2019, Blog and Information Security - Information Management Today

2019

Blog

Information Security

EnemyBot malware adds new exploits to target CMS servers and Android devices

Security Affairs

MAY 30, 2022

CVE Number Affected devices CVE-2021-44228, CVE-2021-45046 Log4J RCE CVE-2022-1388 F5 BIG IP RCE No CVE (vulnerability published on 2022-02) Adobe ColdFusion 11 RCE CVE-2020-7961 Liferay Portal – Java Unmarshalling via JSONWS RCE No CVE (vulnerability published on 2022-04) PHP Scriptcase 9.7 LFI CVE-2018-16763 Fuel CMS 1.4.1

CMS

CMS IoT Passwords Security

Lampion malware v2 February 2020

Security Affairs

FEBRUARY 24, 2020

Since end-December 2019 lampion malware has been noted as the most prominent malware targeting Portuguese organizations. 2020-02-13] #Lampion v2 #portugal #malware #ATA 0998f6473004e0ba54ead5784ba62db8 h}//vrau-x.s3.us-east-2.amazonaws.[com/0.zip Malicious zip file: DPD-Track&Trace-IDPT-NEgn-02-2020_23. zip h//oiurx14x.s3.us-east-2.amazonaws.}com/P-14-7.dll

e-Delivery

e-Delivery Access Information Security Security

Join 55,000+

Insiders

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Webinars

Generative AI Deep Dive: Advancing from Proof of Concept to Production

MORE WEBINARS

Trending Sources

CISA adds WatchGuard flaw to its Known Exploited Vulnerabilities Catalog

Security Affairs

APRIL 12, 2022

The Cyclops Blink malware has been active since at least June 2019, it targets WatchGuard Firebox, Small Office/Home Office (SOHO) network devices, and ASUS router models. The vulnerabilities added to the catalog have to be addressed by federal agencies by May 02, 2022.

IT Cybersecurity Ransomware Access

Webinars

Generative AI Deep Dive: Advancing from Proof of Concept to Production

MORE WEBINARS

[SI-LAB] FlawedAmmyy Leveraging Undetected XLM Macros as an Infection Vehicle

Security Affairs

MARCH 2, 2019

In February 2019, SI-LAB captured multiple samples of phishing campaigns using an Office Excel document carrying a malicious Excel 4.0 File name: patent-2019-02-20T093A283A05-1.xls This binary was signed on Tuesday, February 19th, 2019, and the next email is also associated: NastasyaTurkina68@mail.ru; from a Russian provider.

File names

File names Phishing Libraries IT

Google outages in Eastern US affected Gmail, G-Suite, YouTube, and more

Security Affairs

JUNE 2, 2019

I discovered the problem because I was not able to access Analytics data for my blog. We will provide an update by Sunday, 2019-06-02 16:00 US/Pacific.” Users also experience problems in accessing third-party services such as Snapchat and Discord. ” reported the company service status page.

Cloud

Cloud Analytics Access Cybersecurity

Expert discovered how to brick all Samsung mobile phones

Security Affairs

MAY 13, 2019

I just published "How to brick all Samsung phones" on @Medium [link] — Elliot Alderson (@fs0c131y) May 12, 2019. French white hat hacker Robert Baptiste (aka @fs0c131y) discovered how to brick all Samsung mobile phones. Baptiste bought a Samsung mobile phone a few months ago and decided to analyze it.

Security

Security IT Information Security

Hackers are again attacking Portuguese banking organizations via Android Trojan-Banker

Security Affairs

APRIL 16, 2020

List of some baking campaigns this Brazilian threat group has performed in Portugal: 13/03 – Novo Banco Trojan-Banker 12/03 – Caixa Geral Depósitos 13/02 – Millennium BCP e Montepio 20/01 – Montepio e Millennium BCP 14/01 – Santander e Novo Banco 12-2019/01-2020: Lampion Trojan (…). Pierluigi Paganini.

Authentication

Authentication Phishing Data structuring Access

Brazilian trojan banker is targeting Portuguese users using browser overlay

Security Affairs

MAY 7, 2020

One of the last occurrences was last December 2019, where the Lampion trojan operated in a very similar way, changing only the way the malware was distributed (via AWS S3 buckets and with the first stage encoded in a highly obfuscated VBS file). One of the files was a DLL that exported functions to capture home banking credentials.

Communications

Communications Phishing Access IT

Persistent privacy powers professional businesses

CGI

SEPTEMBER 25, 2018

Tue, 09/25/2018 - 02:46. Nearly 70% of these companies have either met or are on track to exceed GDPR requirements by May 2019. Companywide information security policies. Third-party security policies. Blog moderation guidelines and term of use. Persistent privacy powers professional businesses.

Privacy

Privacy GDPR Cybersecurity Unstructured data

The hidden C2: Lampion trojan release 212 is on the rise and using a C2 server for two years

Security Affairs

MARCH 13, 2022

Lampion trojan is one of the most active banking trojans impacting Portuguese Internet end users since 2019. The malware TTP and their capabilities remain the same observed in 2019 , but the trojan loader – the VBS files – propagated along with the new campaign has significant differences. FUD capabilities of the Lampions’ VBS loader.

Passwords

Passwords IT Information Security Government

Considerations when buying managed security services

CGI

JULY 2, 2019

Considerations when buying managed security services. Tue, 07/02/2019 - 17:30. The trend for organizations of all shapes and sizes in buying managed security services continues to increase, and we’re seeing a rise in interest from all sectors. Blog moderation guidelines and term of use. Is it any wonder?

Security

Security Artificial Intelligence Data science Cybersecurity

The Muncy malware is on the rise

Security Affairs

FEBRUARY 19, 2019

In detail, the first wave observed was on February 12th, 2019. The domain seems to be offline, but it was possible to get some indicators on it on Shodan and with the last update on 2019-02-12. He is also a founding member and Pentester at CSIRT.UBI and founder of the security computer blog seguranca – informatica.

Phishing

Phishing IT Security Encryption

EnemyBot malware adds new exploits to target CMS servers and Android devices

Lampion malware v2 February 2020

Webinars

Trending Sources

CISA adds WatchGuard flaw to its Known Exploited Vulnerabilities Catalog

Webinars

[SI-LAB] FlawedAmmyy Leveraging Undetected XLM Macros as an Infection Vehicle

Google outages in Eastern US affected Gmail, G-Suite, YouTube, and more

Expert discovered how to brick all Samsung mobile phones

Hackers are again attacking Portuguese banking organizations via Android Trojan-Banker

Brazilian trojan banker is targeting Portuguese users using browser overlay

Persistent privacy powers professional businesses

The hidden C2: Lampion trojan release 212 is on the rise and using a C2 server for two years

Considerations when buying managed security services

The Muncy malware is on the rise

Stay Connected