Security Affairs

MAY 7, 2020

At least since the year of 2014 that new variants have been observed, with minor changes, and with the objective of collecting bank details of the victims. During Sl-LAB analysis, and also according to @t14g0p – a Portuguese security researcher, this malware is similar to other threats from Brazil observed in Portugal since 2014.

Communications

Communications Phishing Access IT

Google addressed three critical code execution flaws in Android Media Framework

Security Affairs

JULY 3, 2019

The 2019-07-05 security patch level addressed a total of 21 flaws in Qualcomm components (2 rated as Critical and 6 as High severity) and Qualcomm closed source components (3 rated as Critical and 10 as High severity). Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Libraries

Libraries Security IT Information Security

Tracking Iran-linked APT33 group via its own VPN networks

Security Affairs

NOVEMBER 14, 2019

7/1/19 7/2/19 54.36.73.108 7/22/19 10/05/19 54.37.48.172 10/22/19 11/05/19 54.38.124.150 10/28/18 11/17/18 88.150.221.107 9/26/19 11/07/19 91.134.203.59 ” ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

IT

IT Military Security

Let’s Encrypt CA is revoking over 3 Million TLS certificates due to a bug

Security Affairs

MARCH 4, 2020

In a couple of hours (05:22 UTC) it fixed the problem and re-enabled issuance. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. The organization confirmed the bug at 2020-02-29 03:08 UTC, and two minutes later halted issuance.

Encryption

Encryption IT Security Information Security

Hackers hijacked Coincheck ‘s domain registrar account and targeted some users

Security Affairs

JUNE 4, 2020

“Approximately 12:00 on June 1, 2020, as a result of detecting an abnormality in the monitoring work and starting an investigation, from around 0:05 on May 31, 2020, in our account in “Ome.com”, It was confirmed that the domain registration information was changed by a third party. Pierluigi Paganini.

Phishing

Phishing Access Communications Security

A missing authorization check in WordPre WPvivid plugin that can lead to the exposure of the database and all files

Security Affairs

MARCH 27, 2020

05-03-2020 – Asked for update regarding the report. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. 28-02-2020 – Reported the issue to the developer of the WPvivid plugin. Pierluigi Paganini.

Authentication

Authentication IT Access Security

Experts disclose security flaws in Oracle’s iPlanet Web Server

Security Affairs

MAY 11, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini. SecurityAffairs – Oracle’s iPlanet Web Server, hacking).

Security

Security Phishing Encryption Authentication

Sodinokibi ransomware uses MS API to encrypt open and locked files

Security Affairs

MAY 11, 2020

2020-05-08: #REvil #Ransomware Decrypter v2.2 Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. also leverages the Windows Restart Manager API to shut down any process that could prevent a file being decrypted.

Encryption

Encryption Ransomware Cybersecurity Security

Expert presented a new attack technique to compromise MikroTik Routers

Security Affairs

OCTOBER 8, 2018

release date: 05-25-2018) using the x86 ISO.” Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. They were tested against RouterOS 6.42.3 reads a blog post published by Tenable Research. ” concludes Tenable Research.

Authentication

Authentication Access Passwords Security

World Youth Skills Day 2022: Addressing the CyberSec Skills Gap

Thales Cloud Protection & Licensing

JULY 11, 2022

Tue, 07/12/2022 - 05:20. In 2014, the United Nations General Assembly adopted a resolution recognizing July 15 as World Youth Skills Day. World Youth Skills Day 2022: Addressing the CyberSec Skills Gap.

Cybersecurity

Cybersecurity Education Access Government

SystemBC, a new proxy malware is being distributed via Fallout and RIG EK

Security Affairs

AUGUST 3, 2019

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. ” concludes the report that also includes IoCs and other details. Pierluigi Paganini. SecurityAffairs – SystemBC malware, hacking).

e-Delivery

e-Delivery Sales Communications Security

CSRF flaw in WordPress potentially allowed the hack of websites

Security Affairs

MARCH 14, 2019

2019/02/05 WordPress proposes a patch, we provide feedback. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. 2019/02/05 WordPress proposes a patch, we provide feedback. 2019/03/13 WordPress 5.1.1 2019/03/13 WordPress 5.1.1

Security

Security IT

Cisco WebEx Meetings affected by a new elevation of privilege flaw

Security Affairs

FEBRUARY 27, 2019

2018-12-05: Cisco confirmed the reception of the advisory and informed they will open a case. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Authentication

Authentication Security IT

Hacking the ‘Unhackable’ eyeDisk USB stick

Security Affairs

MAY 12, 2019

He discovered it was possible to improve the attack with an automated command script that would abuse sub opcode 05 to force the password to be dumped. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Passwords

Passwords Authentication Encryption IT

Amazon’s Ring Video Doorbell could open the door of your home to hackers

Security Affairs

NOVEMBER 7, 2019

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini. SecurityAffairs – IoT , Amazon’s Ring Video Doorbell).

Passwords

Passwords IoT Authentication Communications

The number of exploits in the Echobot botnet reached 59

Security Affairs

AUGUST 7, 2019

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

IoT

IoT CMS Authentication Security

Grandoreiro Malware implements new features in Q2 2020

Security Affairs

MAY 27, 2020

One of the last analyzed samples (2020-05-21 – 8491a619dc6e182437bd4482d6e97e3a ) is scrutinized below. The sample was available for download between 2020-05-18 and 2020-05-22. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Grandoreiro VBS file – First stage (Portugal May 2020).

Communications

Communications Archiving Access IT

The Ursnif Gangs keep Threatening Italy

Security Affairs

MARCH 26, 2019

Investigating the remote destination where the C2 is hosted, it results active since 05 March 2019, just a few times before the attack wave; destination unknown to many AV Vendors at time of attack, suggesting this portion of the infrastructure has been specifically prepared for the Italian landscape. Table 1: Ursnif infection format.

Archiving

Archiving Encryption IT Security

A case study on the use of iBeacon technology at a major theme park

CGI

DECEMBER 10, 2014

Wed, 12/10/2014 - 02:05. CGI was tapped for an iBeacon project by the amusement park in the summer of 2014. A case study on the use of iBeacon technology at a major theme park. narmada.devarajan. As I noted, there are already many real-life examples of its application in other industries such as retail. Building an iBeacon app.

Customer Experience

Customer Experience Retail IT

The startup studio: A new model for driving innovation

CGI

JANUARY 31, 2017

Tue, 01/31/2017 - 05:34. 1] Rifkin, Jeremy, The Zero Marginal Cost Society: The Internet of Things, the Collaborative Commons, & the Eclipse of Capitalism , 2014. [2] The startup studio: A new model for driving innovation. What benefits can a large company derive from an innovation strategy? Is it a fad, an opportunity or a necessity?

Digital transformation

Digital transformation Communications Access Marketing

What happens when yesterday's digital natives are tomorrow's leaders?

CGI

FEBRUARY 26, 2015

Thu, 02/26/2015 - 05:38. Submitted by Eric LeBel on December 5, 2014. Submitted by Danny Wootton on December 5, 2014. Submitted by Christiaan Murphy on December 5, 2014. Submitted by Danny Wootton on December 5, 2014. What happens when yesterday's digital natives are tomorrow's leaders? p.butler@cgi.com.

Communications

Communications Cloud Education IT

Riding the IoT Hype Cycle

CGI

FEBRUARY 5, 2015

Thu, 02/05/2015 - 07:08. The July 2014 Gartner Hype Cycle for the Internet of Things states that ‘Overall, the IoT Hype Cycle is particularly light on the mature side of the Hype Cycle. Source: Gartner, Gartner Hype Cycle for the Internet of Things, 2014, 21 July 2014. Riding the IoT Hype Cycle.

IoT

IoT Marketing Manufacturing IT

Does the advance of smart devices mean the end of the World Wide Web as we know it?

CGI

NOVEMBER 12, 2014

Wed, 11/12/2014 - 05:05. Does the advance of smart devices mean the end of the World Wide Web as we know it? sarah.robins@cgi.com. In many ways the Internet provides a platform which aggregates data from content providers and adds a user friendly, consistent presentation layer for easy consumption.

e-Delivery

e-Delivery IT Retail Manufacturing

Are your drivers eco-friendly?

CGI

SEPTEMBER 22, 2014

Mon, 09/22/2014 - 05:00. Are your drivers eco-friendly? A number of companies have been investing in coaching services for professional drivers with the goal of teaching them how to reduce fuel usage, as well as other eco-driving skills.

Paper

Paper Mining Analytics IT

When Consumerisation and Cloud Services = Shadow IT

CGI

APRIL 14, 2015

Tue, 04/14/2015 - 05:33. Submitted by Matthew Napleton on December 5, 2014. When Consumerisation and Cloud Services = Shadow IT. p.butler@cgi.com. Great blog Danny - its amazing how much 'Shadow IT' we see in organisations of all sizes, especially when it comes to analytics! Add new comment.

Cloud

Cloud IT Consumer Services Analytics

Cybersecurity: Futile or necessary investment?

CGI

JULY 10, 2015

Fri, 07/10/2015 - 05:33. According to Mandiant’s 2014 Threat Report , the median time from an initial compromise to the time someone learns about the breach is more than 200 days. Cybersecurity: Futile or necessary investment? ravi.kumarv@cgi.com.

Cybersecurity

Cybersecurity Security Risk Access

Cyber Threats Observatory Gets Improvements

Security Affairs

MAY 3, 2020

We might appreciate a compelling increment of LokiBot detection on 2020-04-28 and from 2020-04-30 to 2020-05-02. LokiBot Domain Stereotypes as 2020-05-02. LokiBot File Stereotypes as 2020-05-02. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. cf, broken2.cf, cf, and so on and so forth.

Computer and Electronics

Computer and Electronics File names Cybersecurity IT

Group-IB detects Half a Million Indian Banks’ Cards on Joker’s Stash Cardshop

Security Affairs

FEBRUARY 8, 2020

On February 5, a new database under the name “INDIA-BIG-MIX” (full name: [CC] INDIA-BIG-MIX (FRESH SNIFFED CVV) INDIA/EU/WORLD MIX, HIGH VALID 80-85%, uploaded 2020-02-05 (NON-REFUNDABLE BASE) went on sale on the Joker’s Stash — one of the most popular underground cardshops. Pierluigi Paganini.

Sales

Sales Marketing Phishing Cybersecurity

Coronavirus-themed attacks April 05 – April 11, 2020

Adobe fixed several memory corruption issues in some of its products

Trending Sources

North Korean Lazarus APT stole credit card data from US and EU stores

Google addresses over 70 flaws in Android, including a remotely exploitable issue

Millions of devices could be hacked exploiting flaws targeted by tools stolen from FireEye

FTC says $12 million were lost due to Coronavirus-related scams

Experts found a remote-code execution flaw in SQLite

Google fixes a critical DoS flaw tracked as CVE-2019-2232 in Android

CVE-2019-12735 – opening a specially crafted file in Vim or Neovim Editor could compromise your Linux system

Hackers stole more than $150 million from KuCoin cryptocurrency exchange

Coronavirus-themed attacks April 19 – April 25, 2020

Security Affairs newsletter Round 260

Comodo Antivirus is affected by several vulnerabilities

Orange Business Services hit by Nefilim ransomware operators

Google May 2019 Patches address 4 RCE flaws in Android

First Google security patches for Android in 2019 fix a critical flaw

Brazilian trojan banker is targeting Portuguese users using browser overlay

Google addressed three critical code execution flaws in Android Media Framework

Tracking Iran-linked APT33 group via its own VPN networks

Let’s Encrypt CA is revoking over 3 Million TLS certificates due to a bug

Hackers hijacked Coincheck ‘s domain registrar account and targeted some users

A missing authorization check in WordPre WPvivid plugin that can lead to the exposure of the database and all files

Experts disclose security flaws in Oracle’s iPlanet Web Server

Sodinokibi ransomware uses MS API to encrypt open and locked files

Expert presented a new attack technique to compromise MikroTik Routers

World Youth Skills Day 2022: Addressing the CyberSec Skills Gap

SystemBC, a new proxy malware is being distributed via Fallout and RIG EK

CSRF flaw in WordPress potentially allowed the hack of websites

Cisco WebEx Meetings affected by a new elevation of privilege flaw

Hacking the ‘Unhackable’ eyeDisk USB stick

Amazon’s Ring Video Doorbell could open the door of your home to hackers

The number of exploits in the Echobot botnet reached 59

Grandoreiro Malware implements new features in Q2 2020

The Ursnif Gangs keep Threatening Italy

A case study on the use of iBeacon technology at a major theme park

The startup studio: A new model for driving innovation

What happens when yesterday's digital natives are tomorrow's leaders?

Riding the IoT Hype Cycle

Does the advance of smart devices mean the end of the World Wide Web as we know it?

Are your drivers eco-friendly?

When Consumerisation and Cloud Services = Shadow IT

Cybersecurity: Futile or necessary investment?

Cyber Threats Observatory Gets Improvements

Group-IB detects Half a Million Indian Banks’ Cards on Joker’s Stash Cardshop

Stay Connected