Daily NCSC-FI news followup 2019-06-15

Exim email servers are now under attack

www.zdnet.com/article/exim-email-servers-are-now-under-attack/ At least two hacker groups have been identified carrying out attacks, one operating from a public internet server, and one using a server located on the dark web. Myƶs:

www.cybereason.com/blog/new-pervasive-worm-exploiting-linux-exim-server-vulnerability

ThreatList: Ransomware Trojans Picking Up Steam in 2019

threatpost.com/threatlist-ransomware-trojans-picking-up-steam-in-2019/145718/ The report outlined popular trends in the malware space such as growing popularity of multimodular trojans and ransomware, and decreasing popularity of malicious cryptomining. Overall, cyberincidents grew by 11 percent from the first quarter of 2018 according to the report.

Mysterious Iranian group is hacking into DNA sequencers

www.zdnet.com/article/mysterious-iranian-group-is-hacking-into-dna-sequencers/ Web-based DNA sequencer applications are under attack from a mysterious hacker group using a still-unpatched zero-day to take control of targeted devices.

Experts: Spy used AI-generated face to connect with targets

phys.org/news/2019-06-experts-spy-ai-generated.html William Evanina, director of the U.S. National Counterintelligence and Security Center, said foreign spies routinely use fake social media profiles to home in on American targetsand accused China in particular of waging “mass scale” spying on LinkedIn.

Hacking these medical pumps is as easy as copying a booby-trapped file over the network

www.theregister.co.uk/2019/06/13/medical_workstation_vulnerabilities/ Two security vulnerabilities in medical workstations can exploited by scumbags to hijack the devices and connected infusion pumps, potentially causing harm to patients, the US government revealed today.

U.S. Escalates Online Attacks on Russias Power Grid

www.nytimes.com/2019/06/15/us/politics/trump-cyber-russia-grid.html In interviews over the past three months, the officials described the previously unreported deployment of American computer code inside Russias grid and other targets as a classified companion to more publicly discussed action directed at Moscows disinformation and hacking units around the 2018 midterm elections.

You might be interested in …

Daily NCSC-FI news followup 2019-08-31

VLAN as an additional security layer www.kaspersky.com/blog/vlan-security/28253/ Every company has employees who handle large volumes of external e-mail. HR officers, PR managers, and salespeople are a few common examples. In addition to their regular mail, they receive a lot of spam, phishing messages, and malicious attachments. Moreover, the nature of their work requires them to […]

Read More

Daily NCSC-FI news followup 2020-06-13

Fraudster gets maximum jail time for news site DDoS extortion www.bleepingcomputer.com/news/security/fraudster-gets-maximum-jail-time-for-news-site-ddos-extortion/ Iranian-born U.S. citizen Andrew Rakhshan, previously convicted in Canada for fraud, was sentenced to the maximum sentence of five years and ordered to pay over $500, 000 after being found guilty of launching several distributed denial of service (DDoS) attacks against news websites. Microsoft […]

Read More

Daily NCSC-FI news followup 2021-06-09

Summary of June 8 outage www.fastly.com/blog/summary-of-june-8-outage We experienced a global outage due to an undiscovered software bug that surfaced on June 8 when it was triggered by a valid customer configuration change. We detected the disruption within one minute, then identified and isolated the cause, and disabled the configuration. Within 49 minutes, 95% of our […]

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.