2009 and Security - Information Management Today

Microsoft: North Korea-linked Zinc APT targets security experts

Security Affairs

JANUARY 29, 2021

. “In recent months, Microsoft has detected cyberattacks targeting security researchers by an actor we track as ZINC. “Observed targeting includes pen testers, private offensive security researchers, and employees at security and tech companies. .” ” states the report published by Microsoft.

Security

Security Encryption Passwords Communications

North Korea-linked Zinc group posed as Samsung recruiters to target security firms

Security Affairs

NOVEMBER 28, 2021

North Korea-linked threat actors posed as Samsung recruiters in a spear-phishing campaign aimed at employees at South Korean security firms. North Korea-linked APT group posed as Samsung recruiters is a spear-phishing campaign that targeted South Korean security companies that sell anti-malware solutions, Google TAG researchers reported.

Security

Security Phishing Information Security Communications

Microsoft Patches 12-Year-Old Vulnerability

Data Breach Today

FEBRUARY 16, 2021

Flaw Was Present in Microsoft Defender Since 2009, SentinelOne Finds Microsoft has patched a 12-year-old vulnerability in Microsoft Defender that, if exploited, could enable nonadministrative users to escalate privilege in the application. The patch was made after security firm SentinelOne recently notified Microsoft about the flaw.

Security

Webinars

How to Achieve High-Accuracy Results When Using LLMs

MORE WEBINARS

More than 16,000 Ivanti VPN gateways still vulnerable to RCE CVE-2024-21894

Security Affairs

APRIL 6, 2024

Experts warn of roughly 16,500 Ivanti Connect Secure and Poly Secure gateways still vulnerable to a remote code execution (RCE) flaw. Shadowserver researchers reported that roughly 16,500 Ivanti Connect Secure and Poly Secure gateways are vulnerable to the recently reported RCE flaw CVE-2024-21894.

Security

Security Information Security IT

SAP Security Patch Day for May 2019 fixes many missing authorization checks

Security Affairs

MAY 15, 2019

SAP released SAP Security Patch Day for May 2019 that includes 8 Security Notes, 5 of which are updates to previously released Notes. “Today, being the second Tuesday of the month, SAP released May’s Security Notes. . “Today, being the second Tuesday of the month, SAP released May’s Security Notes.

Security

Security Financial Services Risk IT

RockYou2024 compilation containing 10 billion passwords was leaked online

Security Affairs

JULY 8, 2024

The compilation has been named ‘RockYou2021’ by the forum user, presumably in reference to the RockYou data breach that occurred in 2009, when threat actors hacked their way into the social app website’s servers and got their hands on more than 32 million user passwords stored in plain text. RockYou2021 had 8.4

Passwords

Passwords Data breaches Risk IT

10-year-old vulnerability in Avaya VoIP Phones finally fixed

Security Affairs

AUGUST 10, 2019

Security researchers at McAfee have discovered that a vulnerability patched ten years ago is still affecting several Avaya phones. Security experts at McAfee discovered that a stack-based buffer overflow flaw in the Dynamic Host Configuration Protocol (DHCP) client discovered and fixed ten years ago is still affecting several Avaya phones.

IoT

IoT Communications Privacy Risk

Facebook's '10 Year Challenge' Is Just a Harmless Meme—Right?

WIRED Threat Level

JANUARY 15, 2019

Opinion: The 2009 vs. 2019 profile picture trend may or may not have been a data collection ruse to train its facial recognition algorithm. But we can't afford to blithely play along.

Data collection

Data collection IT Security

Experts found 20 Million tax records for Russian citizens exposed online

Security Affairs

OCTOBER 1, 2019

Security experts from Comparitech along with security researcher Bob Diachenko discovered 20 million tax records belonging to Russian citizens exposed online in clear text and without protection. The post Experts found 20 Million tax records for Russian citizens exposed online appeared first on Security Affairs.

Risk

Risk Phishing Access Security

538 Million Weibo users’ records being sold on Dark Web

Security Affairs

MARCH 23, 2020

Weibo is a popular Chinese micro-blogging ( weibo ) website, it was launched by Sina Corporation on 14 August 2009, it claimed over 445 million monthly active users as of Q3 2018. . When we found the security vulnerability we took measures to fix it. ” “Don’t be credulous. . Pierluigi Paganini.

Personal data

Personal data Sales Passwords Information Security

North Korea-linked Lazarus group targets cybersecurity experts with Trojanized IDA Pro

Security Affairs

NOVEMBER 15, 2021

North Korea-linked APT Lazarus targets security researchers using a trojanized pirated version of the popular IDA Pro reverse engineering software. ESET researchers reported that the North Korea-linked Lazarus APT group is targeting cyber security community with a trojanized pirated version of the popular IDA Pro reverse engineering software.

Cybersecurity

Cybersecurity Ransomware Security IT

IBM releases open-source toolkits implementing FHE to process data while encrypted

Security Affairs

JUNE 8, 2020

IBM invented FHE in 2009, but only recently it is becoming practical thanks to algorithmic progresses. . “In This has revolutionized security and data privacy and how we outsource computation to untrusted clouds,” states IBM. The FHE toolkits are been released on GitHub for macOS and iOS. Pierluigi Paganini.

Encryption

Encryption Cloud Analytics Data Privacy

Belgium telecom operators Proximus and Orange drop Huawei

Security Affairs

OCTOBER 10, 2020

Orange Belgium is using Huawei equipment since 2007 for its mobile network in Belgium and Luxembourg, while the collaboration between Proximus and the Shenzhen-based company started in 2009 for the progressive upgrading of its network. The post Belgium telecom operators Proximus and Orange drop Huawei appeared first on Security Affairs.

Manufacturing

Manufacturing Risk Communications Security

Administrators of bulletproof hosting sentenced to prison in the US

Security Affairs

OCTOBER 21, 2021

The two individuals, Aleksandr Skorodumov (33) of Lithuania, and Pavel Stassi (30) of Estonia, administrated the bulletproof hosting service between 2009 and 2015. SecurityAffairs – hacking, cyber security). The post Administrators of bulletproof hosting sentenced to prison in the US appeared first on Security Affairs.

Systems administration

Systems administration Marketing Risk IT

North Korea-linked APT group BeagleBoyz targets banks

Security Affairs

AUGUST 29, 2020

According to a joint advisory issued by the Cybersecurity and Infrastructure Security Agency (CISA), the Department of the Treasury, the Federal Bureau of Investigation (FBI), and U.S. The post North Korea-linked APT group BeagleBoyz targets banks appeared first on Security Affairs. Pierluigi Paganini.

Access

Access Government Ransomware Cybersecurity

U.S. Internet Leaked Years of Internal, Customer Emails

Krebs on Security

FEBRUARY 14, 2024

has a business unit called Securence , which specializes in providing filtered, secure email services to businesses, educational institutions and government agencies worldwide. Internet/Securence says your email is secure. Hold Security founder Alex Holden said his researchers had unearthed a public link to a U.S.

Education

Education Data breaches Government Security

Symantec uncovered the link between China-Linked Thrip and Billbug groups

Security Affairs

SEPTEMBER 9, 2019

Experts at Symantec first exposed the activity of the Chinese-linked APT Thrip in 2018, now the security firm confirms that cyber espionage group has continued to carry out attacks in South East Asia. Security experts at Symantec speculate that Thrip is a sub-group of Billbug. ” continues the report. Pierluigi Paganini.

Military

Military Communications Government Education

Report: Missouri Governor’s Office Responsible for Teacher Data Leak

Krebs on Security

FEBRUARY 22, 2022

Missouri Governor Mike Parson made headlines last year when he vowed to criminally prosecute a journalist for reporting a security flaw in a state website that exposed personal information of more than 100,000 teachers. Louis Post-Dispatch for reporting a security vulnerability that exposed teacher SSNs. In October 2021, St.

Education

Education Access Security Communications

North Korea-linked Lazarus APT targets the COVID-19 research

Security Affairs

DECEMBER 25, 2020

This threat actor has been active since at least 2009, possibly as early as 2007, and it was involved in both cyber espionage campaigns and sabotage activities aimed to destroy data and disrupt systems. If you want to receive the weekly Security Affairs Newsletter for free subscribe here. Pierluigi Paganini.

Healthcare

Healthcare Phishing Passwords Ransomware

PwnKit: Local Privilege Escalation bug affects major Linux distros

Security Affairs

JANUARY 26, 2022

The flaw, dubbed PwnKit, was introduced more than 12 years ago (May 2009) since the initial commit of pkexec, this means that all the versions are affected. The post PwnKit: Local Privilege Escalation bug affects major Linux distros appeared first on Security Affairs. ” reads the post published by Qualys.”Successful

Communications

Communications IT Security Information Security

China-linked APT10 leverages ZeroLogon exploits in recent attacks

Security Affairs

NOVEMBER 18, 2020

The group, also known as Cicada, Stone Panda , and Cloud Hopper , has been active at least since 2009, in April 2017 experts from PwC UK and BAE Systems uncovered a widespread hacking campaign, tracked as Operation Cloud Hopper , targeting managed service providers (MSPs) in multiple countries worldwide. . ” Pierluigi Paganini.

Healthcare

Healthcare Archiving Cloud Manufacturing

Maryland Department of Labor discloses a data breach

Security Affairs

JULY 9, 2019

The security breach was discovered earlier this year, hackers also accessed data stored in the Literacy Works Information System and a legacy unemployment insurance service database. ” Threat actors accessed to files stored in the Literacy Works Information System that are dated back 2009, 2010, and 2014. .”

Data breaches

Data breaches Insurance Access Security

PII Belonging to Indian Citizens, Including their Aadhaar IDs, Offered for Sale on the Dark Web

Security Affairs

OCTOBER 23, 2023

billion Aadhaars issued by the UIDAI since this ID service launched in 2009, this system represents one of the largest biometric ID programs on the planet, according to a report published by think tank Brookings Institution. The Moody’s report also warned that there are security and privacy vulnerabilities in Aadhaar’s centralized system.

Sales

Sales e-Discovery Data breaches Risk

DHS issued an alert on attacks aimed at Managed Service Providers

Security Affairs

OCTOBER 5, 2018

The United States Department of Homeland Security (DHS) is warning of ongoing activity from an advanced persistent threat (APT) actor targeting global managed service providers (MSPs). ” Security firms attributed the attacks to a Chinese threat actor referred as APT10 (aka menuPass and Stone Panda). Pierluigi Paganini.

Communications

Communications Manufacturing Cybersecurity Phishing

Colorado Department of Higher Education (CDHE) discloses data breach after ransomware attack

Security Affairs

AUGUST 6, 2023

CDHE discovered the ransomware attack on June 19, 2023, it immediately launched an investigation into the security breach with the help of third-party specialists. At the time of this writing, no ransomware group has claimed responsibility for the security breach. ” reads the Notice of Data Incident published by the company.

Education

Education Data breaches Ransomware Access

CISA urges to fix actively exploited Firefox zero-days by March 21

Security Affairs

MARCH 8, 2022

Cybersecurity and Infrastructure Security Agency (CISA) added recently disclosed Firefox zero-days to its Known Exploited Vulnerabilities Catalog. The post CISA urges to fix actively exploited Firefox zero-days by March 21 appeared first on Security Affairs. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Cybersecurity

Cybersecurity Authentication Cloud Security

The man behind Cardplanet credit card market sentenced to 9 years in prison

Security Affairs

JUNE 27, 2020

The man operated the Cardplanet site between at least early 2009 through at least August 2013. The post The man behind Cardplanet credit card market sentenced to 9 years in prison appeared first on Security Affairs. In November, the suspect has been extradited to the US to face criminal charges. Pierluigi Paganini.

Marketing

Marketing Sales Insurance Access

China planted tiny chips on US computers for cyber espionage

Security Affairs

OCTOBER 4, 2018

Amazon discovered the tiny chips when it acquired software firm Elemental and conducted a security assessment of equipment made for Elemental by California-based Supermicro. In 2009 the company announced a development partnership with In-Q-Tel Inc. , In 2009 the company announced a development partnership with In-Q-Tel Inc. ,

Manufacturing

Manufacturing Government Security IT

Experts link attack on Chilean interbank network Redbanc NK Lazarus APT

Security Affairs

JANUARY 16, 2019

Security experts at Flashpoint linked the recently disclosed attack on the Chilean interbank network to the dreaded Lazarus APT group. This threat actor has been active since at least 2009, possibly as early as 2007, and it was involved in both cyber espionage campaigns and sabotage activities aimed to destroy data and disrupt systems.

Communications

Communications Ransomware Security IT

Orchard botnet uses Bitcoin Transaction info to generate DGA domains

Security Affairs

AUGUST 8, 2022

“It’s worth pointing out that the wallet address is the miner reward receiving address of the Bitcoin Genesis Block , which occurred on January 3, 2009, and is believed to be held by Nakamoto.” The post Orchard botnet uses Bitcoin Transaction info to generate DGA domains appeared first on Security Affairs.

Mining

Mining IT Security Information Security

North Korea-linked Lazarus APT targets the IT supply chain

Security Affairs

OCTOBER 27, 2021

This threat actor has been active since at least 2009, possibly as early as 2007, and it was involved in both cyber espionage campaigns and sabotage activities aimed to destroy data and disrupt systems. Cybersecurity and Infrastructure Security Agency (CISA) in August 2020. ” reads the report published by Kaspersky.

IT

IT Systems administration Military Cybersecurity

Vyacheslav Igorevich Penchukov was sentenced to prison for his role in Zeus and IcedID operations

Security Affairs

JULY 13, 2024

The popular investigator Brian Krebs reported that Gary Warner, director of research in computer forensics at the University of Alabama at Birmingham, noted in 2014 that Tank told co-conspirators in a JabberZeus chat on July 22, 2009 that his daughter, Miloslava, was and told him Miloslava birth weight.

Information Security

Information Security IT Security

10KBLAZE exploits could affect 9 out of 10 SAP installs of more than 50k customers

Security Affairs

MAY 2, 2019

The risk of cyber attacks against SAP systems is increased after security researchers released PoC exploits for old SAP configuration flaws. In 2005 the company released the security note 8218752 and in 2009 released the security note 14080813 containing instructions on how to properly configure the access list for Gateway.

Risk

Risk Access Security Cybersecurity

North Korea-linked Lazarus APT uses a Mac variant of the Dacls RAT

Security Affairs

MAY 9, 2020

This threat actor has been active since at least 2009, possibly as early as 2007, and it was involved in both cyber espionage campaigns and sabotage activities aimed to destroy data and disrupt systems. Please vote Security Affairs for European Cybersecurity Blogger Awards – VOTE FOR YOUR WINNERS [link]. ” continues the report.

Libraries

Libraries Communications Encryption Authentication

Microsoft Buys Corp.com So Bad Guys Can’t

Krebs on Security

APRIL 7, 2020

Now, none of this was much of a security concern back in the day when it was impractical for employees to lug their bulky desktop computers and monitors outside of the corporate network. “We released a security advisory in June of 2009 and a security update that helps keep customers safe.

Sales

Sales Risk Access Security

FBI seized other domains used by the shadow eBook library Z-Library

Security Affairs

MAY 6, 2023

The library has been active since 2009, it offers e-book files in a variety of file formats, stripped of their copyright protections. The Federal Bureau of Investigation (FBI) seized multiple domains used by the illegal shadow eBook library Z-Library. Z-Library operates as a complex network of approximately 249 interrelated web domains.

Libraries

Libraries Access Cybersecurity Security

EU has imposed sanctions on foreign actors for the first time ever

Security Affairs

JULY 31, 2020

The group has been active at least since 2009, in April 2017 experts from PwC UK and BAE Systems uncovered a widespread hacking campaign, tracked as Operation Cloud Hopper , targeting managed service providers (MSPs) in multiple countries worldwide. . ” states the Council of the European Union.” ” conclude the EU.

Military

Military Cloud Government Phishing

NASA hacked! An unauthorized Raspberry Pi connected to its network was the entry point

Security Affairs

JUNE 23, 2019

The attackers exploited a Raspberry Pi device that was connected to the IT network of the NASA Jet Propulsion Laboratory (JPL) without authorization or implementing proper security measures. The Technology Security Database (ITSDB) is a web-based application used to track and manage physical assets and applications on its network.

IT

IT Data breaches Archiving Education

North Korea-linked Lazarus APT targets defense industry with ThreatNeedle backdoor

Security Affairs

FEBRUARY 25, 2021

This threat actor has been active since at least 2009, possibly as early as 2007, and it was involved in both cyber espionage campaigns and sabotage activities aimed to destroy data and disrupt systems. If you want to receive the weekly Security Affairs Newsletter for free subscribe here. Pierluigi Paganini.

Encryption

Encryption Access Phishing Passwords

Lazarus malware delivered to South Korean users via supply chain attacks

Security Affairs

NOVEMBER 16, 2020

North Korea-linked Lazarus APT group is behind new campaigns against South Korean supply chains that leverage stolen security certificates. . Security experts from ESET reported that North-Korea-linked Lazarus APT (aka HIDDEN COBRA ) is behind cyber campaigns targeting South Korean supply chains.

Financial Services

Financial Services Security Government Phishing

RockYou2021: largest password compilation of all time leaked online with 8.4 billion entries

Security Affairs

JUNE 7, 2021

If you suspect that one or more of your passwords may have been included in the RockIt2021 collection, we recommend taking the following steps in order to secure your data and avoid potential harm from threat actors: Use our personal data leak checker and leaked password checker to see if your data has been leaked in this or other breaches.

Passwords

Passwords Data breaches Personal data Phishing

Google dorks were the root cause of a catastrophic compromise of CIA’s communications

Security Affairs

NOVEMBER 5, 2018

News the security breach has happened in 2009, the Iranian intelligence infiltrated a series of websites used by the CIA to communicate with agents worldwide, including Iran and China. Security Affairs – intelligence, spies). According to Yahoo ! ” reported Yahoo News. ” reported Yahoo News. Pierluigi Paganini.

Communications

Communications Government Security IT

Experts discovered a Kernel Level Privilege Escalation in Oracle Solaris

Security Affairs

JULY 26, 2018

Security expert discovered Kernel Level Privilege Escalation vulnerability in the Availability Suite Service component of Oracle Solaris 10 and 11.3. ” reads the security advisory published by the company. ” reads the security advisory published by the company. ” reads the analysis published by Trustwave.

Authentication

Authentication Security IT

China-linked APT10 group behind new attacks on the Japanese media sector

Security Affairs

SEPTEMBER 15, 2018

In July, security researchers from FireEye uncovered and blocked a campaign carried out by Chinese APT10 group (aka Menupass, and Stone Panda) aimed at Japanese media sector. Security Affairs – Kelihos, malware ). Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Phishing

Phishing Passwords Encryption Communications

Microsoft: North Korea-linked Zinc APT targets security experts

North Korea-linked Zinc group posed as Samsung recruiters to target security firms

Webinars

Trending Sources

Microsoft Patches 12-Year-Old Vulnerability

Webinars

More than 16,000 Ivanti VPN gateways still vulnerable to RCE CVE-2024-21894

SAP Security Patch Day for May 2019 fixes many missing authorization checks

RockYou2024 compilation containing 10 billion passwords was leaked online

10-year-old vulnerability in Avaya VoIP Phones finally fixed

Facebook's '10 Year Challenge' Is Just a Harmless Meme—Right?

Experts found 20 Million tax records for Russian citizens exposed online

538 Million Weibo users’ records being sold on Dark Web

North Korea-linked Lazarus group targets cybersecurity experts with Trojanized IDA Pro

IBM releases open-source toolkits implementing FHE to process data while encrypted

Belgium telecom operators Proximus and Orange drop Huawei

Administrators of bulletproof hosting sentenced to prison in the US

North Korea-linked APT group BeagleBoyz targets banks

U.S. Internet Leaked Years of Internal, Customer Emails

Symantec uncovered the link between China-Linked Thrip and Billbug groups

Report: Missouri Governor’s Office Responsible for Teacher Data Leak

North Korea-linked Lazarus APT targets the COVID-19 research

PwnKit: Local Privilege Escalation bug affects major Linux distros

China-linked APT10 leverages ZeroLogon exploits in recent attacks

Maryland Department of Labor discloses a data breach

PII Belonging to Indian Citizens, Including their Aadhaar IDs, Offered for Sale on the Dark Web

DHS issued an alert on attacks aimed at Managed Service Providers

Colorado Department of Higher Education (CDHE) discloses data breach after ransomware attack

CISA urges to fix actively exploited Firefox zero-days by March 21

The man behind Cardplanet credit card market sentenced to 9 years in prison

China planted tiny chips on US computers for cyber espionage

Experts link attack on Chilean interbank network Redbanc NK Lazarus APT

Orchard botnet uses Bitcoin Transaction info to generate DGA domains

North Korea-linked Lazarus APT targets the IT supply chain

Vyacheslav Igorevich Penchukov was sentenced to prison for his role in Zeus and IcedID operations

10KBLAZE exploits could affect 9 out of 10 SAP installs of more than 50k customers

North Korea-linked Lazarus APT uses a Mac variant of the Dacls RAT

Microsoft Buys Corp.com So Bad Guys Can’t

FBI seized other domains used by the shadow eBook library Z-Library

EU has imposed sanctions on foreign actors for the first time ever

NASA hacked! An unauthorized Raspberry Pi connected to its network was the entry point

North Korea-linked Lazarus APT targets defense industry with ThreatNeedle backdoor

Lazarus malware delivered to South Korean users via supply chain attacks

RockYou2021: largest password compilation of all time leaked online with 8.4 billion entries

Google dorks were the root cause of a catastrophic compromise of CIA’s communications

Experts discovered a Kernel Level Privilege Escalation in Oracle Solaris

China-linked APT10 group behind new attacks on the Japanese media sector

Stay Connected