Libraries, Passwords and Security - Information Management Today

npm libraries coa and rc. have been hijacked to deliver password-stealing malware

Security Affairs

NOVEMBER 5, 2021

Two popular npm libraries, coa and rc. have been hijacked, threat actors replaced them with versions laced with password-stealing malware. The security team of the npm JavaScript package warns that two popular npm libraries, coa and rc. The post npm libraries coa and rc. while compromised rc versions are 1.2.9,

Libraries

Libraries Passwords Access Security

Internet Archive data breach impacted 31M users

Security Affairs

OCTOBER 11, 2024

The Internet Archive disclosed a data breach, the security incident impacted more than 31 million users of its “The Wayback Machine.” 31M records breached The breach exposed user records including email addresses, screen names and bcrypt password hashes. Internet Archive hacked. 54% were already in @haveibeenpwned.

Archiving

Archiving Data breaches Passwords File names

Rhysida ransomware gang is auctioning data stolen from the British Library

Security Affairs

NOVEMBER 20, 2023

The Rhysida ransomware group claimed responsibility for the recent cyberattack on the British Library that has caused a major IT outage. The Rhysida ransomware gang added the British Library to the list of victims on its Tor leak site. It is one of the largest libraries in the world. ” reads the announcement.

Libraries

Libraries Ransomware Manufacturing Education

Webinars

How to Achieve High-Accuracy Results When Using LLMs

MORE WEBINARS

A backdoor mechanism found in tens of Ruby libraries

Security Affairs

AUGUST 20, 2019

Maintainers of the RubyGems package repository have removed 18 malicious versions of 11 Ruby libraries that contained a backdoor. Maintainers of the RubyGems package repository have discovered a backdoor mechanism in 18 malicious versions of 11 Ruby libraries. It overloaded the #authenticate method on the Identity class.

Libraries

Libraries Mining Passwords Authentication

Backdoor mechanism found in Ruby strong_password library

Security Affairs

JULY 8, 2019

The developer Tute Costa found a backdoor in the Ruby library during regular security audits before deploying his code in the production environment. The developer Tute Costa found a backdoor in the Ruby library during regular security audits. The attacker created a new version of the library (version 0.0.7

Libraries

Libraries Passwords Security IT

Trend Micro addressed two DLL Hijacking flaws in Trend Micro Password Manager

Security Affairs

AUGUST 17, 2019

Trend Micro addressed 2 DLL hijacking flaws in Trend Micro Password Manager that could allow malicious actors to escalate privileges and much more. “ SafeBreach Labs discovered a new vulnerability in Trend Micro Password Manager software.” ” reads the security advisory published by Trend Micro. .

Passwords

Passwords Authentication Libraries Security

Security Affairs most-read cyber stories of 2021

Security Affairs

JANUARY 1, 2022

The development team behind the Linux Mint distro has fixed a security flaw that could have allowed users to bypass the OS screensaver. email and password pairs leaked online. The Largest compilation of emails and passwords (COMB), more than 3.2 A zero-day exploit for Log4j Java library could have a tsunami impact on IT giants.

Security

Security Libraries Ransomware Passwords

CISA publishes malware analysis reports on samples targeting Pulse Secure devices

Security Affairs

AUGUST 26, 2021

Cybersecurity and Infrastructure Security Agency (CISA) released five malware analysis reports (MARs) related to samples found on compromised Pulse Secure devices. CISA published five malware analysis reports (MARs) related to samples found on compromised Pulse Secure devices. v1: Pulse Connect Secure MAR-10334057-3.v1:

Security

Security Authentication Libraries Passwords

Epic Manchego gang uses Excel docs that avoid detection

Security Affairs

SEPTEMBER 7, 2020

A recently discovered cybercrime gang, tracked as Epic Manchego , is using a new technique to create weaponized Excel files that are able to bypass security checks. The phishing messages carry weaponized Excel documents that are able to bypass security checks and that had low detection rates. EPPlus is such a tool.”

Libraries

Libraries Phishing Passwords Security

Threat actors hacked the Dropbox Sign production environment

Security Affairs

MAY 2, 2024

Threat actors breached the Dropbox Sign production environment and accessed customer email addresses and hashed passwords Cloud storage provider DropBox revealed that threat actors have breached the production infrastructure of the DropBox Sign eSignature service and gained access to customer information and authentication data.

Passwords

Passwords Authentication Access Phishing

New malware Cthulhu Stealer targets Apple macOS users

Security Affairs

AUGUST 23, 2024

Cato Security found a new info stealer, called Cthulhu Stealer, that targets Apple macOS and steals a wide range of information. Cado Security researchers have discovered a malware-as-a-service (MaaS) targeting macOS users dubbed Cthulhu Stealer. ” reads the report published by Cado Security.

Passwords

Passwords Blockchain Libraries Archiving

Two Linux botnets already exploit Log4Shell flaw in Log4j

Security Affairs

DECEMBER 12, 2021

Immediately after the disclosure of the Log4Shell flaw in Log4j library threat actors started including the exploit code in Linux botnets. Researchers at NetLab 360 reported that their Anglerfish and Apacket honeypots were already hit by attacks attempting to trigger the Log4Shell flaw in the Log4j library. Pierluigi Paganini.

Honeypots

Honeypots Libraries Passwords Authentication

Security Affairs newsletter Round 453 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

JANUARY 7, 2024

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Artificial Intelligence

Artificial Intelligence Security Data breaches Ransomware

Hundreds of millions of Android users exposed to hack due to CVE-2020-8913

Security Affairs

DECEMBER 4, 2020

Hundreds of millions of Android users are potentially exposed to the risk of hack due to the use of Android Play Core Library versions vulnerable to CVE-2020-8913. The CVE-2020-8913 flaw is a local, arbitrary code execution vulnerability that resides exists in the SplitCompat.install endpoint in Android’s Play Core Library.

Libraries

Libraries e-Delivery Risk Passwords

Security Affairs newsletter Round 370 by Pierluigi Paganini

Security Affairs

JUNE 20, 2022

A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs for free in your email box. Security Affairs is one of the finalists for the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS. To nominate, please visit:?. Pierluigi Paganini.

Security

Security Ransomware Libraries Encryption

Hackers target Docker servers to deploy the new Kinsing cryptocurrency miner

Security Affairs

APRIL 6, 2020

Cloud security firm Aqua Security uncovered a hacking campaign carried out during the past months, hackers are scanning the Internet for Docker servers running API ports exposed without a password. ” reads the post published by Aqua Security. “The spre. Pierluigi Paganini. adrotate banner=”13″].

Mining

Mining Libraries Cloud Communications

Security Affairs newsletter Round 439 by Pierluigi Paganini – International edition

Security Affairs

OCTOBER 1, 2023

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Artificial Intelligence

Artificial Intelligence Security Ransomware Data breaches

Experts released PoC exploit for critical Progress Software OpenEdge bug

Security Affairs

MARCH 11, 2024

ai have published technical details and a proof-of-concept (PoC) exploit for the critical security flaw CVE-2024-1403 in Progress Software OpenEdge Authentication Gateway and AdminServer. “The Progress OpenEdge team recently identified a security vulnerability in OpenEdge Release 11.7.18 Researchers from Horizon3.ai

Authentication

Authentication Passwords Libraries Access

Security Affairs newsletter Round 402 by Pierluigi Paganini

Security Affairs

JANUARY 15, 2023

Every week the best security articles from Security Affairs free for you in your email box. The post Security Affairs newsletter Round 402 by Pierluigi Paganini appeared first on Security Affairs. If you want to also receive for free the newsletter with the international press subscribe here. Pierluigi Paganini.

Security

Security Ransomware Libraries Phishing

FBI arrested a Russian citizen suspected to be the mastermind of Deer.io

Security Affairs

MARCH 10, 2020

Individuals can also buy computer files, financial information, PII, and usernames and passwords taken from computers infected with malicious software (malware) located both in the U.S. Social Security Numbers, dates of birth, and victim addresses. appeared first on Security Affairs. storefront.” ” The DEER.IO

Sales

Sales Passwords Libraries Authentication

Zerologon attack lets hackers to completely compromise a Windows domain

Security Affairs

SEPTEMBER 14, 2020

“An elevation of privilege vulnerability exists when an attacker establishes a vulnerable Netlogon secure channel connection to a domain controller, using the Netlogon Remote Protocol ( MS-NRPC ). After that, the attacker can use this new password to take control over the domain controller and steal credentials of a domain admin.”

Authentication

Authentication Passwords Libraries Paper

Hackers are using Zerologon exploits in attacks in the wild

Security Affairs

SEPTEMBER 24, 2020

The IT giant is urging Windows administrators to install the released security updates as soon as possible. — Microsoft Security Intelligence (@MsftSecIntel) September 24, 2020. We strongly recommend customers to immediately apply security updates for CVE-2020-1472. Pierluigi Paganini.

Authentication

Authentication Passwords Analytics Libraries

Dropbox discloses unauthorized access to 130 GitHub source code repositories

Security Affairs

NOVEMBER 2, 2022

Dropbox disclosed a security breach, threat actors gained unauthorized access to 130 of its source code repositories on GitHub. The company pointed out that no one’s content, passwords, or payment information were accessed, it also remarked that the issue was quickly resolved. ” reads the advisory published by the company.

Access

Access Phishing Passwords Authentication

Thousands of servers easy to hack due to a LibSSH Flaw

Security Affairs

OCTOBER 17, 2018

The Libssh library is affected by a severe flaw that could be exploited by attackers to completely bypass authentication and take over a vulnerable server. ” reads the security advisory. Experts pointed out that GitHub and OpenSSH implementations of the libssh library are not affected by the flaw. Pierluigi Paganini.

Libraries

Libraries Authentication Passwords Security

Scraped data of 500 million LinkedIn users being sold online, 2 million records leaked as proof

Security Affairs

APRIL 8, 2021

To see if your email address has been exposed in this data leak or other security breaches, use our personal data leak checker with a library of 15+ billion breached records. Brute-forcing the passwords of LinkedIn profiles and email addresses. Change the password of your LinkedIn and email accounts. Pierluigi Paganini.

Passwords

Passwords Phishing Personal data Libraries

Security Affairs newsletter Round 418 by Pierluigi Paganini – International edition

Security Affairs

MAY 6, 2023

Every week the best security articles from Security Affairs are free for you in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Security

Security Libraries Data breaches Ransomware

Unsecured Git server exposed Nissan North America

Security Affairs

JANUARY 8, 2021

– Nissan internal core mobile library – Nissan/Infiniti NCAR/ICAR services – client acquisition and retention tools – sale / market research tools + data – various marketing tools – the vehicle logistics portal (2/n) — tillie, doer of crime (@antiproprietary) January 4, 2021. Pierluigi Paganini.

Libraries

Libraries Marketing Sales Passwords

XCSSET MacOS malware targets Telegram, Google Chrome data and more

Security Affairs

JULY 25, 2021

Security researchers from Trend Micro continues to monitor the evolution of the XCSSET macOS malware, new variants are able to steal login information from multiple apps, including Telegram and Google Chrome, and send them to C2. This differs from the practice on iOS. ” reads the analysis published by Trend Micro. Pierluigi Paganini.

Libraries

Libraries Passwords Archiving Access

Cisco addresses a High-severity flaw in CMX Software

Security Affairs

JANUARY 14, 2021

Cisco addressed tens of high-severity flaws, including some flaws in the AnyConnect Secure Mobility Client and in its small business routers. This week Cisco released security updates to address 67 high-severity vulnerabilities, including issues affecting Cisco’s AnyConnect Secure Mobility Client and small business routers (i.e.

Passwords

Passwords Authentication Analytics Libraries

Symbiote, a nearly-impossible-to-detect Linux malware?

Security Affairs

JUNE 9, 2022

Joint research conducted by security firms Intezer and BlackBerry uncovered a new Linux threat dubbed Symbiote. For this reason, security researchers defined this threat as nearly impossible to detect. For this reason, security researchers defined this threat as nearly impossible to detect. ” continues the report.

Libraries

Libraries Passwords Security IT

CISA adds ownCloud and Google Chrome bugs to its Known Exploited Vulnerabilities catalog

Security Affairs

DECEMBER 1, 2023

Cybersecurity and Infrastructure Security Agency (CISA) added ownCloud and Google Chrome vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog. Skia is an open-source 2D graphics library that provides common APIs that work across a variety of hardware and software platforms. x before 0.2.1 x before 0.3.1.

IT

IT Libraries Cybersecurity Passwords

Multiple flaws in Netgear Nighthawk R6700v3 router are still unpatched

Security Affairs

DECEMBER 31, 2021

CVE-2021-45077 : Plaintext Password Storage. Researchers discovered multiple instances of known vulnerable jQuery libraries (such as jquery 1.4.2), for this reason, they are urging to update them to the latest available versions. CVE-2021-23147 : Insufficient UART Protection Mechanisms. Pierluigi Paganini.

Communications

Communications Libraries Encryption Passwords

Message Decryption Key for Signal Desktop application stored in plain text

Security Affairs

OCTOBER 23, 2018

The key is stored in plain text to a local file called %AppData%Signalconfig.json on Windows PCs and on a Mac at ~/Library/Application Support/Signal/config.json. The issue could be easily addressed by requiring users to set a password that would be used to encrypt the key the database encryption key. Source Bleeping Computer.

Encryption

Encryption Passwords Libraries Cybersecurity

WAGO Industrial Switches affected by multiple flaws

Security Affairs

JUNE 13, 2019

A security expert at SEC Consult discovered that some WAGO industrial managed switches are affected by several serious vulnerabilities. A security researcher at consulting company SEC Consult discovered several vulnerabilities in some models of WAGO industrial switches. ” reads the security advisory. Pierluigi Paganini.

Libraries

Libraries Passwords IoT Security

Breaking the Barriers to a Password-Free Life in Enterprise: Meet SafeNet eToken Fusion NFC PIV security key

Thales Cloud Protection & Licensing

MARCH 12, 2025

Breaking the Barriers to a Password-Free Life in Enterprise: Meet SafeNet eToken Fusion NFC PIV security key madhav Thu, 03/13/2025 - 06:46 As large organizations increasingly shift towards passwordless solutions, the benefits are clear: enhanced user experience, improved security, and significant cost savings.

Passwords

Passwords Authentication Security Compliance

Data of 2 million MyFreeCams users sold on a hacker forum

Security Affairs

JANUARY 22, 2021

Stolen records belong to 2 million user records of MyFreeCams Premium members, they include usernames, email addresses, MyFreeCams Token (MFC Token) amounts, and passwords in plain text. In response to the incident, MyFreeCams reset the passwords of impacted users. ” reported CyberNews. ” continues CyberNews.

Sales

Sales Passwords Marketing Libraries

Security Affairs newsletter Round 211 – News of the week

Security Affairs

APRIL 28, 2019

The best news of the week with Security Affairs. jQuery JavaScript library flaw opens the doors for attacks on hundreds of millions of websites. Bodybuilding.com forces password reset after a security breach. The post Security Affairs newsletter Round 211 – News of the week appeared first on Security Affairs.

Security

Security IoT Ransomware Libraries

Threat actors scrape 600 million LinkedIn profiles and are selling the data online – again

Security Affairs

JULY 12, 2021

LinkedIn’s refusal to treat malicious scraping as a security problem can potentially allow cybercriminals to gather data on new victims with impunity. To see if any of your online accounts were exposed in previous security breaches, use our personal data leak checker with a library of 15+ billion breached records.

Archiving

Archiving Passwords Data collection Sales

Emotet campaign hits Lithuania’s National Public Health Center and several state institutions

Security Affairs

DECEMBER 31, 2020

Security Center under the Ministry of National Defense recorded a large number of virus-infected e-mails addressed to several state institutions. The Emotet campaign uses malicious emails that attempt to trick recipients into opening the zipped archive with the password included in the message. Security Center. since August.

Passwords

Passwords Archiving Libraries Government

GOOGLE FIXED THE FIFTH CHROME ZERO-DAY OF 2023

Security Affairs

SEPTEMBER 28, 2023

Google released security updates to address a new actively exploited zero-day vulnerability, tracked as CVE-2023-5217, in the Chrome browser. Google on Wednesday released security updates to address a new actively exploited zero-day flaw in the Chrome browser which is tracked as CVE-2023-5217.

Libraries

Libraries Passwords Security IT

Astaroth Trojan relies on legitimate os and antivirus processes to steal data

Security Affairs

FEBRUARY 16, 2019

Researchers at Cybereason’s Nocturnus team have uncovered a new Astaroth Trojan campaign that is currently exploiting the Avast antivirus and security software developed by GAS Tecnologia to steal information and drop malicious modules. exe process of a security solution developed by GAS Tecnologia. ” concludes Cybereason.

Passwords

Passwords Archiving Libraries Security

Experts warn of critical Zero-Day in Apache OfBiz

Security Affairs

DECEMBER 28, 2023

SonicWall researchers pointed out that the Apache OfBiz is part of the supply chain of prominent software, such as Atlassian’s JIRA (used by over 120K companies ). “As a result, like with many supply chain libraries, the impact of this vulnerability could be severe if leveraged by threat actors.”

Authentication

Authentication Libraries Passwords Information Security

CERT France – Pysa ransomware is targeting local governments

Security Affairs

MARCH 19, 2020

CERT France cyber-security agency is warning about a new wave of ransomware attack that is targeting the networks of local government authorities. CERT-FR’s alert states that the Pysa ransomware code based on public Python libraries. “ “The password database was leaked shortly before the attack.

Ransomware

Ransomware Government Encryption Passwords

XMR crypto miner switches from arm IoT devices to X86/I686 Intel servers

Security Affairs

SEPTEMBER 2, 2019

. “The malware is uploaded as gzip compressed tarball archives of binaries, scripts, and libraries. The libraries reside under the directory c/lib I thought it would be required to run the binaries in the tarball , but the binaries are compiled statically, so the libraries are extraneous.” ” wrote Cashdollar.

IoT

IoT Honeypots Libraries Archiving

npm libraries coa and rc. have been hijacked to deliver password-stealing malware

Internet Archive data breach impacted 31M users

Webinars

Trending Sources

Rhysida ransomware gang is auctioning data stolen from the British Library

Webinars

A backdoor mechanism found in tens of Ruby libraries

Backdoor mechanism found in Ruby strong_password library

Trend Micro addressed two DLL Hijacking flaws in Trend Micro Password Manager

Security Affairs most-read cyber stories of 2021

CISA publishes malware analysis reports on samples targeting Pulse Secure devices

Epic Manchego gang uses Excel docs that avoid detection

Threat actors hacked the Dropbox Sign production environment

New malware Cthulhu Stealer targets Apple macOS users

Two Linux botnets already exploit Log4Shell flaw in Log4j

Security Affairs newsletter Round 453 by Pierluigi Paganini – INTERNATIONAL EDITION

Hundreds of millions of Android users exposed to hack due to CVE-2020-8913

Security Affairs newsletter Round 370 by Pierluigi Paganini

Hackers target Docker servers to deploy the new Kinsing cryptocurrency miner

Security Affairs newsletter Round 439 by Pierluigi Paganini – International edition

Experts released PoC exploit for critical Progress Software OpenEdge bug

Security Affairs newsletter Round 402 by Pierluigi Paganini

FBI arrested a Russian citizen suspected to be the mastermind of Deer.io

Zerologon attack lets hackers to completely compromise a Windows domain

Hackers are using Zerologon exploits in attacks in the wild

Dropbox discloses unauthorized access to 130 GitHub source code repositories

Thousands of servers easy to hack due to a LibSSH Flaw

Scraped data of 500 million LinkedIn users being sold online, 2 million records leaked as proof

Security Affairs newsletter Round 418 by Pierluigi Paganini – International edition

Unsecured Git server exposed Nissan North America

XCSSET MacOS malware targets Telegram, Google Chrome data and more

Cisco addresses a High-severity flaw in CMX Software

Symbiote, a nearly-impossible-to-detect Linux malware?

CISA adds ownCloud and Google Chrome bugs to its Known Exploited Vulnerabilities catalog

Multiple flaws in Netgear Nighthawk R6700v3 router are still unpatched

Message Decryption Key for Signal Desktop application stored in plain text

WAGO Industrial Switches affected by multiple flaws

Breaking the Barriers to a Password-Free Life in Enterprise: Meet SafeNet eToken Fusion NFC PIV security key

Data of 2 million MyFreeCams users sold on a hacker forum

Security Affairs newsletter Round 211 – News of the week

Threat actors scrape 600 million LinkedIn profiles and are selling the data online – again

Emotet campaign hits Lithuania’s National Public Health Center and several state institutions

GOOGLE FIXED THE FIFTH CHROME ZERO-DAY OF 2023

Astaroth Trojan relies on legitimate os and antivirus processes to steal data

Experts warn of critical Zero-Day in Apache OfBiz

CERT France – Pysa ransomware is targeting local governments

XMR crypto miner switches from arm IoT devices to X86/I686 Intel servers

Stay Connected