DanaBot campaigns targeted at European countries also drop a ransomware executable onto target systems. The trojan also comes with new plugins, configuration files, and other updates. Banking trojan DanaBot, which is known to target organizations across Europe, North America, and Australia, has been found being distributed with a ransomware module. Security researchers from CheckPoint came across this new variant in ...
Read More »Blog
Hackers Abused MSPs and Their Remote Management Tools to Deploy Ransomware on Customers’ Networks
The remote management tools which were targeted include Webroot SecureAnywhere and Kaseya VSA. The tools have been abused to execute a Powershell script that downloads and installs the Sodinokibi ransomware. Attackers have hacked three Managed Service Providers (MSPs) and abused their remote management tools to deploy Sodinokibi ransomware on their customers’ systems. The incident came to light after some of ...
Read More »New Bird Miner Mac cryptominer leverages Ableton Live 10 cracked installer for propagation
The Ableton Live 10 cracked installer can be downloaded from a pirate website called VST Crack. Ableton Live is a high-end music production software and is used as an instrument for live performance by DJs. A new Mac cryptocurrency miner detected as Bird Miner has been found leveraging craked installer for Ableton Live 10 software for propagation. Ableton Live is ...
Read More »Lightbox adware redirects mobile users to random sites
The redirected sites include pages related to viral apps or just random tech articles. If the visitor chooses to install any of these apps, they are taken to the respective official store’s webpage. An external script has been found redirecting visitors to several random sites. This script is frequently used by various webmasters to provide easy Lightbox functionalities on their ...
Read More »SACK Panic and three other vulnerabilities discovered in Linux and FreeBSD kernels
All these vulnerabilities are related to the minimum segment size (MSS) and TCP selective acknowledgment (SACK) capabilities. ‘SACK Panic’ is the most severe vulnerability of all the flaws. Four TCP networking vulnerabilities in FreeBSD and Linux kernels have been discovered by security researchers recently. All these vulnerabilities are related to the minimum segment size (MSS) and TCP selective acknowledgment ...
Read More »Mermaids transgender charity data breach exposed confidential emails
Mermaids UK has apologized for an “inadvertent” data breach which exposed private messages between the charity and the parents of gender variant and transgender children. As first reported by the Sunday Times last week, over 1,000 pages of confidential emails were leaked online, including “intimate details of the vulnerable youngsters it [the charity] seeks to help.” The letters, sent between 2016 ...
Read More »Reported losses from NBN scams increase by nearly 300% in 2019: ACCC
Australian consumers reported over AU$110,000 in monthly losses from NBN scams in the January-May 2019 period, according to the Australian Competition and Consumer Commission (ACCC). Compared to the average monthly losses of AU$38,500 in 2018, this is a near 300% increase. “People aged over 65 are particularly vulnerable, making the most reports and losing more than AU$330,000 this year. That’s ...
Read More »Update: Over 20 million affected in massive AMCA data breach
The data was compromised after AMCA’s payment system was breached on August 1, 2018, and remained vulnerable till March 30, 2019. AMCA has started notifying consumers whose credit card number, social security number or lab test order information may have been accessed. Maryland Attorney General Brian E. Frosh is alerting Marylanders that their medical and other private information may have ...
Read More »Distributed Denial of Service attack on Telegram causes service outages
The attack caused services outages primarily in South and North America. However, users in the United Kingdom, the Netherlands, Germany, Ukraine, Russia, Australia, and China also faced connection issues and network disruptions. A Distributed Denial of Service (DDoS) attack on Telegram messenger caused service outages and connection problems for users at certain parts of the world. Which countries were impacted? ...
Read More »Major airplane parts manufacturer ASCO hit with ransomware attack
ASCO factory in Zaventem, Belgium was hit by a ransomware infection causing major downtime as most of the plants IT systems were infected. ASCO shut down production in factories across Germany, Canada, and the United States. What is the issue? ASCO, one of the largest airplane parts manufacturer, suffered a ransomware attack crippling production in factories across four countries. What ...
Read More »