by CIRT Team
RobbinHood Ransomware Claims It’s Protecting Your Privacy [bleepingcomputer]
A new ransomware is in play called RobbinHood that is targeting entire networks and then encrypting all computers that they can gain access to. They then request a certain amount of bitcoins to decrypt a single computer or a larger amount to decrypt the entire network. Not much is currently known about this ransomware and a sample for RobbinHood has not currently been found. We ...
Read More
by CIRT Team
This Ransomware Improves Your PC’s Performance. Initially. [fossbytes]
We recently told you about the highly dangerous Lockergoga Virus, which caused Havoc in the industrial complexes. Well, there is a new malware called vxCrypter ransomware in the digital space and it will encrypt your files along and ‘improve’ your PC’s performance. Vccrypter is based on an unfinished, old ransomware called vxLock that utilized Advanced Encryption Standard (AES) and Rivest-Shamir-Adleman or RSA algorithm to encrypt files. How does VxCrypter Ransomware work? The...
Read More
by CIRT Team
Thousands of Unprotected Kibana Instances Exposing Elasticsearch Databases [thehackernews]
In today’s world, data plays a crucial role in the success of any organization, but if left unprotected, it could be a cybercriminal’s dream come true. Poorly protected MongoDB, CouchDB, and Elasticsearch databases recently got a lot more attention from cybersecurity firms and media lately. More than half of the known cases of massive data breaches over the past year originated from unsecured database servers...
Read More
by CIRT Team
Hackers Using WordPress and Joomla Sites to Distribute Shade Ransomware [gbhackers]
CMS based sites such as WordPress and Joomla are the popular targets for cybercriminals, they hijack those sites and inject malicious contents. ThreatLabZ researchers detected a campaign that targets WordPress and Joomla sites to distribute Shade/Troldesh ransomware, backdoors, redirectors, and a variety of phishing pages. Hackers use to hijack several hundreds of CMS sites and inject the Troldesh ransomware and phishing pages. All the compromised...
Read More
by CIRT Team
Latest iOS 12.2 Update Patches Some Serious Security Vulnerabilities [thehackernews]
Apple on Monday released iOS 12.2 to patch a total of 51 security vulnerabilities in its mobile operating system that affects iPhone 5s and later, iPad Air and later, and iPod touch 6th generation. A majority of vulnerabilities Apple patched this month reside in its web rendering engine WebKit, which is used by many apps and web browsers running on the Apple’s operating system. According...
Read More
by CIRT Team
UC Browser ‘Feature’ Lets Hackers Hijack Android Phones Remotely [thehackernews]
Beware! If you are using UC Browser on your smartphones, you should consider uninstalling it immediately. Why? Because the China-made UC Browser contains a “questionable” ability that could be exploited by remote attackers to automatically download and execute code on your Android devices. Developed by Alibaba-owned UCWeb, UC Browser is one of the most popular mobile browsers, specifically in China and India, with a massive...
Read More
by CIRT Team
ASUS Admits Its Live Update Utility Was Backdoored by APT Group [bleepingcomputer]
Asus confirmed today that its Live Update utility has been indeed infected with malicious code by an advanced persistent threat (APT) group as part of a supply chain attack which managed to compromise some of its servers. “A small number of devices have been implanted with malicious code through a sophisticated attack on our Live Update servers in an attempt to target a very small and specific user...
Read More
by CIRT Team
Analysis of Ransomware Epidemic In February 2019 [source: 360totalsecurity]
With the spread of Ransomware, Both company and individual have suffered serious threats. 360 Security Brain has comprehensively monitored and defended against the ransomware. The feedback on anti-ransomware services increased slightly, mainly due to the addition of several popular ransomwares in this month. 360 Total Security Ransomware Decryption Tool added GandCrab ransomware (Version 5.0.4 and 5.1), Aurora ransom (suffixed with Aurora, desu, cryptoid), CrazyCrypt ransom...
Read More
by CIRT Team
Support for Windows 7 is nearing the end [source: microsoft]
After 10 years, support for Windows 7 is coming to an end on January 14, 2020. We know change can be difficult, so we are here to help you with recommendations for what to do next and to answer questions about end of support. For more, click here.
by CIRT Team
NASA’s Poor Cybersecurity is Operational Threat [source: infosecurity-magazine]
Government inspectors have uncovered serious deficiencies in NASA’s information security program which they claim could threaten operations. The findings come from the latest Office of the Inspector General (OIG) review of the space agency for fiscal year 2018, under the Federal Information Security Modernization Act of 2014 (FISMA). The OIG tested the maturity of NASA’s infosec program via 61 metrics in five security function areas plus a...
Read More
