2014, Information Security, IT and Manufacturing

Airbus suppliers were hit by four major attack in the last 12 months

Security Affairs

SEPTEMBER 26, 2019

The news was reported by security sources to the AFP agency, the experts suspected that the attacks were carried out by China-linked hackers. The experts reported that Airbus suppliers were hit by at least four major attack in the last 12 months. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Manufacturing

Manufacturing Military Data breaches Security

Kraken fileless attack technique abuses Microsoft Windows Error Reporting (WER)

Security Affairs

OCTOBER 7, 2020

The payload loaded is a.Net DLL internally named “Kraken.dll” and compiled on 2020-06-12. Since at least 2014, experts at FireEye have observed APT32 targeting foreign corporations with an interest in Vietnam’s manufacturing, consumer products, and hospitality sectors. ” states the blog post published by Malwarebytes.

Phishing

Phishing Manufacturing Archiving Government

Experts found 125 new flaws in SOHO routers and NAS devices from multiple vendors

Security Affairs

SEPTEMBER 17, 2019

In this phase of the project that started in 2013 ( SOHOpelessly Broken 1.0 ) , the researchers assessed the security of 13 SOHO router and NAS devices and found a total of 125 new vulnerabilities. . This research project aimed to uncover and leverage new techniques to circumvent these new security controls in embedded devices.”

IoT

IoT Manufacturing Authentication Security

Webinars

Generative AI Deep Dive: Advancing from Proof of Concept to Production

MORE WEBINARS

Top cybersecurity Predictions for 2020

Security Affairs

DECEMBER 27, 2019

Let’s try to imagine what threats and bad actors will influence the cyber arena in the next 12 months. In 2020, the number of attacks associated with Advanced Persistent Threat actors that haven’t been previously identified by the security researchers will increase. 1) Targeted ransomware attacks on the rise. the Mirai bot).

Cybersecurity

Cybersecurity IoT Ransomware Manufacturing

SweynTooth Bluetooth flaws affect devices from major system-on-a-chip (SoC) vendors

Security Affairs

FEBRUARY 15, 2020

Now experts found 12 vulnerabilities in the BLE software development kits (SDKs) of seven SoC vendors (Texas Instruments, NXP, Cypress, Dialog Semiconductors, Microchip, STMicroelectronics and Telink Semiconductor) that could be exploited to hack into various smart devices, including devices and environmental tracking or sensing systems.

IoT

IoT Manufacturing Security Communications

New TA2101 threat actor poses as government agencies to distribute malware

Security Affairs

NOVEMBER 15, 2019

“Between October 16 and November 12, 2019, Proofpoint researchers observed the actor sending malicious email messages to organizations in Germany, Italy, and the United States, targeting no particular vertical but with recipients that were heavily weighted towards business and IT services, manufacturing, and healthcare.”

Government

Government Ransomware Manufacturing Phishing

Hackers target zero-day flaws in enterprise Draytek network devices

Security Affairs

MARCH 28, 2020

0-day Since 2019-12-04 08:22:29 (UTC), we have been witnessing ongoing 0 day attack targeting a network CPE vendor (not the big players, but there are about ~100,000 devices online according to public available data). ” reads the security bulletin. ” reads the security bulletin. firmware or later. .”

Manufacturing

Manufacturing Access IT Security

Robots at HIS Group are vulnerable to hack

Security Affairs

OCTOBER 23, 2019

On October 12, 2019, the researcher Lance R. Vick (@lrvick) October 12, 2019. On July 6, the company was informed by a guest about a security fla w affecting this model of robots. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. It has been a week, so I am dropping an 0day.

Manufacturing

Manufacturing Access Risk Security

Winnti APT group uses skip-2.0 malware to control Microsoft SQL Servers

Security Affairs

OCTOBER 21, 2019

malware was used by threat actors to establish a backdoor in MSSQL Server 11 and 12 servers, allowing them to access to any account on the server using a “magic password.” PortReus e was used by the Winnti cyberespionage group to target a high-profile Asian mobile software and hardware manufacturer. The skip-2.0

Passwords

Passwords Authentication Manufacturing Communications

Weekly podcast: Google+, Supermicro and Heathrow

IT Governance

OCTOBER 11, 2018

Hello and welcome to the IT Governance podcast for Friday, 12 October. This week we discuss the end of Google+, allegations of Chinese motherboard interference, and a £120,000 fine for Heathrow Airport. Here are this wee- actually, can we have a quick word about that theme tune? We therefore chose a theme tune without much thought. (In

Personal data

Personal data Manufacturing Data breaches Government

GUEST ESSAY: The story behind how DataTribe is helping to seed ‘Cybersecurity Valley’ in Maryland

The Last Watchdog

JUNE 4, 2019

Tech epicenters Maryland’s path toward a cybersecurity epicenter parallels Silicon Valley’s evolution decades ago when it became the world’s biggest and most respected information technology hub. million unfilled cybersecurity positions globally by 2021 – up from 1 million in 2014. According to the U.S. The current number of U.S.

Cybersecurity

Cybersecurity Computer and Electronics Data science Marketing

Weekly podcast: 2018 end-of-year roundup

IT Governance

DECEMBER 13, 2018

This week, in our last podcast of the year, we revisit some of the biggest information security stories from the past 12 months. As is now traditional, I’ve installed myself in the porter’s chair next to the fire in the library, ready to recap some of the year’s more newsworthy information security events.

Data breaches

Data breaches Personal data Access GDPR

2019 end-of-year review part 1: January to June

IT Governance

DECEMBER 27, 2019

A royal baby, a fire at Notre-Dame, the highest grossing film of all time and more than 12 billion breached data records: 2019 has been quite a year. IT Governance is closing out the year by rounding up 2019’s biggest information security stories. Part one covers January to June, and will be followed by part in the coming days.

Data breaches

Data breaches GDPR Passwords Personal data

The Hacker Mind: Shattering InfoSec's Glass Ceiling

ForAllSecure

MARCH 8, 2023

What if you are a woman in information security? I’m Robert Vamosi, and in the episode I’m talking about diversity, equality, and inclusion in information security with one of the industries' most successful examples. But what if you’re an immigrant or just a person of color. And the good news?

Cloud

Cloud Marketing IT Security

The Hacker Mind Podcast: Hacking Healthcare

ForAllSecure

JANUARY 15, 2021

Listen to EP 12: Hacking Healthcare. Microsoft, for example, stopped patching Windows XP for security vulnerabilities in 2014. I’m Robert Vamosi and this episode about best practices in information security, and how critical life services, in particular, remain at risk today -- in the middle of a global pandemic.

IT

IT Manufacturing Government Paper

The Hacker Mind Podcast: Hacking Healthcare

ForAllSecure

JANUARY 15, 2021

Listen to EP 12: Hacking Healthcare. Microsoft, for example, stopped patching Windows XP for security vulnerabilities in 2014. I’m Robert Vamosi and this episode about best practices in information security, and how critical life services, in particular, remain at risk today -- in the middle of a global pandemic.

IT

IT Manufacturing Government Paper

Mukashi, the new Mirai variant that targets Zyxel NAS

Security Affairs

MARCH 21, 2020

Security experts have discovered a new variant of the infamous Mirai malware, tracked as Mukashi, was employed in attacks against network-attached storage (NAS) devices manufactured by Zyxel. According to Palo Alto researchers, threat actors exploited the recently patched CVE-2020-9054 vulnerability in Zyxel NAS.

Authentication

Authentication IoT Manufacturing IT

Group with numerous faces: chronicle of UltraRank’s deceptive JS-sniffer campaigns

Security Affairs

AUGUST 27, 2020

Group-IB security researchers provide evidence linking three campaigns with the use of various JS-sniffer families. This very website was used to load the malicious script on the website of the largest manufacturer and distributor of cash handling products in North America, Block & Company. Cybercrime prodigy. First clue.

Marketing

Marketing Cybersecurity CMS Analytics

Information Management Today

Airbus suppliers were hit by four major attack in the last 12 months

Kraken fileless attack technique abuses Microsoft Windows Error Reporting (WER)

Webinars

Trending Sources

Experts found 125 new flaws in SOHO routers and NAS devices from multiple vendors

Webinars

Top cybersecurity Predictions for 2020

SweynTooth Bluetooth flaws affect devices from major system-on-a-chip (SoC) vendors

New TA2101 threat actor poses as government agencies to distribute malware

Hackers target zero-day flaws in enterprise Draytek network devices

Robots at HIS Group are vulnerable to hack

Winnti APT group uses skip-2.0 malware to control Microsoft SQL Servers

Weekly podcast: Google+, Supermicro and Heathrow

GUEST ESSAY: The story behind how DataTribe is helping to seed ‘Cybersecurity Valley’ in Maryland

Weekly podcast: 2018 end-of-year roundup

2019 end-of-year review part 1: January to June

The Hacker Mind: Shattering InfoSec's Glass Ceiling

The Hacker Mind Podcast: Hacking Healthcare

The Hacker Mind Podcast: Hacking Healthcare

Mukashi, the new Mirai variant that targets Zyxel NAS

Group with numerous faces: chronicle of UltraRank’s deceptive JS-sniffer campaigns

Stay Connected