Criminals Abused SWIFT to Steal $6M from Central Bank of Russia

Unknown criminals abused the SWIFT network to steal 339.5 million rubles ($6 million) from the Central Bank of Russia in 2017. The bank’s Financial Sector Computer Emergency Response Team (FinCERT) revealed the attack in its report on illegal transactions that occurred in 2017. As quoted by Sputnik International: Bank of Russia has been informed about … Read More The post Criminals Abused SWIFT to Steal $6M from Central Bank of Russia appeared first on The State of Security.
Read more

UK Government Publicly Attributes NotPetya Outbreak to Russia

UK government officials have publicly attributed the NotPetya malware attacks of June 2017 to actors in the Russian government. Foreign Office Minister Lord Ahmad made his thoughts known in a statement released on 15 February: The UK Government judges that the Russian Government, specifically the Russian military, was responsible for the destructive NotPetya cyber-attack of … Read More The post UK Government Publicly Attributes NotPetya Outbreak to Russia appeared first on The State of Security.
Read more

DoubleDoor IoT Botnet Abuses Two Vulnerabilities to Circumvent Firewalls, Modems

The DoubleDoor Internet of Things (IoT) botnet circumvents firewall protection and other security measures by abusing two vulnerabilities. Detected by NewSky Security in its honeypot logs, DoubleDoor begins by deploying CVE-2015-7755. The vulnerability allows remote attackers to gain administrative access to ScreenOS, an operating system for Juniper Networks’ hardware firewall devices, by entering a hardcoded … Read More The post DoubleDoor IoT Botnet Abuses Two Vulnerabilities to Circumvent Firewalls, Modems appeared first on The State of Security.
Read more

AndroRAT Exploiting Vulnerability to Escalate Privileges on Android Devices

A new variant of the Android Remote Access Tool (AndroRAT) is exploiting a vulnerability to escalate privileges on unpatched Android devices. The malware disguises itself as a utility app called “TrashCleaner” and waits for users to download it from a malicious URL. Upon running for the first time, the malicious app forces the device to … Read More The post AndroRAT Exploiting Vulnerability to Escalate Privileges on Android Devices appeared first on The State of Security.
Read more

4K+ Websites Infected with Crypto-Miner after Tech Provider Hacked

Bad actors secretly infected more than 4,000 websites with the script for a crypto-miner after hacking a single technology provider. The trouble started on 11 February when Ian Thornton-Trump encountered something concerning while visiting the website for the UK Information Commissioner’s Office (ICO). Just visiting #ICO page this morning and have some concerns. Can someone … Read More The post 4K+ Websites Infected with Crypto-Miner after Tech Provider Hacked appeared first on The State of Security.
Read more

Cryakl Ransomware Decryption Keys Released by Belgian Federal Police

The Belgian federal police has released free decryption keys for Cryakl ransomware following an international law enforcement operation. On 9 February, the European Union Agency for Law Enforcement Cooperation (Europol) announced the release of the keys through No More Ransom. The move represents the culmination of an investigation that involved Belgian police, the Dutch National … Read More The post Cryakl Ransomware Decryption Keys Released by Belgian Federal Police appeared first on The State of Security.
Read more

Cryptomining Software Discovered on Tennessee Hospital’s EMR Server

A Tennessee hospital discovered cryptomining software installed on a server that hosts its electronic medical records (EMR) system. In January 2018, Decatur County General Hospital began notifying patients of a incident involving its electronic medical record systems. Its breach notification letter (PDF) reveals the hospital first learned about the security event from its EMR vendor: … Read More The post Cryptomining Software Discovered on Tennessee Hospital’s EMR Server appeared first on The State of Security.
Read more

NameCheap to Notify Customers of Misconfiguration Issue that Allowed Subdomain Creation on Any Hosted Account

NameCheap has said it intends to notify customers of a misconfiguration issue that allowed customers to create subdomains for any hosted account. Richard Kirkendall, CEO for the ICANN-accredited registrar, said on Twitter that the company is currently conducting an audit and plans on “contacting any affected customers directly” following the discovery of a misconfiguration issue … Read More The post NameCheap to Notify Customers of Misconfiguration Issue that Allowed Subdomain Creation on Any Hosted Account appeared first on The State of Security.
Read more

Grammarly Fixes Vulnerability that Exposes Users’ Data for All Websites

Grammarly has fixed a vulnerability that exposes users’ typos, documents, and other data for all websites with which they’ve used the platform. Tavis Ormandy, a Google computer security researcher who discovered a memory disclosure bug in CloudFlare’s reverse-proxy systems in February 2017, wrote up a security advisory about the Grammarly flaw on 2 February. In … Read More The post Grammarly Fixes Vulnerability that Exposes Users’ Data for All Websites appeared first on The State of Security.
Read more

Lauri Love Won’t Be Extradited to the United States for Alleged Hacking Crimes

A UK court of appeals has ruled that Lauri Love will not be extradited to the United States to face trial for his alleged hacking crimes. The lord chief justice, Lord Burnett of Maldon, and Mr. Justice Ouseley handed down their judgment at the Royal Courts of Justice on 5 February. Outside, supporters gathered with … Read More The post Lauri Love Won’t Be Extradited to the United States for Alleged Hacking Crimes appeared first on The State of Security.
Read more
Page 1 of 1512345...10...Last »