A week in security (February 12 – February 18)

A roundup of notable news stories from February 12–18, including Android cryptomining, phishing on a massive scale, Apple scams, and bug bounties. Categories: Security world Week in security Tags: Androidcryptomininghealthcareinfosecsecurityvalentine's dayweekly roundup (Read more...) The post A week in security (February 12 – February 18) appeared first on Malwarebytes Labs.
Read more

CVE-2017-10271 Used to Deliver CryptoMiners: An Overview of Techniques Used Post-Exploitation and Pre-Mining

Introduction FireEye researchers recently observed threat actors abusing CVE-2017-10271 to deliver various cryptocurrency miners. CVE-2017-10271 is a known input validation vulnerability that exists in the WebLogic Server Security Service (WLS Security) in Oracle WebLogic Server versions 12.2.1.2.0 and prior, and attackers can exploit it to remotely execute arbitrary code. Oracle released a Critical Patch Update that reportedly fixes this vulnerability. Users who failed to patch their systems may find themselves mining cryptocurrency for threat actors. FireEye observed a high volume of activity associated with the exploitation of CVE-2017-10271 following the public posting of proof of concept code in December 2017. Attackers then leveraged this vulnerability to download cryptocurrency miners in victim environments. We saw evidence of organizations located in various countries – including the United States, Australia, Hong Kong, United Kingdom, India, Malaysia, and Spain, as well as those from nearly every industry vertical – being impacted by this activity. Actors involved in cryptocurrency mining operations mainly exploit opportunistic targets rather than specific organizations. This coupled with the diversity of organizations potentially affected by this activity suggests that the external targeting calculus of...
Read more

How a Bitcoin phishing gang made $50 million with the help of Google AdWords

A cybercrime gang based in Ukraine is estimated to have made as much as $50 million after tricking Bitcoin investors into handing over the login credentials for their online wallets. The post How a Bitcoin phishing gang made $50 million with the help of Google AdWords appeared first on The State of Security.
Read more

The Olympics and 4,000 Government Websites Got Owned

Two recent discoveries in the world of cybersecurity – from the Olympics and via cryptojacking – highlight potential trends we can expect to see more of. High profile and brash, they portend an alarming extension of hacker activity. Olympic Destroyer One was a malware attack called “Olympic Destroyer” that targeted the opening ceremonies of the... Read more » The post The Olympics and 4,000 Government Websites Got Owned appeared first on Cloud Sentry Blog.
Read more

The Olympics and 4,000 Government Websites Got Owned

Two recent discoveries in the world of cybersecurity – from the Olympics and via cryptojacking – highlight potential trends we can expect to see more of. High profile and brash, they portend an alarming extension of hacker activity. Olympic Destroyer One was a malware attack called “Olympic Destroyer” that targeted the opening ceremonies of the... Read more » The post The Olympics and 4,000 Government Websites Got Owned appeared first on Cloud Sentry Blog.
Read more

Hackers Exploit Right-to-Left Override Bug in Telegram to Distribute Malware

Hackers have exploited a bug in how Telegram’s Windows messaging client displays file names that contain a right-to-left override (RLO) character, to infect users with malware. The RLO character, represented by “U+202E” in Unicode, indicates that the text following it should be displayed from right to left. This is useful for languages like Arabic, but..
Read more

Destructive Malware Used to Attack Winter Olympics Infrastructure

The Olympic Winter Games in Pyeongchang, South Korea, started off with a cyberattack that disrupted the games’ official website and caused technical problems in the press center at the Olympic Stadium shortly before the opening ceremony Feb. 9. Winter Olympics officials confirmed that the games were hit by a cyberattack, but didn’t provide any other..
Read more
Page 1 of 1512345...10...Last »