БЛОГ

Archive for the ‘cybercrime/malcode’ category: Page 157

Nov 26, 2019

Microsoft says new Dexphot malware infected more than 80,000 computers

Posted by in categories: cryptocurrencies, cybercrime/malcode

Microsoft security engineers detailed today a new malware strain that has been infecting Windows computers since October 2018 to hijack their resources to mine cryptocurrency and generate revenue for the attackers.

Named Dexphot, this malware reached its peak in mid-June this year, when its botnet reached almost 80,000 infected computers.

Since then, the number of daily infections has been slowly going down, as Microsoft claims it deployed countermeasures to improve detections and stop attacks.

Nov 26, 2019

Pemex Still Suffers Cyberattack Fallout

Posted by in categories: cybercrime/malcode, encryption

O.o…


The communications system of Mexico’s oil giant Pemex is still suffering the lingering effects of a cyberattack that occurred earlier this month, sources from the company told Bloomberg.

A ransomware attack caused administrative operations at Pemex to grind to a halt on November 10, with the company announcing the resumption of work soon after, saying the actual attack had been prevented.

Continue reading “Pemex Still Suffers Cyberattack Fallout” »

Nov 25, 2019

Hackers demand $14 million from nursing homes in ransomware attack

Posted by in categories: biotech/medical, cybercrime/malcode

Some facilities unable to access patient records, order drugs or pay employees after their computers were hijacked.

Nov 25, 2019

T-Mobile Reveals A Security Breach Affecting Prepaid Users

Posted by in category: cybercrime/malcode

Adding one more to the count of data breaches this year, now joins the cellular firm T-Mobile. Recently, T-Mobile has disclosed a security breach impacting some of its customers.

T-Mobile Disclosed Security Breach

According to the security notice shared by T-Mobile, the firm has (once again) suffered a security breach. The incident has reportedly impacted prepaid consumers.

Nov 25, 2019

A hacking group is hijacking Docker systems with exposed API endpoints

Posted by in category: cybercrime/malcode

It’s almost 2020 and some sysadmins are still leaving Docker admin ports exposed on the internet.

Nov 25, 2019

Utilities Targeted in Cyberattacks Identified

Posted by in category: cybercrime/malcode

More than a dozen U.S. utilities that were targets in a recent wave of cyberattacks have been identified by The Wall Street Journal. Some of the utilities, most of which are relatively small, are located near dams, locks and other critical infrastructure.

These electricity providers were singled out in a hacking campaign that was brought to light in August by researchers at a Silicon Valley cybersecurity company. But little was known about the attacks until now.

Nov 22, 2019

Google’s Android bug bounty program will now pay out $1.5 million

Posted by in categories: computing, cybercrime/malcode, mobile phones

Hacking the Pixel’s Titan M chip and finding exploits in the developer preview versions of Android will earn you the big bucks.

Nov 21, 2019

Iran’s APT33 Hackers Are Targeting Industrial Control Systems

Posted by in category: cybercrime/malcode

The recent shift away from IT networks raises the possibility that Iran’s APT33 is exploring physically disruptive cyberattacks on critical infrastructure.

Nov 21, 2019

New Roboto botnet emerges targeting Linux servers running Webmin

Posted by in category: cybercrime/malcode

The botnet’s main function is the ability to conduct DDoS attacks, a feature it has not used yet.

Nov 21, 2019

Google really wants you to hack the Pixel’s Titan M security chip

Posted by in categories: cybercrime/malcode, encryption, mobile phones

Google has increased the maximum prize for its Android bug bounty program to $1 million for anyone who can compromise the Titan M security chip found in its Pixel phones. The top prize is for a “full chain remote code execution exploit with persistence” of the dedicated security chip. On top of that, there’s an additional 50 percent bonus if a security researcher is able to find an exploit on specific developer preview versions of Android, resulting in a potential prize of $1.5 million. The new rewards take effect starting today.

Introduced with 2018’s Pixel 3, Google’s Titan M security chip cordons off your smartphone’s most sensitive data from its main processor to protect against certain attacks. Google says the chip offers “on-device protection for login credentials, disk encryption, app data, and the integrity of the operating system.” Since its introduction, the chip has also been integrated with Android’s security key functionality where it’s used to store a person’s FIDO credentials. Suffice it to say, the integrity of the Titan M is an important element for the security of recent Pixel devices.