Major IPS in New Zealand hit by massive DDoS, Internet outages reported
A massive DDoS hit New Zealand ‘s third-largest internet operator isolating parts of the country from the Internet. A massive...
News
SEC warns of investment scams related to Hurricane Ida
The US Securities and Exchange Commission warns investors of potential investment scams that leverages Hurricane Ida as a bait. The US Securities and...
Critical Flaws in NPM Package Patched by Node.js Developers
Node.js maintainers have launched a major update to the npm package "tar" (aka node-tar) that resolves five critical safety flaws,...
Vulnerabilities Found In Moxa Railway Devices, Can Cause Disruption
Railway and other wireless communication devices developed by Moxa have been affected by 6p vulnerabilities. Moxa is a Taiwan based...
WordPress Sites Affected by Bugs in Gutenberg Template Library and Redux Framework
The Gutenberg Template Library & Redux Framework plugin for WordPress, which is deployed on over 1 million websites, has two...
QakBot (QBot) Campaign: A thorough Analysis
Trojan-Banker QakBot, also known by the names - QBot, QuackBot, and Pinkslipbot, is a modular information stealer that has been...
Autodesk Disclosed it was Targeted in SolarWinds Hack
Autodesk has disclosed that it was also targeted by the Russian state hackers behind the large-scale SolarWinds Orion supply-chain assault,...
Apple will delay the rollout of new child pornography protection tools
Apple will delay the introduction of its new child pornography protection tools due to a heated debate raised by privacy...
FIN7 group leverages Windows 11 Alpha-Themed docs to drop Javascript payloads
FIN7 cybercrime gang used weaponized Windows 11 Alpha-themed Word documents to drop malicious payloads, including a JavaScript backdoor. Anomali Threat...
Source code for the Babuk is available on a hacking forum
The complete source code for the Babuk ransomware is available for sale on a Russian-speaking hacking forum. A threat actor...
USCYBERCOM and CISA warn organizations to fix CVE-2021-26084 Confluence flaw
USCYBERCOM is urging organizations to patch a critical CVE-2021-26084 flaw in Atlassian Confluence Server and Data Center, ahead of the...
Conti ransomware gang targets Microsoft Exchange servers with ProxyShell exploits
The Conti ransomware operators are targeting Microsoft Exchange servers leveraging recently disclosed ProxyShell vulnerability exploits. The Conti ransomware gang is...
FBI warns of ransomware threat to food and agriculture
The FBI has issued a Private Industry Notification (PIN) about cybercriminal actors targeting the food and agriculture sector with ransomware...
Watch what you send on anonymous SMS websites
It’s a good idea to try and keep certain things private. For example, people have been using anonymous email services...
UK Based Firms, Voip Unlimited, And Voipfone Under DDoS Attack
Users of Voipfone's UK business broadband and Voice-over-Internet-Protocol (VoIP) services have reported to ISPreview.co.uk that the supplier has been facing...
Vulnerabilities in bank chatbots allow hackers to steal money
Awillix specialists discovered vulnerabilities in bank chatbots that could allow fraudsters to transfer money without the knowledge of customers. Positive...
BrakTooth Vulnerability Puts Bluetooth Users At Risk, Flaws Left Unpatched
White Hat hackers revealed a set of vulnerabilities named as BrakTooth, which affects commercial bluetooth gadgets, raising suspicions about vendor's...
Parliamentary Panel Advises Indian Government to Ban VPN Services
Citing the growing threat in cyberspace, the Parliamentary Standing Committee on Home Affairs has advised the Indian government to block...
VIP72: 15-Year-Old Malware Proxy Network Goes ‘Dark’ Without Notice
A 15-year-old cybercrime anonymity service called VIP72, in the past, allowed a large number of cybercriminals to cover up their...
Applied YARA training Q&A
Introduction On August 31, 2021 we ran a joint webinar between VirusTotal and Kaspersky, with a focus on YARA rules...
LockBit 2.0 Ransomware add DDoS protection to victim blog
The ransomware group have added DDoS protection to the victim blog using Nginx-Lua-Anti-DDoS from the github repo located here: https://github.com/C0nw0nk/Nginx-Lua-Anti-DDoS/blob/master/lua/anti_ddos_challenge.lua...
PRIVATELOG, a new malware that leverages Common Log File System (CLFS) to avoid detection
Mandiant researchers spotted a new malware family, dubbed PRIVATELOG, that relies on the Common Log File System (CLFS) to evade...
FBI warns of ransomware attacks targeting the food and agriculture sector
FBI warns ransomware gangs are actively targeting organizations in the food and agriculture sector. The FBI Cyber Division issued a...
Attacks against SolarWinds Serv-U SW were possible due to the lack of ASLR mitigation
SolarWinds did not enable anti-exploit mitigation available since 2006 allowing threat actors to target SolarWinds Serv-U FTP software in July...
