Security Affairs newsletter Round 293
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for...
News
PgMiner botnet exploits disputed CVE to hack unsecured PostgreSQL DBs
Researchers have discovered a botnet dubbed PgMiner that targets PostgreSQL databases running on Linux servers to install a cryptocurrency miner....
NI CompactRIO controller flaw could allow disrupting production
A serious flaw in National Instruments CompactRIO controllers could allow remote attackers to disrupt production processes in an organization. A...
Here’s a Quick Guide to Safeguarding Credentials
Safeguarding your authentication credentials is your best defense towards preventing your identity from falling into wrong hands. A recent...
WordPress Easy WP SMTP zero-day potentially exposes hundreds of thousands of sites to hack
Threat actors are actively exploiting a zero-day vulnerability in the popular Easy WP SMTP WordPress plugin installed on more than...
Spotify reset user passwords after accidentally personal information exposure
Spotify is informing users that their personal information might have been accidentally shared with some of its business partners. Spotify...
Facebook links cyberespionage group APT32 to Vietnamese IT firm
Facebook has suspended some accounts linked to APT32 that were involved in cyber espionage campaigns to spread malware. Facebook has...
Pavel Durov’s team advised the Ministry of Finance of Ukraine on cryptocurrencies.
The Minister of Digital Transformation Mikhail Fedorov said that his department is in contact with the team of the developer...
Microsoft releases patches for 58 vulnerabilities
On Tuesday, Microsoft released fixes for 58 vulnerabilities for more than ten products for Windows and other software in their...
Spear-Phishing Campaigns Targeting Tibet and Taiwan
Tibetan community is being targeted by a Spear-phishing campaign; it is suspected that malicious actors behind these operations are...
Gustave – Embedded OS kernel fuzzer
GUSTAVE is a fuzzing platform for embedded OS kernels. It is based on QEMU and AFL (and all of its...
Carnivore – Tool For Assessing On-Premises Microsoft Servers Authentication Such As ADFS, Skype, Exchange, And RDWeb
Carnivore is an assessment tool for Skype for Business, Exchange, ADFS, and RDWeb servers as well as some O365 functionality....
Threat actors target K-12 distance learning education, CISA and FBI warn
The US Cybersecurity Infrastructure and Security Agency and the FBI warned about the increase in ransomware attacks targeting the US...
Interview with Massimiliano Brolli, Head of TIM Red Team Research
Interview with Massimiliano Brolli, Head of TIM Red Team Research, which is a team of experts that focus on zero-day...
Adrozek malware silently inject ads into search results in multiple browsers
Microsoft warns of a new malware named Adrozek that infects devices and hijacks Chrome, Edge, and Firefox browsers by changing...
Cisco addresses critical RCE vulnerability in Jabber
Cisco addressed a new critical RCE vulnerability that affects several versions of Cisco Jabber for Windows, macOS, and mobile platforms. Cisco...
Expert published PoC exploit code for Kerberos Bronze Bit attack
The proof-of-concept exploit code for the Kerberos Bronze Bit attack was published online, it allows intruders to bypass authentication and...
Malwarebytes detects leaked tools from FireEye breach
Hello folks! If you have not heard yet, the security firm FireEye has had a breach of many red team...
Buying COVID-19 vaccines from the Dark Web? No thanks!
Even though we hope that this is an unnecessary warning, we do want to put it out there. As soon...
Russian embassy responds to Norwegian allegations of cyberattack
Hacker groups APT28 and Fancy Bear may have been involved in a cyber attack on the Norwegian Parliament in August...
Sensitive Data of 7 Million Indian Cardholders Circulating On Dark Web
There is a rapid increase in the number of data breaches last year, jumping by 17%, which has become an...
Spy Campaign: SideWinder APT Leverages South Asian Border Disputes
The SideWinder advanced persistent threat (APT) group, which seems to be active since 2012, now has started a new malicious...
The story of the year: remote work
The coronavirus pandemic has caused sudden, sweeping change around the world. The necessary social distancing measures are having an impact...
Sak1To-Shell – Multi-threaded C2 Server And Reverse Shell Client Written In Pure C
Multi-threaded c2 server and reverse TCP shell client written in pure C (Windows). Command list: list: list available connections. interact...
