Ransomware poses as anti-virus software to infect victims
A successful family of ransomware called Dharma is now trying to infect victims by posing as anti-virus software. Specifically, the malware presents itself as an old version of security company ESET.
Dharma first appeared in 2016 and is responsible for several major incidents, including the encrypt... Read more
“Three major anti-virus companies in U.S. victim of hacking.
Researchers at security company Advanced Intelligence (AdvIntel) have revealed that a group of Russian and English-speaking hackers claim to have hacked three American anti-virus companies. The collective calls itself Fxmsp.
The collective would actively try to sell stolen data. They sell both sourc... Read more
“Cybercriminals are increasingly turning their attention to energy companies.
Cybercriminals are increasingly targeting vital infrastructures and power plants. That's what F-Secure's research shows. In addition, more and more systems are interconnected in the energy sector, increasing the number of vulnerabilities.
Energy companies are trying to consolidate processes in orde... Read more
Hacker steals 932 million user data in two months
A hacker named Gnosticplayers has managed to steal 932 million user data from 44 companies in just two months. The hacker already talked to ZDNet in February about wanting to sell the data of over a billion users, writes the website.
Since mid-February, the hacker has been posting series of hacked ... Read more
Bug in Apache server gives attackers root access in shared host environments
The Apache HTTP Server - the most widely used Web server on the Internet - has closed a serious vulnerability that has allowed unfamiliar users or software to gain unlimited control over the machine on which the software runs.
The vulnerability, called CVE-2019-0211, is a local privilege escalation... Read more
Researchers mislead Tesla Autopilot to drive against traffic
Researchers have discovered a simple attack with which a Tesla car may, in certain circumstances, automatically drive against the traffic.
The proof-of-concept does not hack into the onboard computing system, but uses small, inconspicuous stickers that mislead the Enhanced Autopilot of a Model S75.... Read more
Error in Magento makes websites vulnerable to skimmers
E-commerce platform Magento contains a serious vulnerability, which means that 300,000 websites run the risk of being infected with malware from skimmers. The vulnerability has already been closed with a patch, but it still has to be installed by the owners of the websites.
The specific error is PRO... Read more
Mimecast Threat Center must provide companies with up-to-date threat information
Mimecast wants to further secure companies through its new Threat Center. Experts from the security company keep a constant eye on the threat assessment and provide organisations with relevant and practical information. As a result, companies need to tighten their security against current threats, a... Read more
Windows malware Slub abuses Slack and GitHub to steal data
Trend Micro researchers say they found a new malware that uses Slack channels, GitHub, and file.io to steal data from Windows PCs. The malware is called Slub and is part of a 'watering hole', which is a type of attack that consists of compromising a website that is probably visited by the target gro... Read more
Citrix victim of hack, potentially large amount of data stolen
Citrix has been the victim of an attack by hackers, in which a large amount of data may have been stolen from customers. That's what Forbes reports. The attack was reported to the company by the FBI on March 6.
The FBI contacted Citrix to report that international cybercriminals were likely to have ... Read more