Cyberattack Archives

Attackers exploit VMware ESXi RCE vulnerability to deliver ESXiArgs ransomware

Cybersecurity Attacks, Ransomware / Frank Crast / February 7, 2023 / CERT-FR, CVE-2021-21974, Cyberattack, ESXi, ESXiArgs, OpenSLP, VMware

French authorities and security researchers warn attackers have been exploiting two-year old VMware ESXi remote code execution (RCE) vulnerability (CVE-2021-21974) to deliver ESXiArgs ransomware.

Attackers exploit VMware ESXi RCE vulnerability to deliver ESXiArgs ransomware Read More »

NoName057(16) hacker group launched DDoS attacks against 2023 Czech presidential election linked websites

Application Security, Cybersecurity Attacks / Frank Crast / January 21, 2023 / Cyberattack, Czech, DDoS, DDosia, Elections, NoName057(16)

A Russian affiliated hacker group dubbed NoName057(16) has launched DDoS attacks against 2023 Czech presidential election.

NoName057(16) hacker group launched DDoS attacks against 2023 Czech presidential election linked websites Read More »

The Guardian closes offices after ransomware attack last month

Cybersecurity Attacks, Malware, Ransomware / Frank Crast / January 4, 2023 / Cyberattack, malware, Ransomware, The Guardian

Leading British newspaper The Guardian has temporarily closed offices after a ransomware attack reported last month.

The Guardian closes offices after ransomware attack last month Read More »

MCCrash botnet launches DDoS attacks against Minecraft servers

Cybersecurity Attacks, Malware / Frank Crast / December 21, 2022 / botnet, Cyberattack, DDoS, DEV-1028, IOT, MCCrash, Microsoft, Minecraft

Microsoft researchers have detected a cross-platform botnet designed to infect Windows, Linux, and IoT devices. The botnet dubbed “MCCrash” then launches distributed denial of service (DDoS) attacks against private Minecraft servers.

MCCrash botnet launches DDoS attacks against Minecraft servers Read More »

Cybercriminals use proxies and configurations to launch credential stuffing attacks

Application Security, Cybersecurity Attacks, Password Management / Frank Crast / August 22, 2022 / CDN, Cyberattack, Cybersecurity Threat Center, FBI, MFA, OWASP, passwords, SSL

The Federal Bureau of Investigation (FBI) have spotted cybercriminals using proxies and configurations to launch credential stuffing attacks against US companies.

Cybercriminals use proxies and configurations to launch credential stuffing attacks Read More »

Symbiote: Linux malware ‘nearly impossible to detect’ threat

Cybersecurity Attacks, Malware / Frank Crast / June 11, 2022 / Blackberry, BPF, Cyberattack, Cybersecurity Threat Center, Linux, malware, Symbiote

Researchers have discovered a new Linux malware dubbed Symbiote, a ‘nearly impossible to detect’ threat.

Symbiote: Linux malware ‘nearly impossible to detect’ threat Read More »

Shutterfly targeted with ransomware attack

Cybersecurity Attacks, Malware / Frank Crast / December 27, 2021 / Conti, Cyberattack, malware, Ransomware

California-based photography and image sharing company Shutterfly LLC has been targeted in a ransomware attack.

Shutterfly targeted with ransomware attack Read More »

FBI: Cuba ransomware compromised 49 critical infrastructure entities

Cybersecurity Attacks, Malware / Frank Crast / December 4, 2021 / CobaltStrike, Cuba, Cyberattack, FBI, PowerSHell, PsExec, Ransomware, RDP

The Federal Bureau of Investigation (FBI) has issued a cybersecurity alert for ransomware attacks that have compromised 49 entities in five critical infrastructure sectors, such as financial, government, healthcare, manufacturing, and information technology.

FBI: Cuba ransomware compromised 49 critical infrastructure entities Read More »

Acer systems hit with second cyberattack in the past week

Cybersecurity Attacks / Frank Crast / October 18, 2021 / Acer, Cyberattack, Desorden, Taiwan

Acer systems based in Taiwan have been hit with a cyberattack, nearly a week after Acer offices in India were hit by a similar attack launched by the same cybergang.

Acer systems hit with second cyberattack in the past week Read More »

Microsoft: Nobelium cybergang deploys FoggyWeb backdoor to target AD FS servers

Cybersecurity Attacks, Malware / Frank Crast / September 28, 2021 / Active Directory, AD FS, backdoor, Cyberattack, FoggyWeb, malware, Microsoft, Nobelium

Microsoft has warned that Nobelium threat actors are using a new backdoor malware dubbed FoggWeb to target Active Directory Federation Services (AD FS) servers.

Microsoft: Nobelium cybergang deploys FoggyWeb backdoor to target AD FS servers Read More »