Cyberattack Archives

Symbiote: Linux malware ‘nearly impossible to detect’ threat

Cybersecurity Attacks, Malware / By Frank Crast / June 11, 2022 June 11, 2022 /

Researchers have discovered a new Linux malware dubbed Symbiote, a ‘nearly impossible to detect’ threat.

Tags: Blackberry, BPF, Cyberattack, Cybersecurity Threat Center, Linux, malware, Symbiote

Shutterfly targeted with ransomware attack

Cybersecurity Attacks, Malware / By Frank Crast / December 27, 2021 December 27, 2021 /

California-based photography and image sharing company Shutterfly LLC has been targeted in a ransomware attack.

Tags: Conti, Cyberattack, malware, Ransomware

FBI: Cuba ransomware compromised 49 critical infrastructure entities

Cybersecurity Attacks, Malware / By Frank Crast / December 4, 2021 December 4, 2021 /

The Federal Bureau of Investigation (FBI) has issued a cybersecurity alert for ransomware attacks that have compromised 49 entities in five critical infrastructure sectors, such as financial, government, healthcare, manufacturing, and information technology.

Tags: CobaltStrike, Cuba, Cyberattack, FBI, PowerSHell, PsExec, Ransomware, RDP

Acer systems hit with second cyberattack in the past week

Cybersecurity Attacks / By Frank Crast / October 18, 2021 October 18, 2021 /

Acer systems based in Taiwan have been hit with a cyberattack, nearly a week after Acer offices in India were hit by a similar attack launched by the same cybergang.

Tags: Acer, Cyberattack, Desorden, Taiwan

Microsoft: Nobelium cybergang deploys FoggyWeb backdoor to target AD FS servers

Cybersecurity Attacks, Malware / By Frank Crast / September 28, 2021 September 28, 2021 /

Microsoft has warned that Nobelium threat actors are using a new backdoor malware dubbed FoggWeb to target Active Directory Federation Services (AD FS) servers.

Tags: Active Directory, AD FS, backdoor, Cyberattack, FoggyWeb, malware, Microsoft, Nobelium

Microsoft: New analysis of Exchange Server vulnerabilities and cyberattacks

Cybersecurity Articles, Cybersecurity Attacks, Security Monitoring, Vulnerabilities & Exploits / By Frank Crast / March 30, 2021 March 30, 2021 /

Microsoft has published new detailed analysis of Exchange Server vulnerabilities, cybercriminal groups and post-compromise second stage attack malware. In addition, the tech giant offered sound mitigation guidance.

Tags: Cyberattack, DoejoCrypt, Egregor, Exchange, HAFNIUM, Lemon Duck, Maze, Microsoft, Pydomer

Energy giant Shell latest victim in Accellion FTA cyberattacks

Cybersecurity Attacks, Data Breach, Security Updates & Patches, Vulnerabilities & Exploits, Zero-days / By Frank Crast / March 24, 2021 March 24, 2021 /

Energy giant Shell was the latest victim in a series of cyberattacks on customers of Accellion’s legacy File Transfer Appliance (FTA) product used to transfer large files.

Tags: Accellion, CVE-2021-27101, CVE-2021-27102, CVE-2021-27103, CVE-2021-27104, Cyberattack, EOL, FireEye, FTA, Mandiant, Zero-day

SolarWinds releases updated advisory on SUPERNOVA malware (updated with CVE-2020-10148)

Malware / By Frank Crast / December 29, 2020 December 29, 2020 /

SolarWinds has released an updated security advisory on SUPERNOVA malware, a separate threat vector from the previously reported supply chain cyberattack that was based on SUNBURST backdoor malware. The update now includes new information on 0-day CVE-2020-10148 and PoC demo.

Tags: .NET, API, Cyberattack, malware, SolarWinds, Sunburst, Supernova, Unit 42, webshell

Hackers target Vietnam in supply chain cyberattack

Cybersecurity Attacks, Malware, Third-Party Security / By Frank Crast / December 29, 2020 December 29, 2020 /

Cybersecurity experts discovered a new supply chain attack against a certification authority organization in Vietnam.

Tags: certificate, Cyberattack, ESET, Government, Operation SignSight, PhantomNet, Supply Chain, third party, vendor, Vietnam

Whirlpool victim of Nefilim ransomware attack

Cybersecurity Attacks, Data Breach, Malware / By Frank Crast / December 28, 2020 December 28, 2020 /

Home appliance maker Whirlpool has fallen victim to a Nefilim ransomware attack.

Tags: Cyberattack, Cybercrime, cybercriminal, KitchenAid, malware, Maytag, Nefilim, Ransomware, Whirlpool