Security Affairs

SEPTEMBER 4, 2021

Apple will delay the introduction of its new child pornography protection tools due to a heated debate raised by privacy advocates. Apple announced this week that it will delay the rollout of its new child pornography protection tools after many experts and privacy advocated claimed it poses a threat to user privacy.

Privacy 95

Privacy Libraries IT Security 95

eSecurity Planet

AUGUST 5, 2021

Open source security has been a big focus of this week’s Black Hat conference, but no open source security initiative is bolder than the one proffered by the Open Source Security Foundation (OpenSSF). ” OpenSSF was formed a year ago by the merger of Linux Foundation, GitHub and industry security groups.

Security 142

Security Big data Libraries Communications 142

The Last Watchdog

AUGUST 8, 2023

8, 2023 – SandboxAQ today announced Sandwich, an open source framework and meta-library of cryptographic algorithms that simplifies modern cryptography management. This provides a much simpler process to create a cryptographic object, such as a secure tunnel, and helps organizations implement crypto-agility. Palo Alto, Calif.,

Libraries 151

Libraries Encryption Access Cybersecurity 151

Security Affairs

DECEMBER 22, 2021

PYSA and Lockbit were the most active ransomware gangs in the threat landscape in November 2021, researchers from NCC Group report. Security researchers from NCC Group reported an increase in ransomware attacks in November 2021 over the past month, and PYSA (aka Mespinoza) and Lockbit were the most active ransomware gangs.

Ransomware 105

Ransomware Encryption Government Retail 105

Security Affairs

DECEMBER 29, 2021

China-linked APT group Aquatic Panda is exploiting the Log4Shell vulnerability to compromise a large academic institution. China-linked cyberespionage group Aquatic Panda was spotted exploiting the Log4Shell vulnerability ( CVE 2021-44228 ) in an attack aimed at a large academic institution. Pierluigi Paganini.

Libraries 96

Libraries Access Security IT 96

Security Affairs

APRIL 16, 2023

Every week the best security articles from Security Affairs are free for you in your email box. hacking tools and electronics A new round of the weekly SecurityAffairs newsletter arrived! hacking tools and electronics A new round of the weekly SecurityAffairs newsletter arrived!

Data breaches 82

Data breaches Security Libraries Retail 82

Security Affairs

FEBRUARY 19, 2020

The DRBControl APT group has been targeting gambling and betting companies worldwide with malware that links to two China-linked APT groups. Security researchers from TrendMicro have uncovered a cyber espionage campaign carried out by an APT group tracked as DRBControl that employed a new family of malware.

Libraries 102

Libraries Phishing Passwords IT 102

Security Affairs

MAY 6, 2023

Every week the best security articles from Security Affairs are free for you in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Security 98

Security Libraries Data breaches Ransomware 98

eSecurity Planet

DECEMBER 15, 2021

Nation-state cyber threat groups and ransomware attackers are moving in to exploit a critical flaw found in the seemingly ubiquitous Apache Log4j open-source logging tool, as attacks spread just days after the vulnerability that could affect hundreds of millions of devices was made public late last week. Escalation of Exploit Attempts.

Ransomware 118

Ransomware Cybersecurity Access Libraries 118

Security Affairs

APRIL 18, 2024

BlackBerry reported that the financially motivated group FIN7 targeted the IT department of a large U.S. The attackers employed the lure of a free IP scanning tool to infect the systems with the Anunak backdoor and gain an initial foothold using living-off-the-land binaries, scripts, and libraries (lolbas).

Phishing 112

Phishing Manufacturing Libraries IT 112

Security Affairs

JUNE 18, 2020

Researchers uncovered a recent campaign carried out by the InvisiMole group that has been targeting a small number of high-profile organizations. The group has been active since at least 2013, ESET experts linked the group to the Gamaredon Russian APT group Gamaredon despite considers the two crews independent.

Military 86

Military Communications Libraries Encryption 86

Security Affairs

AUGUST 4, 2021

China-linked APT31 group employed a new strain of malware in attacks aimed at entities in Mongolia, Belarus, Canada, the US, and Russia. In July 2021, the French national cyber-security agency ANSSI warned of ongoing attacks against a large number of French organizations conducted by the Chine-linked APT31 cyberespionage group.

Libraries 134

Libraries Security IT Cybersecurity 134

Security Affairs

OCTOBER 13, 2022

The Budworm espionage group resurfaced targeting a U.S.-based This is the first time that Symantec researchers have observed the Budworm group targeting a U.S-based The group also targeted a hospital in South East Asia. The China-linked APT27 group has been active since 2010, it targeted organizations worldwide, including U.S.

File names 136

File names Financial Services Manufacturing Libraries 136

eSecurity Planet

JULY 11, 2022

Intezer Labs security researchers have identified a sophisticated new malware that targets Linux devices. The module hooks functions called in shared libraries, which is pretty common for malware, but it also implements “advanced evasion techniques” and “remote capabilities over SSH.”. ” See the Best Open Source Security Tools.

Libraries 144

Libraries Authentication Security Access 144

Security Affairs

SEPTEMBER 12, 2019

Iran-linked Cobalt Dickens APT group carried out a spear-phishing campaign aimed at tens of universities worldwide. This operation is similar to the threat group’s August 2018 campaign , using compromised university resources to send library-themed phishing emails.” and Switzerland.

Phishing 81

Phishing Libraries File names Metadata 81

eSecurity Planet

JANUARY 5, 2023

There’s even been growing evidence that data destruction could replace ransomware , as ransomware groups seek leverage to force victims to pay. Also read: SANS Outlines Critical Infrastructure Security Steps as Russia, U.S. Trade Cyberthreats. RaaS and CaaS Continue to Grow.

Security 139

Security Ransomware Cybersecurity Privacy 139

Data Protection Report

DECEMBER 13, 2021

This is a critical vulnerability of very high significance to government and industry groups. Confirm that your security operations center is monitoring external-facing systems for indicators of compromise. Adjust firewalls and other endpoint tools to prevent outbound connections from systems with log4j.

Libraries 57

Libraries Ransomware Cloud Risk 57

Security Affairs

APRIL 3, 2019

The OceanLotus APT group, also known as APT32 or Cobalt Kitty , leverages a steganography-based loader to deliver backdoors on compromised systems. The APT32 group, also known as OceanLotus Group, has been active since at least 2013, according to the experts it is a state-sponsored hacking group.

Libraries 80

Libraries Encryption Communications Manufacturing 80

Security Affairs

OCTOBER 10, 2018

A previously unknown cyber espionage group, tracked as Gallmaker, has been targeting entities in the government, military and defense sectors since at least 2017. A new cyber espionage group tracked as Gallmaker appeared in the threat landscape. ” concluded Symantec.

Military 85

Military File names Libraries Government 85

Security Affairs

SEPTEMBER 27, 2019

IBM researchers observed one of the Magecart groups using a malicious code to inject into commercial-grade layer 7 L7 routers. IBM X-Force Incident Response and Intelligence Services (IRIS) experts observed that one of the Magecart groups, tracked as MG5, is using malware to inject into commercial-grade L7 routers. Pierluigi Paganini.

Libraries 70

Libraries Access IT Security 70

Security Affairs

APRIL 23, 2020

A security expert uncovered an old APT operation, tracked Nazar, by analyzing the NSA hacking tools included in the dump leaked by Shadow Brokers in 2017. Somehow, this operation found its way onto the NSA’s radar pre-2013, as far as I can tell, it’s eluded specific coverage from the security industry. Pierluigi Paganini.

Libraries 109

Libraries Cybersecurity Access IT 109

ForAllSecure

DECEMBER 8, 2021

How will we scale security testing in tandem with the rate at which code is developed and deployed? Integrating fuzzing as a part of your DevOps pipeline can deliver big results: security and development alignment, shortened feedback and testing cycles, and clear insight into what is -- and isn’t -- being tested.

Libraries 52

Libraries Security IT 52

Security Affairs

OCTOBER 13, 2023

The researchers pointed out that the basic characteristics of the tools used by the threat actors and their broad diversity, suggest that they are disposable tools employed for downloading and executing additional payloads. The tools have no code similarities with any known tool used by other threat actors.

Government 111

Government IT Encryption Libraries 111

Security Affairs

MAY 25, 2023

North Korea-linked APT group Lazarus actor has been targeting vulnerable Microsoft IIS servers to deploy malware. AhnLab Security Emergency response Center (ASEC) researchers reported that the Lazarus APT Group is targeting vulnerable versions of Microsoft IIS servers in a recent wave of malware-based attacks. The msvcr100.dll

Libraries 92

Libraries Security Cybersecurity Government 92

Security Affairs

DECEMBER 24, 2022

“The main payload itself is packed with more than 10 layers for obfuscation and is capable of delivering a fake payload once it detects sandboxing and security analytics tools.” The group behind Raspberry Robin is the maker of some of the tools LockBit is also using. exe to execute a malicious command.

Government 97

Government Communications Ransomware Manufacturing 97

eSecurity Planet

OCTOBER 9, 2023

A surge of critical vulnerabilities and zero-day exploits has made for a very busy week in IT security, affecting a range of tech giants like Atlassian, Cisco, Apple, Arm, Qualcomm and Microsoft. Major zero-day vulnerabilities were reported in Atlassian and Cisco tools, while Apple responded to its own zero-day issue.

Libraries 89

Libraries Ransomware Access Security 89

Security Affairs

SEPTEMBER 13, 2022

A cyber espionage group targets governments and state-owned organizations in multiple Asian countries since early 2021. ” The attackers employed a broad range of legitimate tools to deliver malware in attacks aimed at government institutions related to finance, aerospace, and defense, as well as state-owned media, IT, and telecom firms.

Government 94

Government Access Libraries Education 94

Security Affairs

DECEMBER 8, 2019

The best news of the week with Security Affairs. Two malicious Python libraries were stealing SSH and GPG keys. China used the Great Cannon DDoS Tool against forum used by Hong Kong protestors. Iran-Linked APT groups target energy, industrial sectors with ZeroCleare Wiper. A new round of the weekly newsletter arrived!

Security 56

Security Authentication Ransomware Libraries 56

Security Affairs

DECEMBER 15, 2020

Experts discovered a new Windows info-stealer, named PyMICROPSIA, linked to AridViper group that is rapidly evolving to target other platforms. Experts spotted the PyMICROPSIA info stealer while investigating attacks of the AridViper group (also tracked as Desert Falcon and APT-C-23 ). ” concludes the analysis.

Communications 144

Communications Libraries IT Security 144

Security Affairs

SEPTEMBER 5, 2021

A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. The post Security Affairs newsletter Round 330 appeared first on Security Affairs. If you want to also receive for free the international press subscribe here.

Security 58

Security Agriculture Ransomware Libraries 58

ForAllSecure

MAY 4, 2023

Upcoming Events We have two upcoming events planned for May 2023: Webinar: How to Uncover and Address Vulnerabilities in Open-Source Libraries GlueCon Read on to learn more about May’s events. While they provide access to pre-built components and tools, they can also introduce security vulnerabilities into your code.

Libraries 52

Libraries Sales Risk Marketing 52

Security Affairs

APRIL 26, 2023

China-linked threat actor tracked as Alloy Taurus is using a Linux variant of the PingPull backdoor and a new tool dubbed Sword2033. Researchers from Palo Alto Networks Unit 42 recently observed the China-linked Alloy Taurus group (aka GALLIUM , Softcell ) targeting Linux systems with a new variant of PingPull backdoor. softether[.]net

Communications 98

Communications Military Government Libraries 98

eSecurity Planet

APRIL 15, 2024

Typically, these vulnerabilities result in remote code execution or denial-of-service attacks, posing major dangers to users’ data security. In addition to securing internal assets, you also need to ensure SaaS data is protected. Check out our article on SaaS security checklist and learn how to create one.

Libraries 93

Libraries Risk Cybersecurity Honeypots 93

IT Governance

FEBRUARY 14, 2024

Compromised data includes policyholders’ and their families’ civil status, dates of birth and social security numbers, as well as the name of their health insurer and information relating to their contracts. It has since been confirmed by Anukul Peedkaew, the permanent secretary of social development and human security.

Data Privacy 52

Data Privacy Manufacturing Privacy Security 52

Security Affairs

OCTOBER 31, 2019

China-linked APT41 group is targeting telecommunications companies with a new piece of malware used to spy on text messages of highly targeted individuals. Researchers at FireEye discovered a new backdoor tracked as MessageTap that China-linked APT41 group are using to spy on text messages sent or received by highly targeted individuals.

Libraries 57

Libraries Education Risk Security 57

Security Affairs

JANUARY 11, 2019

Victims of the PyLocky Ransomware can use a tool released by security researcher Mike Bautista at Cisco Talos group to decrypt their files for free. The good news is that security researcher Mike Bautista at Cisco Talos group released a decryption tool that allows them to decrypt their files for free.

Ransomware 104

Ransomware Encryption Passwords Libraries 104

IT Governance

FEBRUARY 21, 2024

Fowler sent a responsible disclosure notice when he discovered the database and it was secured the following day. Source New Telecoms USA Yes 6,158 Nabholz Construction Company Employee Welfare Health Plan Source 1 ; source 2 New Healthcare USA Yes 5,326 Dawson James Securities, Inc. North Hill Home Health Care, Inc.,

Data Privacy 52

Data Privacy Manufacturing Privacy Energy and Utilities 52