Security Affairs

AUGUST 25, 2019

The best news of the week with Security Affairs. A backdoor mechanism found in tens of Ruby libraries. Employees abused systems at Ukrainian nuclear power plant to mine cryptocurrency. Hackers are scanning the web for vulnerable Fortinet, Pulse Secure Products installs. A new round of the weekly newsletter arrived!

Security 50

Security Mining Data breaches Libraries 50

Security Affairs

SEPTEMBER 2, 2019

“I suspect it’s probably a derivate of other IoT crypto mining botnets,” Cashdollar told The Register. “The malware is uploaded as gzip compressed tarball archives of binaries, scripts, and libraries. System administrators need to employ security best practices with the systems they manage.”

IoT 88

IoT Honeypots Libraries Archiving 88

Security Affairs

JANUARY 18, 2019

The Commons FileUpload library is the default file upload mechanism in Struts 2, the CVE-2016-1000031 was discovered two years ago by experts at Tenable. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. People interested in the full list could visit the following address: [link]. Pierluigi Paganini.

Financial Services 70

Financial Services Libraries Mining Retail 70

Security Affairs

JUNE 5, 2019

Security experts at Trend Micro have discovered a new Monero cryptomining miner, dubbed BlackSquid, that is targeting web servers, network drives, and removable drives. “Simultaneous with its attacks, BlackSquid also downloads and executes two XMRig cryptocurrency-mining components.! continues the analysis. Pierluigi Paganini.

Mining 64

Mining File names Libraries IT 64

Security Affairs

FEBRUARY 19, 2019

Since the beginning of the year, security firms observed a new intense ransomware campaign spreading the Shade ransomware. Between January and February, a new, intense, ransomware campaign has been observed by many security firms. However, the mining pool dashboard provides a clue of the current number of infected machines.

Ransomware 76

Ransomware Mining File names Encryption 76

Security Affairs

AUGUST 3, 2018

Experts uncovered a massive cryptojacking campaign that is targeting MikroTik routers to inject a Coinhive cryptocurrency mining script in the web traffic. According to Trustwave the hackers were exploiting a zero-day flaw in the MikroTik routers to inject a copy of the Coinhive library in the traffic passing through the MikroTik router.

Mining 68

Mining Libraries Security IT 68

Security Affairs

JANUARY 9, 2020

The operation was launched in June 2019, the experts first identified the compromised devices then alerted victims to install security patches that lock out the malicious code. Let me close by highlighting the importance of collaboration between the authorities and the private security firms in the fight against emerging cyber threats.

Mining 62

Mining Libraries Cybersecurity Security 62

IT Governance

DECEMBER 13, 2018

This week, in our last podcast of the year, we revisit some of the biggest information security stories from the past 12 months. As is now traditional, I’ve installed myself in the porter’s chair next to the fire in the library, ready to recap some of the year’s more newsworthy information security events.

Data breaches 71

Data breaches Personal data Access GDPR 71

Brandeis Records Manager

MAY 27, 2015

We held over fifty stakeholder meetings between October of 2013 and April of 2015. We made early acquaintances with Legal and Information Security leaders. Our initial client service engagements—managed offsite storage and retrieval, secure document shredding, digitization, and, recently, electronic redaction—began in March of 2014.

Records Management 40

Records Management Communications Paper Mining 40