Menu

Blog

Archive for the ‘cybercrime/malcode’ category: Page 133

Dec 23, 2020

Covid-19 Vaccines Are Coming—So Are Hackers

Posted by in categories: biotech/medical, cybercrime/malcode

Covid-19 vaccines are coming—so are hackers.


As drugmakers distribute Covid-19 vaccines, cybersecurity experts are warning against the growing threat of tampering and theft by organized crime networks. WSJ explains how hackers are targeting the vaccine rollout during the pandemic. Illustration: George Downs.

Continue reading “Covid-19 Vaccines Are Coming—So Are Hackers” »

Dec 22, 2020

SolarWinds victims revealed after cracking the Sunburst malware DGA

Posted by in category: cybercrime/malcode

Security researchers have shared lists of organizations where threat actors deployed Sunburst/Solarigate malware, after ongoing investigations of the SolarWinds supply chain attack.

One of these lists—shared by cybersecurity firm Truesec —includes high-profile tech companies such as Intel, Nvidia, Cisco, Cox Communications, and Belkin, to name just a few.

Mediatek, the world’s second-largest provider of fabless semiconductors, might have also been specifically targeted in this campaign but TrueSec hasn’t yet fully confirmed the breach at this point.

Dec 21, 2020

Big tech companies including Intel, Nvidia, and Cisco were all infected during the SolarWinds hack

Posted by in categories: cybercrime/malcode, government

There are many reasons why hackers might want to get into a big tech company’s systems.


Big tech companies like Intel and Nvidia had their computers hacked, along with the departments of the US federal government, in the SolarWinds hack.

Dec 21, 2020

New SUPERNOVA backdoor found in SolarWinds cyberattack analysis

Posted by in categories: cosmology, cybercrime/malcode

While analyzing artifacts from the SolarWinds Orion supply-chain attack, security researchers discovered another backdoor that is likely from a second threat actor.

Named SUPERNOVA, the malware is a webshell planted in the code of the Orion network and applications monitoring platform and enabled adversaries to run arbitrary code on machines running the trojanized version of the software.

Dec 20, 2020

US cyber-attack: Around 50 firms ‘genuinely impacted’

Posted by in category: cybercrime/malcode

The expert whose company uncovered the hack also backs US officials’ view that Russia was behind it.

Dec 20, 2020

White House acknowledges reports of cyberattack on U.S. Treasury

Posted by in category: cybercrime/malcode

The Washington Post linked the hack, which occurred over the weekend, to a group working for the Russian foreign intelligence service.

The FBI is currently investigating the group, known among private-sector cybersecurity firms as APT29 or Cozy Bear. The hackers are also believed to have breached the State Department, Joint Chiefs of Staff and the White House networks during the Obama administration.

The latest revelation comes less than a month after President Donald Trump fired Christopher Krebs, the nation’s top cybersecurity official.

Dec 19, 2020

How the Russian hacking group Cozy Bear, suspected in the SolarWinds breach, plays the long game

Posted by in category: cybercrime/malcode

Security experts have a lurking concern that if history is any guide, the hackers reportedly behind the SolarWinds breach aren’t done yet.

Dec 18, 2020

Microsoft confirms it was also breached in recent SolarWinds supply chain hack

Posted by in category: cybercrime/malcode

Microsoft denies that hackers pivoted to production systems and abused its software to attack customers.

Dec 18, 2020

Microsoft says it found malicious software in its systems

Posted by in categories: cybercrime/malcode, government

SAN FRANCISCO (Reuters)-Microsoft Corp said on Thursday it found malicious software in its systems related to a massive hacking campaign disclosed by U.S. officials this week, adding a top technology target to a growing list of attacked government agencies.

The Redmond, Washington company is a user of Orion, the widely deployed networking management software from SolarWinds Corp which was used in the suspected Russian attacks on vital U.S. agencies and others.

Microsoft also had its own products leveraged to attack victims, said people familiar with the matter. The U.S. National Security Agency issued a rare “cybersecurity advisory” Thursday detailing how certain Microsoft Azure cloud services may have been compromised by hackers and directing users to lock down their systems.

Dec 17, 2020

Decrypted: Google finds a devastating iPhone security flaw, FireEye hack sends alarm bells ringing

Posted by in categories: cybercrime/malcode, mobile phones

In this week’s Decrypted, we analyze the aftermath of the FireEye breach.