2021, Information Security, IT and Manufacturing

New RedLine malware version distributed as fake Omicron stat counter

Security Affairs

JANUARY 12, 2022

The new RedLine variant searches for the following strings to locate relevant folders for data exfiltration: wallet.dat (information related to cryptocurrency) wallet (information related to cryptocurrency) Login Data Web Data Cookies Opera GX Stable Opera GX. 2021-11-26 04:34:54 2021-11-26 10:05:15 149.154.167.91

Manufacturing

Manufacturing File names Archiving Encryption

Witchetty APT used steganography in attacks against Middle East entities

Security Affairs

OCTOBER 1, 2022

The APT group has been continuously improving its toolset by employing new malware in attacks aimed at governments, diplomatic missions, charities, and industrial/manufacturing organizations in the Middle East and Africa. ” reads the analysis published by Broadcom’s Symantec Threat Hunter researchers.

Manufacturing

Manufacturing Government Cybersecurity IT

Two critical flaws affect CODESYS ICS Automation Software

Security Affairs

JUNE 27, 2022

CODESYS addressed 11 security flaws in the ICS Automation Software that could lead to information disclosure and trigger a denial-of-service (DoS) condition. CODESYS has released security patches to fix eleven 11 vulnerabilities in its ICS Automation Software. The timeline of the issues is: On September 15, 2021 ?Started

Manufacturing

Manufacturing Risk Security Authentication

LPE zero-day flaw in Razer Synapse allows attackers to take over Windows PCs

Security Affairs

AUGUST 23, 2021

Razer is a popular manufacturer of computer accessories, including gaming mouses and keyboards. Razer is a very popular computer peripherals manufacturer that designs, develops, and sells consumer electronics, financial services, and gaming hardware, including gaming mouses and keyboards. Pierluigi Paganini.

Computer and Electronics

Computer and Electronics Manufacturing Financial Services Access

Avaddon ransomware gang shuts down their operations and releases decryption keys

Security Affairs

JUNE 11, 2021

— Fabian Wosar (@fwosar) June 11, 2021. The security company already develop a free decryptor for the victims of the Avaddon ransomware. link] — Emsisoft (@emsisoft) June 11, 2021. The group has also shut down its servers and deleted profiles on hacking forums, they also shut down their leak site.

Ransomware

Ransomware Passwords Manufacturing Archiving

CISA recommends vendors to fix BrakTooth issues after the release of PoC tool

Security Affairs

NOVEMBER 4, 2021

US CISA is urging vendors to address BrakTooth flaws after security researchers have released public exploit code and a proof of concept tool to test Bluetooth devices against potential Bluetooth exploits. BrakTooth—originally disclosed in August 2021—is a family of security vulnerabilities in commercial Bluetooth stacks.

Manufacturing

Manufacturing Security IT Information Security

Researchers warn of a surge in cyber attacks against Microsoft Exchange

Security Affairs

MARCH 12, 2021

On March 2nd, Microsoft released emergency out-of-band security updates that address four zero-day issues (CVE-2021-26855, CVE-2021-26857, CVE-2021-26858, and CVE-2021-27065) in all supported MS Exchange versions that are actively exploited in the wild. 2/5 — ESET research (@ESETresearch) March 2, 2021.

Authentication

Authentication Military Ransomware Manufacturing

ProxyLogon Microsoft Exchange exploit is completely out of the bag by now

Security Affairs

MARCH 15, 2021

Most targeted sectors have been Government/Military (17% of all exploit attempts), followed by Manufacturing (14%), and then Banking (11%). Security experts pointed out that the flaws are actively exploited to deliver web shells, and more recently ransomware such as the DearCry ransomware. Google search.

Military

Military Ransomware Manufacturing Security

Security Affairs newsletter Round 404 by Pierluigi Paganini

Security Affairs

JANUARY 29, 2023

Copycat Criminals mimicking Lockbit gang in northern Europe Sandworm APT targets Ukraine with new SwiftSlicer wiper ISC fixed high-severity flaws in DNS software suite BIND Patch management is crucial to protect Exchange servers, Microsoft warns Hacker accused of having stolen personal data of all Austrians and more CVE-2023-23560 flaw exposes 100 (..)

Security

Security Data breaches Military Ransomware

B. Braun Infusomat pumps could be hacked to alter medication doses

Security Affairs

AUGUST 27, 2021

The five previously unreported vulnerabilities in the medical system are: CVE-2021-33886 – Use of Externally-Controlled Format String (CVSS 7.7) CVE-2021-33885 – Insufficient Verification of Data Authenticity (CVSS 9.7) CVE-2021-33882 – Missing Authentication for Critical Function (CVSS 8.2) ” concludes McAfee.

Authentication

Authentication Cybersecurity Manufacturing Access

U.S. Commerce Department Proposes Expansion of Information and Communications Technology and Services Review Process

Data Matters

DECEMBER 9, 2021

On November 26, 2021, the U.S. The Proposed Rule would bring “connected software applications” into the scope of Commerce’s authority to review certain transactions involving information and communications technology and services (ICTS) in the U.S. supply chain and approve or prohibit such transactions or require mitigating measures.

Communications

Communications Manufacturing Data collection Risk

An RCE in Annke video surveillance product allows hacking the device

Security Affairs

AUGUST 27, 2021

Researchers at industrial and IoT cybersecurity firm Nozomi Networks have discovered a critical flaw affecting a video surveillance product made by Annke, a popular manufacturer of surveillance systems and solutions. ” reads the security advisory published by Nozomi Networks Labs. The mainboard of the Annke N48PBB.

Cybersecurity

Cybersecurity IoT Access Manufacturing

New BrakTooth flaws potentially impact millions of Bluetooth-enabled devices

Security Affairs

SEPTEMBER 2, 2021

As of today, the researchers discovered 16 security vulnerabilities, with 20 common vulnerability exposures (CVEs) already assigned and four vulnerabilities are pending CVE assignment from Intel and Qualcomm. ” reads the post published by the researchers. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Communications

Communications IoT Manufacturing Authentication

China: Navigating China episode 18: Increased scrutiny over connected car and automobile industry data from Chinese regulators, including push towards data localisation

DLA Piper Privacy Matters

JUNE 4, 2021

The Draft Provisions apply across the industry, not just to vehicle designers and manufacturers, but also parts and software providers, dealers, maintenance and repair agencies, online car hailing organisations and insurance companies. deletion of sensitive personal information within two weeks when requested by the driver, etc.

Big data

Big data Compliance Personal data Insurance

China-linked APT40 used ScanBox Framework in a long-running espionage campaign

Security Affairs

AUGUST 31, 2022

Over the years, the group hit defence contractors, manufacturers, universities, government agencies, legal firms involved in diplomatic disputes, and foreign companies involved with Australasian policy or South China Sea operations. . In June 2021, the U.S. p=23-11”, appears to be a unique identifier for each recipient.”

Energy and Utilities

Energy and Utilities Manufacturing Phishing Government

DJI drone tracking data exposed in the US

Security Affairs

OCTOBER 14, 2022

Over 80,000 drone IDs were exposed in the leak of a database containing information from airspace monitoring devices manufactured by DJI. Enhanced security institutions use devices to monitor drone movement, posing a privacy risk to its owner. Original post at CyberNews: [link]. Troubling data.

Military

Military Manufacturing Marketing Risk

Group-IB Hi-Tech Crime Trends 2020/2021 report

Security Affairs

NOVEMBER 25, 2020

Group-IB , a global threat hunting and intelligence company, has presented its annual Hi-Tech Crime Trends 2020/2021 report. Forecasts and recommendations set out in Hi-Tech Crime Trends 2020-2021 seek to prevent financial damage and manufacturing downtimes. Group-IB: The ransomware plague cost the world over $1 billion.

Ransomware

Ransomware Phishing Sales Manufacturing

Information Management Today

New RedLine malware version distributed as fake Omicron stat counter

Witchetty APT used steganography in attacks against Middle East entities

Trending Sources

Two critical flaws affect CODESYS ICS Automation Software

LPE zero-day flaw in Razer Synapse allows attackers to take over Windows PCs

Avaddon ransomware gang shuts down their operations and releases decryption keys

CISA recommends vendors to fix BrakTooth issues after the release of PoC tool

Researchers warn of a surge in cyber attacks against Microsoft Exchange

ProxyLogon Microsoft Exchange exploit is completely out of the bag by now

Security Affairs newsletter Round 404 by Pierluigi Paganini

B. Braun Infusomat pumps could be hacked to alter medication doses

U.S. Commerce Department Proposes Expansion of Information and Communications Technology and Services Review Process

An RCE in Annke video surveillance product allows hacking the device

New BrakTooth flaws potentially impact millions of Bluetooth-enabled devices

China: Navigating China episode 18: Increased scrutiny over connected car and automobile industry data from Chinese regulators, including push towards data localisation

China-linked APT40 used ScanBox Framework in a long-running espionage campaign

DJI drone tracking data exposed in the US

Group-IB Hi-Tech Crime Trends 2020/2021 report

Stay Connected