Information Management Today

Google warned 12K+ users targeted by state-sponsored hackers

Security Affairs

DECEMBER 1, 2019

Google’s Threat Analysis Group (TAG) revealed that it has detected and blocked attacks carried out by nation-state actors on 12,000 of its users in the third quarter of this year. ” reads the report published by Google TAG.”We Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Phishing

Phishing Authentication Passwords Risk

Security Affairs newsletter Round 460 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

FEBRUARY 25, 2024

Iran Crisis Russia-Aligned TAG-70 Targets European Government and Military Mail Servers in New Espionage Campaign U.S.

Military

Military Security Ransomware Insurance

PixieFail: Nine flaws in UEFI open-source reference implementation could have severe impacts

Security Affairs

JANUARY 18, 2024

Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Google TAG) ” states CERT/CC. . ” states CERT/CC. CERT/CC also published Vulnerability Note VU#132380 with a comprehensive list of affected vendors, and guidance to mitigate the issues.

IT

IT Information Security Security

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

Google Threat Analysis Group took down ten influence operations in Q2 2020

Security Affairs

AUGUST 7, 2020

Google published its second Threat Analysis Group (TAG) report which reveals the company has taken down ten coordinated operations in Q2 2020. Google has published its second Threat Analysis Group (TAG) report , a bulletin that includes coordinated influence operation campaigns tracked in Q2 of 2020. response to COVID-19.

Government

Government IT Security Information Security

Google Updates Privacy Terms to Shift Away From Offering Some Services as a “Service Provider” Under the CCPA

Hunton Privacy

JUNE 8, 2023

On May 24, 2023 Google LLC (“Google”) announced its recently updated privacy terms providing that, for many of Google’s advertising services, it will no longer act as a service provider for the purposes of the California Privacy Rights Act of 2020 (“CPRA”).

Privacy

Privacy IT Security

Google warned users of 33,015 nation-state attacks since January

Security Affairs

OCTOBER 17, 2020

Shane Huntley, Director at Google’s Threat Analysis Group (TAG), revealed that her team has shared its findings with the campaigns and the Federal Bureau of Investigation. ” reads the report published by Google TAG. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Healthcare

Healthcare Phishing Authentication Government

A new DDoS technique abuses HTML5 Hyperlink Audit Ping in massive attacks

Security Affairs

APRIL 15, 2019

In this case, attackers used a common HTML5 attribute, the <a> tag ping, to trick these users to unwittingly participate in a major DDoS attack that flooded one web site with approximately 70 million requests in four hours.” This was the first case of a DDoS attack using the <a> tag ping attribute.

Security

Security IT

Google disrupts the Glupteba botnet

Security Affairs

DECEMBER 7, 2021

. “In the summer of 2020, Google determined that Glupteba malware was being disseminated on numerous third-party software download sites, online movie streaming sites, and video downloader sites, often advertised as “free downloads.” TAG also partnered with CloudFlare and others take down servers.

Blockchain

Blockchain Mining Cloud Access

Cryptojacking Coinhive Miners for the first time found on the Microsoft Store

Security Affairs

FEBRUARY 15, 2019

The malicious Monero (XMR) Coinhive cryptomining scripts were delivered leveraging the Google’s legitimate Google Tag Manager (GTM) library. The GTM tag management system allows developers to inject JavaScript and HTML content within their apps for tracking and analytics purposes. Make frequent backups of important data.

Mining

Mining Libraries Analytics Security

Tor Project’s Bug Smash Fund raises $86K in August

Security Affairs

SEPTEMBER 15, 2019

The funding project aims to be transparent, any donors can track how that money is being used by the foundation, the Tor Project will tag any bug tickets that utilize the money of the fund with the “BugSmashFund” tag. ” ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Here’s how.”

Privacy

Privacy Security IT Information Security

Tor Project released Tor Browser 8.5.1 for Windows, Mac, Linux, and Android

Security Affairs

JUNE 6, 2019

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Bwloe the full changelog since Tor Browser 8.5: All platforms Update Torbutton to 2.1.10 Pierluigi Paganini. SecurityAffairs – Tor Browser 8.5.1, Tor Project).

Security

Security IT Information Security Privacy

A new sophisticated JavaScript Skimmer dubbed Pipka used in the wild

Security Affairs

NOVEMBER 15, 2019

The skimmer uses an image GET request, but unlike other skimmers instead of loading and then immediately removing the image tag, Pipka sets the onload attribute of the image tag. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Encryption

Encryption IT Security Information Security

Crooks used rare Steganography technique to hack fully patched websites in Latin America

Security Affairs

JULY 28, 2019

The Exchangeable image file format is a standard that specifies the formats for images, sound, and ancillary tags used by digital cameras (including smartphones), scanners and other systems handling image and sound files recorded by digital cameras. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

GDPR

GDPR Security IT Information Security

Google mitigated a 2.54 Tbps DDoS attack in 2017, the largest DDoS ever seen

Security Affairs

OCTOBER 16, 2020

A report published by the Google Threat Threat Analysis Group (TAG) speculates that the attack was carried out by a state-sponsored threat actor. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Cloud

Cloud Security IT Information Security

Popular Webkinz World online children’s game hacked, 23M credentials leaked

Security Affairs

APRIL 19, 2020

Each Webkinz toy has an attached tag with a unique “Secret Code” printed on it that allows you to play with your pet in the “ Webkinz World” website. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Passwords

Passwords Data breaches Encryption IT

Poulight Stealer, a new Comprehensive Stealer from Russia

Security Affairs

MAY 7, 2020

The first information tag “ prog.params ” is immediately retrieved in the instruction “ HandlerParams.Start() ” seen in Figure 4. The malware tries to find the id of the mutex, declared inside the relative tag seen in code snippet 2, inside the “%TEMP%” folder. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Data structuring

Data structuring IT Marketing Security

WordPress Plugin Facebook Widget affected by authenticated XSS

Security Affairs

JULY 29, 2019

For lower level users, WordPress does not sanitize them for usage as HTML tag attributes. The code in the last line shows output as HTML tag attributes that are not being escaped. ” reads the analysis” ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Authentication

Authentication Security IT Information Security

Microsoft released an out-of-band patch to fix Zero-day flaw exploited in the wild

Security Affairs

SEPTEMBER 24, 2019

The flaw was reported by Clément Lecigne of Google’s Threat Analysis Group (TAG). Lecigne and Google’s TAG did not disclose the technical details of the exploit. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Access

Access Security IT Information Security

Hackers claim to have compromised 50,000 home cameras and posted footage online

Security Affairs

OCTOBER 19, 2020

“Clips from the hacked footage have been uploaded on pornographic sites recently, with several explicitly tagged as being from Singapore.” Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

IoT

IoT Paper Manufacturing Access

Crooks hide e-skimmer code in favicon EXIF Metadata

Security Affairs

JUNE 26, 2020

The initial JavaScript loads the skimming code included in the EXIF metadata of the favicon.ico using an <img> tag, and specifically via the onerror event. ” ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Metadata

Metadata Archiving Security IT

Expert publicly disclosed a zero-day vulnerability in KDE

Security Affairs

AUGUST 6, 2019

directory files, we can force the file to evaluate some of the entries within the [Desktop Entry] tag.” “Some of the entries in this tag include “Icon”, “Name”, etc. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. desktop and. ” the expert added.

Libraries

Libraries Security IT Information Security

[Full-Disclosure] HideezKey 2 FAIL: How a good idea turns into a SPF (Security Product Failure)

Security Affairs

MAY 7, 2021

RFID Feature: One clue still left (from a hardware security POV) was about the RFID tag. From the opening of the case, it was visibly obvious that the RFID feature advertised by Hideez was not related to the NRF52, but was rather just a standalone re-writable tag. At this point, I will let the good-old Arny express my feelings.

Security

Security Passwords Encryption Access

CSRF flaw in WordPress potentially allowed the hack of websites

Security Affairs

MARCH 14, 2019

” The above issue can become a security issue since administrators of a WordPress blog are allowed to use arbitrary HTML tags in comments, even <script> tags. Below the timeline shared by the expert: Date What 2018/10/24 Reported that it is possible to inject more HTML tags than should be allowed via CSRF to WordPress.

Security

Security IT

Magento fixed security flaws that allow complete site takeover

Security Affairs

JULY 4, 2019

The XSS occurs when the sanitized links are processed via vsprintf(), an additional double quote is injected into the <i> tag allowing for an attribute injection. “As can be seen in the above table, the tag is replaced with a %1s and the user input string is then sanitized. ” continues the post. and 2.1.17. and 2.1.18.

Security

Security Authentication IT Information Security

New Android malicious library Goldoson found in 60 apps +100M downloads

Security Affairs

APRIL 15, 2023

The third-party library can perform ad fraud by clicking advertisements in the background without the user’s consent. “The tags such as ‘ads_enable’ or ‘collect_enable’ indicates each functionality to work or not while other parameters define conditions and availability.”

Libraries

Libraries Data collection Education Security

Social Media Platform Fined 100,000 USD by Washington State AG for COPPA Violations

Hunton Privacy

JULY 7, 2020

users, allowed children under the age of 13 (“U13”) to create accounts, collected U13 users’ personal information, and allowed third-party advertisers to collect data from U13 users, all without obtaining COPPA-compliant verifiable parental consent.

Compliance

Compliance Data collection Privacy IT

Expert discovered a Critical Remote Code Execution flaw in Apache Struts (CVE-2018-11776)

Security Affairs

AUGUST 22, 2018

Same possibility when using url tag which doesn’t have value and action se ” reads the security advisory published by Apache. Same possibility when using url tag which doesn’t have value and action set.” Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Security

Security IT

$10,000,000 civil penalty for disclosing personal data without consent

Data Protection Report

APRIL 30, 2024

In December 2020, the company revised its privacy policy (increasing its size to 15 pages) and added a statement that it used Facebook Pixel, a web analytics and advertising service by Facebook, Inc.

Personal data

Personal data Privacy Information governance Compliance

100k+ WordPress sites exposed to hack due to a bug in Real-Time Find and Replace plugin

Security Affairs

APRIL 28, 2020

“An attacker could use this vulnerability to replace a HTML tag like with malicious Javascript. This would cause the malicious code to execute on nearly every page of the affected site, as nearly all pages start with a HTML tag for the page header, creating a significant impact if successfully exploited.”

GDPR

GDPR Authentication IT Access

Google report on iPhone hack created ‘False Impression,’ states Apple

Security Affairs

SEPTEMBER 7, 2019

Earlier this year, Google Threat Analysis Group (TAG) experts uncovered an iPhone hacking campaign, initially, they spotted a limited number of hacked websites used in watering hole attacks against iPhone users. Earlier this year Google’s Threat Analysis Group (TAG) discovered a small collection of hacked websites. Pierluigi Paganini.

Security

Security IT Information Security

EUROPE: e-Privacy Regulation – changes regarding electronic communications and digital marketing

DLA Piper Privacy Matters

AUGUST 1, 2019

While the previous version made it clear that advertising displayed online “ to the general public ” was excluded from the scope of these rules (suggesting targeted advertising was covered), new changes suggest that even targeted advertising might not constitute direct marketing communications under the Proposal (e.g.

Communications

Communications Marketing Privacy Metadata

Apple comes out swinging in the duel of the data titans | John Naughton

The Guardian Data Protection

MAY 1, 2021

Apple calls this “app-tracking transparency” (ATT) and it concerns a code known as “the identity for advertisers” or IDFA. Ponder that for a moment and then reflect on the irony of a company that since 2013 has been selling such tagged devices, while at the same time bragging about its commitment to users’ privacy.

Privacy

Privacy IT

Dark Basin, a hack-for-hire group that remained under the radar for 7 years

Security Affairs

JUNE 11, 2020

” Recently Google TAG has published its first TAG quarterly report , the Q1 2020 TAG Bulletin , that provides insights on the campaigns monitored in the first quarter of 2020. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini. SecurityAffairs – Dark basin, hacking).

Phishing

Phishing Communications Government IT

State-sponsored hackers are using COVID-19 lures, Google warns

Security Affairs

APRIL 23, 2020

Google’s Threat Analysis Group (TAG) shared its latest findings related to state-backed attacks and revealed that it has identified more than a dozen state-sponsored groups using COVID-19 lures. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. ” concludes Google. Pierluigi Paganini.

Phishing

Phishing Government Communications IT

Google addressed an XSS flaw in Gmail

Security Affairs

NOVEMBER 18, 2019

Even if AMP4Email implements a strong validator that only allows a list of tags and attributes in dynamic mails, it doesn’t implement a validation system to prevent cross-site scripting (XSS) attacks. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Security

Security IT Access Information Security

Visa warns of new sophisticated credit card skimmer dubbed Baka

Security Affairs

SEPTEMBER 6, 2020

The Baka loader works by dynamically adding a script tag to the current page that loads a remote JavaScript file. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini. SecurityAffairs – hacking, Baka e-skimmer).

e-Delivery

e-Delivery Encryption Passwords Authentication

Mariah Carey ‘s Twitter Hacked on New Year’s Eve

Security Affairs

JANUARY 1, 2020

” The tweets began around 3 pm PST and continued throughout the day, several messages used the N-word and tagged other Twitter accounts. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Source reclaimthenet.org.

Security

Security IT

Tech Support Scams improved with adoption of Call Optimization Service

Security Affairs

AUGUST 5, 2018

Crooks used a script in the call optimization services to check a specific tag in the scam URL, then the script retrieves the scammer’s phone number from the service’s servers. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. .”

Analytics

Analytics Security IT

Experts warn of massive internet scans for SAP systems affected by RECON Vulnerability

Security Affairs

JULY 18, 2020

Query our API for "tags=CVE-2020-6287" for a full list of source IP addresses and relevant indicators. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Mass scanning activity started around 2020-07-15T17:48:37Z.

Archiving

Archiving Authentication Cybersecurity Security

Nation-state actors are exploiting CVE-2020-0688 Microsoft Exchange server flaw

Security Affairs

MARCH 9, 2020

Query our API for "tags=CVE-2020-0688" to locate hosts conducting scans. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. pic.twitter.com/Kp3zOi5AOA — Kevin Beaumont (@GossiTheDog) February 25, 2020.

Authentication

Authentication Communications Cybersecurity Security

Who and What is Behind the Malware Proxy Service SocksEscort?

Krebs on Security

JULY 25, 2023

Researchers this month uncovered a two-year-old Linux-based remote access trojan dubbed AVrecon that enslaves Internet routers into botnet that bilks online advertisers and performs password-spraying attacks. SocksEscort[.]com com , is what’s known as a “SOCKS Proxy” service.

Analytics

Analytics Passwords Systems administration Retail

Google WordPress Site Kit plugin grants attacker Search Console Access

Security Affairs

MAY 14, 2020

Search Console, Analytics, Tag Manager, PageSpeed Insights, Optimize, and AdSense), giving users authoritative and up-to-date advice on how to succeed on the web, it has over 300,000 active installations. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. ” reads the analysis published by Wordfence.

Access

Access Authentication Analytics IT

Android Zero-Day exploits are the most expensive in the new Zerodium price list

Security Affairs

SEPTEMBER 4, 2019

RCE + LPE exploits without persistence for iMessage and WhatsApp could be rewarded with a $1,500,000 payout (+50% previous price tag). Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. ” states Zerodium. Pierluigi Paganini.

Marketing

Marketing Security IT

Spearphishing attacks hit the oil and gas industry sector

Security Affairs

APRIL 21, 2020

. “However, these campaigns seem to deliver the Agent Tesla spyware Trojan instead, and beyond just the oil & gas sector, they also target other energy verticals that have been tagged as critical during this Coronavirus pandemic.” ” ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Manufacturing

Manufacturing Phishing Security IT

Google warned 12K+ users targeted by state-sponsored hackers

Security Affairs newsletter Round 460 by Pierluigi Paganini – INTERNATIONAL EDITION

Webinars

Trending Sources

PixieFail: Nine flaws in UEFI open-source reference implementation could have severe impacts

Webinars

Google Threat Analysis Group took down ten influence operations in Q2 2020

Google Updates Privacy Terms to Shift Away From Offering Some Services as a “Service Provider” Under the CCPA

Google warned users of 33,015 nation-state attacks since January

A new DDoS technique abuses HTML5 Hyperlink Audit Ping in massive attacks

Google disrupts the Glupteba botnet

Cryptojacking Coinhive Miners for the first time found on the Microsoft Store

Tor Project’s Bug Smash Fund raises $86K in August

Tor Project released Tor Browser 8.5.1 for Windows, Mac, Linux, and Android

A new sophisticated JavaScript Skimmer dubbed Pipka used in the wild

Crooks used rare Steganography technique to hack fully patched websites in Latin America

Google mitigated a 2.54 Tbps DDoS attack in 2017, the largest DDoS ever seen

Popular Webkinz World online children’s game hacked, 23M credentials leaked

Poulight Stealer, a new Comprehensive Stealer from Russia

WordPress Plugin Facebook Widget affected by authenticated XSS

Microsoft released an out-of-band patch to fix Zero-day flaw exploited in the wild

Hackers claim to have compromised 50,000 home cameras and posted footage online

Crooks hide e-skimmer code in favicon EXIF Metadata

Expert publicly disclosed a zero-day vulnerability in KDE

[Full-Disclosure] HideezKey 2 FAIL: How a good idea turns into a SPF (Security Product Failure)

CSRF flaw in WordPress potentially allowed the hack of websites

Magento fixed security flaws that allow complete site takeover

New Android malicious library Goldoson found in 60 apps +100M downloads

Social Media Platform Fined 100,000 USD by Washington State AG for COPPA Violations

Expert discovered a Critical Remote Code Execution flaw in Apache Struts (CVE-2018-11776)

$10,000,000 civil penalty for disclosing personal data without consent

100k+ WordPress sites exposed to hack due to a bug in Real-Time Find and Replace plugin

Google report on iPhone hack created ‘False Impression,’ states Apple

EUROPE: e-Privacy Regulation – changes regarding electronic communications and digital marketing

Apple comes out swinging in the duel of the data titans | John Naughton

Dark Basin, a hack-for-hire group that remained under the radar for 7 years

State-sponsored hackers are using COVID-19 lures, Google warns

Google addressed an XSS flaw in Gmail

Visa warns of new sophisticated credit card skimmer dubbed Baka

Mariah Carey ‘s Twitter Hacked on New Year’s Eve

Tech Support Scams improved with adoption of Call Optimization Service

Experts warn of massive internet scans for SAP systems affected by RECON Vulnerability

Nation-state actors are exploiting CVE-2020-0688 Microsoft Exchange server flaw

Who and What is Behind the Malware Proxy Service SocksEscort?

Google WordPress Site Kit plugin grants attacker Search Console Access

Android Zero-Day exploits are the most expensive in the new Zerodium price list

Spearphishing attacks hit the oil and gas industry sector

Stay Connected