Daily NCSC-FI news followup 2019-06-15

Exim email servers are now under attack

www.zdnet.com/article/exim-email-servers-are-now-under-attack/ At least two hacker groups have been identified carrying out attacks, one operating from a public internet server, and one using a server located on the dark web. Myƶs:

www.cybereason.com/blog/new-pervasive-worm-exploiting-linux-exim-server-vulnerability

ThreatList: Ransomware Trojans Picking Up Steam in 2019

threatpost.com/threatlist-ransomware-trojans-picking-up-steam-in-2019/145718/ The report outlined popular trends in the malware space such as growing popularity of multimodular trojans and ransomware, and decreasing popularity of malicious cryptomining. Overall, cyberincidents grew by 11 percent from the first quarter of 2018 according to the report.

Mysterious Iranian group is hacking into DNA sequencers

www.zdnet.com/article/mysterious-iranian-group-is-hacking-into-dna-sequencers/ Web-based DNA sequencer applications are under attack from a mysterious hacker group using a still-unpatched zero-day to take control of targeted devices.

Experts: Spy used AI-generated face to connect with targets

phys.org/news/2019-06-experts-spy-ai-generated.html William Evanina, director of the U.S. National Counterintelligence and Security Center, said foreign spies routinely use fake social media profiles to home in on American targetsand accused China in particular of waging “mass scale” spying on LinkedIn.

Hacking these medical pumps is as easy as copying a booby-trapped file over the network

www.theregister.co.uk/2019/06/13/medical_workstation_vulnerabilities/ Two security vulnerabilities in medical workstations can exploited by scumbags to hijack the devices and connected infusion pumps, potentially causing harm to patients, the US government revealed today.

U.S. Escalates Online Attacks on Russias Power Grid

www.nytimes.com/2019/06/15/us/politics/trump-cyber-russia-grid.html In interviews over the past three months, the officials described the previously unreported deployment of American computer code inside Russias grid and other targets as a classified companion to more publicly discussed action directed at Moscows disinformation and hacking units around the 2018 midterm elections.

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.