[ThreatPost] Pegasus Spyware Infects U.S. State Department iPhones

It’s unknown who’s behind the cyberattacks against at least nine employees’ iPhones, who are all involved in Ugandan diplomacy.

Source: Read More (Threatpost)

You might be interested in …

[ZDNet] How the FBI and AFP accessed encrypted messages in TrojanShield investigation

All posts, ZDNet

Over a three-year period, law enforcement agencies around the world jointly decrypted messages of criminals to foil various activities, such as plans to ship tonnes of cocaine. Source: Read More (Latest topics for ZDNet in Security)

Read More

Daily NCSC-FI news followup 2021-12-15

Log4Shell attacks expand to nation-state groups from China, Iran, North Korea, and Turkey therecord.media/log4shell-attacks-expand-to-nation-state-groups-from-china-iran-north-korea-and-turkey/ Nation-state groups from China, Iran, North Korea, and Turkey are now abusing the Log4Shell (CVE-2021-44228) vulnerability to gain access to targeted networks, Microsoft said on Tuesday. “This activity ranges from experimentation during development, integration of the vulnerability to in-the-wild payload deployment, […]

Read More

[SANS ISC] Over 20 thousand servers have their iLO interfaces exposed to the internet, many with outdated and vulnerable versions of FW, (Wed, Jan 26th)

All posts, Sans-ISC

Integrated Lights-Out (iLO) is a low-level server management system intended for out-of-band configuration, which is embedded by Hewlett-Packard Enterprise on some of their servers[1]. Besides its use for maintenance, it is often used by administrators for an emergency access to the server when everything “above it” (hypervisor or OS) fails and/or is unreachable. Since these kinds […]

Read More