Cybersecurity Attacks Archives - Page 18 of 41

Ryuk ransomware and Trickbot operators target U.S. hospitals and healthcare providers

Cybersecurity Attacks, Malware / Frank Crast / October 29, 2020 / banking, CISA, COVID-19, Emotet, FBI, healthcare, HHS, HPH, Ransomware, Ryuk, Trickbot, Trojan

According to U.S. government cybersecurity experts, Ryuk ransomware and Trickbot operators are targeting U.S. hospitals and healthcare providers.

Ryuk ransomware and Trickbot operators target U.S. hospitals and healthcare providers Read More »

Cyberattacks against machine learning systems and the new Adversarial ML Threat Matrix

Cybersecurity Articles, Cybersecurity Attacks, Security Monitoring / Frank Crast / October 27, 2020 / AI, Artificial Intelligence, ATT&CK, Machine Learning, MITRE, Threat Matrix

In the wake of an increase in cyber attacks against machine learning (ML) systems, Microsoft along with MITRE and contributions from 11 other organizations, have released the Adversarial ML Threat Matrix.

Cyberattacks against machine learning systems and the new Adversarial ML Threat Matrix Read More »

Microsoft takes down TrickBot malware infrastructure

Cybercrime, Cybersecurity Attacks, Malware / Frank Crast / October 12, 2020 / banking, Emotet, malware, Trickbot

Microsoft has worked with telecommunications providers worldwide to take down TrickBot malware infrastructure. TrickBot traces its roots back to 2016 as a modular banking trojan designed to steal information and distribute other malware to infected systems.

Microsoft takes down TrickBot malware infrastructure Read More »

APT actors exploit legacy internet-facing vulnerabilities in combination with Zerologon to target organizations

Cybersecurity Articles, Cybersecurity Attacks, Vulnerabilities & Exploits / Frank Crast / October 10, 2020 / BIG-IP, CISA, Citrix, CVE-2018-13379, CVE-2019-11510, CVE-2019-19781, CVE-2020-1472, CVE-2020-15505, CVE-2020-2021, CVE-2020-5902, F5, FortiGuard, FortiOS, MobileIron, Netscaler, Palo Alto Networks, Pulse Secure, Zerologon

Advanced persistent threat actors (APTs) are exploiting multiple legacy vulnerabilities in combination with newer “Zerologon” to target government networks, critical infrastructure, and elections organizations.

APT actors exploit legacy internet-facing vulnerabilities in combination with Zerologon to target organizations Read More »

Ttint IoT botnet exploits 2 zero-days to spread RAT

Cybersecurity Attacks, Internet of Things (IoT), Malware, Network Security / Frank Crast / October 5, 2020 / botnet, malware, Netlab, RAT, Trojan, Ttint

A new IoT botnet dubbed Ttint now targets two Tenda router 0-day vulnerabilities to spread a Remote Access Trojan (RAT) based on Mirai botnet source code.

Ttint IoT botnet exploits 2 zero-days to spread RAT Read More »

GADOLINIUM threat actors use cloud services and open source tools in cyberattacks

Cloud Security, Cybersecurity Articles, Cybersecurity Attacks, Malware / Frank Crast / October 2, 2020 / C2, COVID-19, GADOLINIUM, GitHub, KRYPTON, Microsoft, PowerSHell, ZINC

Security experts from Microsoft have observed a cyber threat actor dubbed GADOLINIUM that uses new attack techniques via cloud services and open source tools.

GADOLINIUM threat actors use cloud services and open source tools in cyberattacks Read More »

UHS hospitals hit by reported Ryuk ransomware cyberattack

Cybersecurity Attacks, Malware / Frank Crast / September 28, 2020 / healthcare, malware, Ransomware, UHS

Universal Health Services (UHS) hospitals was allegedly hit by a Ryuk ransomware cyberattack early Sunday morning, some sources say.

UHS hospitals hit by reported Ryuk ransomware cyberattack Read More »

The top 3 endpoint threats used in 2020 cyberattacks

Cybersecurity Articles, Cybersecurity Attacks, Endpoint Security, Malware, System Hardening, Vulnerabilities & Exploits / Frank Crast / September 22, 2020 / ATT&CK, BlueKeep, Cisco, CobaltStrike, credentials, CVE-2019-0708, Divergent, Emotet, FASTCash, GALLIUM, HIDDEN COBRA, IOT, Metasploit, Mimikatz, MITRE, PowerSHell, Powersploit

Cybersecurity criminals are continuing to change threat tactics by leveraging more fileless malware and duel-use tools to attack organizations.

The top 3 endpoint threats used in 2020 cyberattacks Read More »

Chinese threat actors targeting U.S. government agencies and these 4 CVEs

Cybersecurity Articles, Cybersecurity Attacks, Vulnerabilities & Exploits / Frank Crast / September 15, 2020 / BIG-IP, Citrix, CVE-2019-11510, CVE-2019-19781, CVE-2020-0688, CVE-2020-5902, DHS, Exchange, F5, Microsoft, MSS, Pulse Secure, VPN

Chinese Ministry of State Security (MSS)-affiliated cyber threat actors are targeting U.S. government agencies, as well as exploiting four popular vulnerabilities over the past 12 months.

Chinese threat actors targeting U.S. government agencies and these 4 CVEs Read More »

2020 Threat Landscape Report reveals new themes and evolving threats

Cybersecurity Articles, Cybersecurity Attacks, Internet of Things (IoT), Malware / Frank Crast / September 13, 2020 / AgentTesla, Android, banking, Coronavirus, COVID-19, Cryptocurrency, Dridex, Emotet, EOL, Fileless, FritzFrog, IOT, KryptoCibule, Maze, Snake, Trickbot, VPN

Security firm Bitdefender published its mid-year Threat Landscape Report 2020 that reveals how cybersecurity threats and malware play on the pandemic theme.

2020 Threat Landscape Report reveals new themes and evolving threats Read More »