Data Breach Today

APRIL 22, 2021

Flaws Described by Moxie Marlinspike Raise Questions About Extracted Data's Trustworthiness Law enforcement agencies use forensics tools from Israeli company Cellebrite to gain access to locked mobile devices and extract data.

Encryption 306

Encryption Access 306

Data Breach Today

JULY 23, 2021

Software Vendor Said Approximately 60 MSPs and 1,500 Clients Affected by Attack Remote management software vendor Kaseya has obtained a decryption tool for all organizations affected by the massive ransomware attack launched via its software. The tool should especially help the many small businesses still struggling to recover.

Ransomware 299

Ransomware IT 299

Data Breach Today

APRIL 1, 2022

Tools and methodologies that have been helpful for global public health research might also provide better understanding of the root causes of cybercrime and the motivation of cybercriminals, especially as such crime has surged during the COVID-19 pandemic, says Stanley Mierzwa of Kean University.

263

263

Data Breach Today

JULY 1, 2021

Tool Designed to Gauge Whether Organizations Have Adequate Defense, Recovery Measures The U.S. Cybersecurity and Infrastructure Security Agency has released a Ransomware Readiness Assessment audit tool to help organizations size up their ability to defend against and recover from attacks.

Ransomware 290

Ransomware Cybersecurity Security 290

Data Breach Today

JULY 16, 2022

Europe and Asia The cybercriminals behind BlackCat ransomware have upgraded their arsenal by adding Brute Ratel, a pentesting tool with remote access features that are used by attackers. Gang Targets Large Corporations Across the U.S., The group targets large corporations in different industry segments across the U.S., Europe and Asia.

Ransomware 253

Ransomware Access 253

Data Breach Today

OCTOBER 18, 2022

A study by data privacy firm Lokker found thousands of healthcare providers deploying Facebook Pixel and other similar tracking tools. Those trackers reveal "medical and other data that consumers don't know is being tracked and haven't authorized," says Ian Cohen, Lokker's chief executive officer.

Privacy 182

Privacy Data Privacy 182

Dark Reading

MAY 16, 2023

Threat actors seen using Go-language implementation of the red-teaming tool on Intel and Apple silicon-based macOS systems.

143

143

Data Breach Today

FEBRUARY 23, 2021

Researchers: 'Jian' Hacking Tool Targeted Zero-Day Flaw in Windows A Chinese hacking group reportedly "cloned" and deployed a zero-day exploit developed by the NSA's Equation Group before Microsoft patched the Windows flaw being exploited, according to Check Point Research. The analysis shows how some U.S.

309

309

Data Breach Today

FEBRUARY 4, 2021

Report: Botnet Now Capable of Exfiltrating Additional Data From Networks The operators behind the Trickbot malware are deploying a new reconnaissance tool dubbed "Masrv" to exfiltrate additional data from targeted networks, according to a Kryptos Logic report.

284

284

Data Breach Today

FEBRUARY 12, 2021

Flaws, If Exploited, Could Enable Remote Control, Data Exfiltration Siemens has mitigated 21 vulnerabilities in two of its virtualization software tools that, if exploited, could enable attackers to gain remote control, exfiltrate data or cause systems to crash.

IT 305

IT 305

Data Breach Today

DECEMBER 19, 2022

Digital Map Users Lured Into Installing Malware that Looked for Office Files A phishing campaign against users of a Ukrainian battlefield awareness tool masqueraded as an email from a Ministry of Defense employee telling them to update their digital certificates, says the Ukrainian Computer Emergency Response Team.

Phishing 130

Phishing 130

Data Breach Today

AUGUST 5, 2020

Sophos Says Malware Designed to Avoid Security Measures WastedLocker, a ransomware strain that reportedly shut down Garmin's operations for several days in July, is designed to avoid security tools within infected devices, according to a technical analysis from Sophos.

Ransomware 299

Ransomware Security 299

Data Breach Today

NOVEMBER 2, 2020

Cybereason Finds Kimsuky Group Using Fresh Spying Tools, Infrastructure Researchers with Cybereason have uncovered a fresh set of malicious tools tied to a North Korean-linked hacking group called Kimsuky, according to a recent analysis.

321

321

Data Breach Today

SEPTEMBER 10, 2020

Reports: TeamTNT Using Weave Scope Tool to Target Cloud Platforms TeamTNT, a recently uncovered hacking group, is weaponizing Weave Scope, a legitimate cloud monitoring tool, to help install cryptominers in cloud environments, according to reports from Intezer and Microsoft.

Cloud 299

Cloud 299

eSecurity Planet

MAY 19, 2023

Application security tools and software solutions are designed to identify and mitigate vulnerabilities and threats in software applications. These tools play a vital role in ensuring the security, integrity, and confidentiality of sensitive information, such as personal data and financial records.

Security 85

Security Cloud Encryption Compliance 85

Data Breach Today

MARCH 16, 2021

One-Click Mitigation Tool' Provides Quick Fix for Proxy Logo Exchange Flaw Microsoft has released an interim mitigation tool designed to help smaller organizations take quick action to prevent attacks that exploit the unpatched Proxy Logon flaw in on-premises Microsoft Exchange servers.

279

279

Data Breach Today

JANUARY 20, 2021

FireEye Also Describes Hackers' Tools and Techniques Security firm FireEye has released a free auditing and remediation tool on GitHub that it says can help organizations determine if the hacking group that targeted SolarWinds used similar techniques within their network to gain access to Microsoft Office 365 accounts.

Security 268

Security Access IT 268

Dark Reading

MAY 10, 2023

"White Phoenix" automated tool for recovering data on partially encrypted files hit with ransomware is available on GitHub.

Encryption 133

Encryption Ransomware 133

Data Breach Today

SEPTEMBER 17, 2021

s single sign-on and password management tool to patch for a vulnerability that nation-state groups may look to exploit. FBI, CISA, Coast Guard Release Joint Warning and Urge Customers to Patch CISA, the FBI and the U.S. Coast Guard Cyber Command warn users of Zoho Corp.'s

Passwords 316

Passwords 316

Schneier on Security

MARCH 28, 2023

Both Google’s Pixel’s Markup Tool and the Windows Snipping Tool have vulnerabilities that allow people to partially recover content that was edited out of images.

Security 93

Security Privacy Cybersecurity 93

Security Affairs

APRIL 24, 2023

Ransomware operators use the AuKill tool to disable EDR software through Bring Your Own Vulnerable Driver (BYOVD) attack. Sophos researchers reported that threat actors are using a previously undocumented defense evasion tool, dubbed AuKill, to disable endpoint detection and response (EDR) software.

Ransomware 92

Ransomware Security Cybersecurity Education 92

Dark Reading

MARCH 7, 2023

Flaw in Toyota's C360 customer relationship management tool exposed personal data of unknown number of customers in Mexico, a disclosure says.

Personal data 136

Personal data 136

Data Breach Today

NOVEMBER 3, 2020

Kimsuky Group Employs Fresh Spying Tools, Infrastructure, Cybereason Reports Researchers with Cybereason have uncovered a fresh set of malicious tools tied to a North Korean-linked hacking group called Kimsuky, according to a recent analysis.

286

286

Dark Reading

MAY 3, 2023

The debate over whether ChatGPT and other generative AI tools will benefit defenders or further embolden attackers may be ongoing, but companies are going forward with new tools.

Security 102

Security 102

Data Breach Today

JUNE 13, 2020

Suspected Russia-Linked Hackers Have Previously Focused on Ukraine The Gamaredon hacking group is now using a new set of malicious tools to compromise Microsoft Outlook as a way of sending spear-phishing emails to victims' contact lists, according to security firm ESET.

Phishing 321

Phishing Security 321

Data Breach Today

APRIL 12, 2023

To What Extent Will Security Tools Benefit From Linking Arms With OpenAI's ChatGPT?

Security 147

Security Marketing IT 147

Krebs on Security

APRIL 2, 2020

And according to data gathered by a new automated Zoom meeting discovery tool dubbed “ zWarDial ,” a crazy number of meetings at major corporations are not being protected by a password. zWarDial, an automated tool for finding non-password protected Zoom meetings.

Passwords 362

Passwords Security Privacy Access 362

The Last Watchdog

FEBRUARY 7, 2023

Related: Deploying human sensors Additionally, with tools like ChatGPT, almost anyone can create new malware and become a threat actor. Additionally, IT teams are being overburdened by managing too many complex tools. We also predict hackers are already one step ahead and know these tools are going to become commonplace.

Cybersecurity 187

Cybersecurity Security IT Privacy 187

Data Breach Today

APRIL 29, 2021

Complain Alleges 'Exposure Notification System' Allows Third-Party Access to Personal Info A lawsuit alleges that a security flaw in a Google COVID-19 contact tracing tool is exposing personal and medical information of millions of users to third parties through device system logs.

Security 278

Security Access IT 278

Schneier on Security

NOVEMBER 1, 2022

It’s Iran’s turn to have its digital surveillance tools leaked : According to these internal documents, SIAM is a computer system that works behind the scenes of Iranian cellular networks, providing its operators a broad menu of remote commands to alter, disrupt, and monitor how customers use their phones.

Metadata 136

Metadata Encryption Government Access 136