Education, Information Security, IT and Libraries

New Android malicious library Goldoson found in 60 apps +100M downloads

Security Affairs

APRIL 15, 2023

The Goldoson library was discovered by researchers from McAfee’s Mobile Research Team, it collects lists of applications installed on a device, and a history of Wi-Fi and Bluetooth devices information, including nearby GPS locations. It is important to highlight that the library was not developed by the authors of the apps.

Libraries

Libraries Data collection Education Security

Researchers disclose critical sandbox escape bug in vm2 sandbox library

Security Affairs

APRIL 9, 2023

The development team behind the vm2 JavaScript sandbox library addressed a critical Remote Code Execution vulnerability. servers, it has approximately four million weekly downloads and its library is part of 722 packages. servers, it has approximately four million weekly downloads and its library is part of 722 packages.

Libraries

Libraries File names Education Cybersecurity

FritzFrog P2P Botnet is back and targets Healthcare, Education and Government Sectors

Security Affairs

FEBRUARY 11, 2022

FritzFrog P2P botnet is back and is targeting servers belonging to entities in the healthcare, education, and government sectors. The bot is written in Golang and implements wormable capabilities, experts reported attacks against entities in the government, education, and finance sectors. ” reads the report published by Akamai.

Education

Education Government Libraries Mining

CISA adds MinIO, PaperCut, and Chrome bugs to its Known Exploited Vulnerabilities catalog

Security Affairs

APRIL 22, 2023

US Cybersecurity and Infrastructure Security Agency (CISA) added MinIO, PaperCut, and Chrome vulnerabilities to its Known Exploited Vulnerabilities catalog. The vulnerability is an Integer overflow in the Skia graphics library, the issue was reported by Clément Lecigne of Google’s Threat Analysis Group on April 12, 2023.

IT

IT Libraries Cybersecurity Education

FBI warns of PYSA Ransomware attacks against Education Institutions in US and UK

Security Affairs

MARCH 17, 2021

The FBI has issued an alert to warn about an increase in PYSA ransomware attacks on education institutions in the US and UK. The FBI has issued Tuesday an alert to warn about an increase in PYSA ransomware attacks against education institutions in the United States and the United Kingdom. Pierluigi Paganini.

Education

Education Ransomware Encryption Government

Quebec shuts down thousands of sites as disclosure of the Log4Shell flaw

Security Affairs

DECEMBER 12, 2021

Quebec shut down nearly 4,000 of its sites in response to the discovery of the Log4Shell flaw in the Apache Log4j Java-based logging library. Quebec shut down nearly 4,000 of its sites as a preventative measure after the disclosure of a PoC exploit for the Log4Shell flaw ( CVE-2021-44228 ) in the Apache Log4j Java-based logging library.

Libraries

Libraries Digital transformation Education Government

Avast released a free decryptor for the Windows version of the Akira ransomware

Security Affairs

JULY 1, 2023

This Linux version is 64-bit and also uses the Boost library, it uses the Crypto++ library instead of Windows CryptoAPI. ” The decryptor also supports the option to back up encrypted files, which is recommended by the security firm. The authors used Microsoft Linker version 14.35. Type both names of the files.

Ransomware

Ransomware Encryption Libraries Education

Meet The Team Behind Mayhem: Come See Us At These Upcoming June 2023 Events

ForAllSecure

JUNE 7, 2023

Mayhem Unleashed Webinar: Discover our Next Generation Security Testing Solution Are you ready to revolutionize your DevSecOps workflows? ‍ This educational forum will focus on educating attendees on how to best protect highly vulnerable business applications and critical infrastructure. Look no further!

Libraries

Libraries Sales Cybersecurity Education

Google fixed the second actively exploited Chrome zero-day of 2023

Security Affairs

APRIL 19, 2023

The vulnerability is an Integer overflow in the Skia graphics library, the issue was reported by Clément Lecigne of Google’s Threat Analysis Group on April 12, 2023. Google rolled out emergency fixes to address another actively exploited high-severity zero-day flaw, tracked as CVE-2023-2136 , in its Chrome web browser.

Libraries

Libraries Education Access Cybersecurity

China-linked APT group VANGUARD PANDA uses a new tradecraft in recent attacks

Security Affairs

JUNE 26, 2023

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors. The Volt Typhoon group has been active since at least mid-2021 it carried out cyber operations against critical infrastructure.

Cleanup

Cleanup Libraries Access Manufacturing

Google fixed the first Chrome zero-day of 2023

Security Affairs

APRIL 14, 2023

We will also retain restrictions if the bug exists in a third party library that other projects similarly depend on, but haven’t yet fixed.” .” The company is rolling out the new version in the Stable Desktop channel, this means that it will be available to the entire user base over the coming days or weeks.

Libraries

Libraries Education Cybersecurity Security

Rhysida ransomware gang is auctioning data stolen from the British Library

Security Affairs

NOVEMBER 20, 2023

The Rhysida ransomware group claimed responsibility for the recent cyberattack on the British Library that has caused a major IT outage. The Rhysida ransomware gang added the British Library to the list of victims on its Tor leak site. It is one of the largest libraries in the world. ” reads the announcement.

Libraries

Libraries Ransomware Manufacturing Education

The first iPhone Rapid Security Response update released by Apple fails to install

Security Affairs

MAY 2, 2023

Apple has released its first Rapid Security Response update, but many iPhone users reported problems during the installation of the iOS Security Response. On June 2022, Apple announced that the Rapid Security Response feature would be available starting with iOS 16.4.1, ” “iOS Security Response 16.4.1 (a)

Security

Security Libraries Education Cybersecurity

China-linked Alloy Taurus APT uses a Linux variant of PingPull malware

Security Affairs

APRIL 26, 2023

It uses a statically linked OpenSSL (OpenSSL 0.9.8e) library to interact with the domain over HTTPS via HTTP POST request” The researchers noticed that the command handler implemented in the PingPull malware is similar to the ones supported by both the China Chopper web shell and the PingPull Windows PE variant. saspecialforces.co[.]za

Communications

Communications Military Government Libraries

Malicious file analysis – Example 01

Security Affairs

AUGUST 9, 2022

PdfParser, a standalone PHP library, provides various tools to extract data from a PDF file. ExifTool is a platform-independent Perl library plus a command-line application for reading, writing, and editing meta information in a wide variety of files. Example: peframe file_name. Pdf-parser. Example: python2.7 pdf-parser.py

Libraries

Libraries Metadata Education Security

Researcher published PoC exploit for Ghostscript zero-day

Security Affairs

SEPTEMBER 7, 2021

The library is widely used by many servers that leverage it for image conversion and is used as part of the file upload processing application, such as ImageMagick. ” wrote the expert that added that his PoC was created only for educational purposes and cannot be used for law violation or personal gain.

Libraries

Libraries Education Security IT

Sky.com servers exposed via misconfiguration

Security Affairs

OCTOBER 9, 2021

To see if any of your online accounts were exposed in previous security breaches, use our personal data leak checker with a library of 15+ billion breached records. The importance of educating support staff on responsible disclosure. Access to the configuration file has now been disabled. What’s in the configuration file?

IoT

IoT Access Ransomware Education

Cyber espionage campaign targets Asian countries since 2021

Security Affairs

SEPTEMBER 13, 2022

The attackers used Dynamic-link library (DLL) side-loading to deliver the malicious code. Experts also shared details about an attack against a government-owned organization in the education sector in Asia. The technique sees threat actors placing a malicious DLL in a directory where a legitimate DLL is expected to be found.

Government

Government Access Libraries Education

e-Records 2019: Early Bird discount expires soon!

The Texas Record

OCTOBER 16, 2019

The result is more and more of our information is born digitally; accessed and used solely via screens; stored on hard drives, servers, and in the cloud; and will eventually be deleted or transferred to a digital archive all without ever having been reduced to paper. The transformation yields numerous benefits but also poses challenges.

Digital transformation

Digital transformation Records Management Paper Archiving

Preservica drives global expansion with $10m funding from Mobeus

Preservica

OCTOBER 2, 2018

Future-proofing digital information over decades, however, requires a different governance and technology approach to traditional IT strategies such as backup, archiving and content management.”. Oxford, UK and Boston, MA – October 2, 2018: Preservica today announced a $10 million (£7.5 The investment provides an initial $5.3

Digital preservation

Digital preservation Archiving Compliance Libraries

Former OpenText CEO John Shackleton joins Preservica as Chairman of the Board

Preservica

JULY 24, 2019

Preservica , the market leader in SaaS-based active digital preservation, welcomes enterprise information management veteran John Shackleton to its board to spearhead the company’s next phase of global expansion. Preservica is changing the way organizations around the world protect and future-proof critical long-term digital information.

Digital preservation

Digital preservation ECM Archiving CMS

House Passes Two Cybersecurity Bills

Hunton Privacy

MAY 1, 2012

3523), which is aimed at facilitating the exchange of cyber threat intelligence information between the government and certain private entities. In addition, the House approved the Federal Information Security Amendments Act of 2012 (H.R. Federal Information Security Amendments Act.

Cybersecurity

Cybersecurity Information Security Libraries Sales

China-linked APT41 group targets telecommunications companies with new backdoor

Security Affairs

OCTOBER 31, 2019

The group hit entities in several industries, including the gaming, healthcare, high-tech, higher education, telecommunications, and travel services industries. The spyware uses the “ libpcap library to listen to all traffic and parses network protocols starting with Ethernet and IP layers.

Libraries

Libraries Education Risk Security

The Hacker Mind Podcast: Hacking Charity

ForAllSecure

JULY 28, 2021

And now, kids were streaming into their office and getting food education, medical care, my work in Uganda had immediate life changing results right away, Vamosi: You might not think of hackers as charitable people as individuals who might be working to make the world a better place. Hackers are charitable in ways that might surprise you.

Computer and Electronics

Computer and Electronics Communications Education IT

Security Ledger Podcast: Security Automation Is (And Isn't) The Future Of InfoSec

ForAllSecure

OCTOBER 9, 2019

But how exactly will artificial intelligence help bridge the information security skills gap? And even with the help of machine learning algorithms, what kinds of security work is still best left to humans? They won with Mayhem, an assisted intelligence application security testing solution. Think about it. Enough said.

Security

Security Artificial Intelligence Computer and Electronics Libraries

Rhysida ransomware group hacked Abdali Hospital in Jordan

Security Affairs

DECEMBER 26, 2023

The group also claimed the hack of the British Library and China Energy Engineering Corporation. The ransomware gang hit organizations in multiple industries, including the education, healthcare, manufacturing, information technology, and government sectors. Abdali Hospital provides care to patients in numerous specialties.

Ransomware

Ransomware Manufacturing Education Libraries

Rhysida ransomware gang claimed China Energy hack

Security Affairs

NOVEMBER 25, 2023

ransomfeed #security #infosec #energychina pic.twitter.com/deRRximVPd — Ransomfeed (@ransomfeed) November 25, 2023 The China Energy Engineering Corporation (CEEC) is a state-owned company in China that operates in the energy and infrastructure sectors. Energy China [link] TL;DR That's huuuge!

Ransomware

Ransomware Manufacturing Education Libraries

Rhysida ransomware group hacked King Edward VII’s Hospital in London

Security Affairs

NOVEMBER 29, 2023

Recently, the Rhysida ransomware gang added the British Library and China Energy Engineering Corporation to the list of victims on its Tor leak site. The ransomware gang hit organizations in multiple industries, including the education, healthcare, manufacturing, information technology, and government sectors.

Ransomware

Ransomware Manufacturing Education Libraries

Security Ledger Podcast: Security Automation Is (And Isn't) The Future Of InfoSec

ForAllSecure

OCTOBER 9, 2019

But how exactly will artificial intelligence help bridge the information security skills gap? And even with the help of machine learning algorithms, what kinds of security work is still best left to humans? They won with Mayhem, an assisted intelligence application security testing solution. Think about it. Enough said.

Security

Security Artificial Intelligence Computer and Electronics Libraries

SECURITY LEDGER PODCAST: SECURITY AUTOMATION IS (AND ISN'T) THE FUTURE OF INFOSEC

ForAllSecure

OCTOBER 9, 2019

But how exactly will artificial intelligence help bridge the information security skills gap? And even with the help of machine learning algorithms, what kinds of security work is still best left to humans? They won with Mayhem, an assisted intelligence application security testing solution. Think about it. Enough said.

Security

Security Artificial Intelligence Computer and Electronics Libraries

Researchers released a free decryption tool for the Rhysida Ransomware

Security Affairs

FEBRUARY 12, 2024

The Rhysida ransomware uses CSPRNG, which is based on the ChaCha20 algorithm provided by the LibTomCrypt library. The ransomware gang hit organizations in multiple industries, including the education, healthcare, manufacturing, information technology, and government sectors. ” reads the paper. ” concludes the paper.

Ransomware

Ransomware Encryption Paper Manufacturing

The Evolution of Aggah: From Roma225 to the RG Campaign

Security Affairs

AUGUST 6, 2019

Few months ago we started observing a cyber operation aiming to attack private companies in various business sectors, from automotive to luxury, education, and media/marketing. In the following table are shown the static information about it. Introduction. Figure 4: Malicious code contained in the malicious “blogspot” site.

Libraries

Libraries IT Education Security

Establishing Records Management at Brandeis—The First Eighteen Months

Brandeis Records Manager

MAY 27, 2015

It begins with fact-finding: gathering information, learning the institution, meeting with stakeholders from various functions. We made early acquaintances with Legal and Information Security leaders. (The content in this blog reflects the opinions of the author, and not of Brandeis University.). Learn the Institution.

Records Management

Records Management Communications Paper Mining

Chinese Cycldek APT targets Vietnamese Military and Government in sophisticated attacks

Security Affairs

APRIL 6, 2021

The former collects environment information from the victim machine and sends it to DropBox, the latter runs code to evade detection by security products. The threat actors are sending out spear-phishing messages to compromise diplomatic targets in Southeast Asia, India, and the U.S. at least since 2013.

Military

Military Government Phishing Libraries

The Russia-linked APT29 is behind recent attacks targeting NATO and EU

Security Affairs

APRIL 13, 2023

recommend organizations in the area of interest of the APT group to improve the security of IT Security systems. The HTLM files are hosted on a legitimate online library website that was likely compromised by the threat actors sometime between the end of January 2023 and the beginning of February 2023.

Libraries

Libraries Military Education Phishing

Security Affairs newsletter Round 447 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

NOVEMBER 26, 2023

million patients in the U.S.

Security

Security Ransomware Data breaches Libraries

The Hacker Mind Podcast: The Right To Repair

ForAllSecure

FEBRUARY 10, 2021

” So should analyzing a device’s firmware for security flaws be considered illegal? In normal times I’d call a repair person, then wait until he or she could show up and fix my appliance. But now, I don’t want extra people in my house, so I’ll look it up on Google, right? So my dishwasher wasn’t draining.

Manufacturing

Manufacturing Agriculture IT Access

The Hacker Mind Podcast: The Right To Repair

ForAllSecure

FEBRUARY 10, 2021

I’m Robert Vamosi and in this episode I’m talking about our right to repair, how some high tech companies might want to limit that right, and how there’s a group of information security professionals who are volunteering their free time to fight for those rights in local legislation. No need for a repair person.

Manufacturing

Manufacturing Agriculture IT Access

New Android malicious library Goldoson found in 60 apps +100M downloads

Researchers disclose critical sandbox escape bug in vm2 sandbox library

Trending Sources

FritzFrog P2P Botnet is back and targets Healthcare, Education and Government Sectors

CISA adds MinIO, PaperCut, and Chrome bugs to its Known Exploited Vulnerabilities catalog

FBI warns of PYSA Ransomware attacks against Education Institutions in US and UK

Quebec shuts down thousands of sites as disclosure of the Log4Shell flaw

Avast released a free decryptor for the Windows version of the Akira ransomware

Meet The Team Behind Mayhem: Come See Us At These Upcoming June 2023 Events

Google fixed the second actively exploited Chrome zero-day of 2023

China-linked APT group VANGUARD PANDA uses a new tradecraft in recent attacks

Google fixed the first Chrome zero-day of 2023

Rhysida ransomware gang is auctioning data stolen from the British Library

The first iPhone Rapid Security Response update released by Apple fails to install

China-linked Alloy Taurus APT uses a Linux variant of PingPull malware

Malicious file analysis – Example 01

Researcher published PoC exploit for Ghostscript zero-day

Sky.com servers exposed via misconfiguration

Cyber espionage campaign targets Asian countries since 2021

e-Records 2019: Early Bird discount expires soon!

Preservica drives global expansion with $10m funding from Mobeus

Former OpenText CEO John Shackleton joins Preservica as Chairman of the Board

House Passes Two Cybersecurity Bills

China-linked APT41 group targets telecommunications companies with new backdoor

The Hacker Mind Podcast: Hacking Charity

Security Ledger Podcast: Security Automation Is (And Isn't) The Future Of InfoSec

Rhysida ransomware group hacked Abdali Hospital in Jordan

Rhysida ransomware gang claimed China Energy hack

Rhysida ransomware group hacked King Edward VII’s Hospital in London

Security Ledger Podcast: Security Automation Is (And Isn't) The Future Of InfoSec

SECURITY LEDGER PODCAST: SECURITY AUTOMATION IS (AND ISN'T) THE FUTURE OF INFOSEC

Researchers released a free decryption tool for the Rhysida Ransomware

The Evolution of Aggah: From Roma225 to the RG Campaign

Establishing Records Management at Brandeis—The First Eighteen Months

Chinese Cycldek APT targets Vietnamese Military and Government in sophisticated attacks

The Russia-linked APT29 is behind recent attacks targeting NATO and EU

Security Affairs newsletter Round 447 by Pierluigi Paganini – INTERNATIONAL EDITION

The Hacker Mind Podcast: The Right To Repair

The Hacker Mind Podcast: The Right To Repair

Stay Connected