Compromised

Stealthy HeadCrab Malware Compromised Over 1,200 Redis Servers

Feb 2, 2023 by iHash Leave a Comment

Feb 02, 2023Ravie LakshmananDatabase Security / Cryptocurrency At least 1,200 Redis database servers worldwide have been corralled into a botnet using an "elusive and severe threat" dubbed HeadCrab since early September 2021. "This advanced threat actor utilizes a state-of-the-art, custom-made malware that is undetectable by agentless and traditional anti-virus solutions to … [Read more...] about Stealthy HeadCrab Malware Compromised Over 1,200 Redis Servers

LastPass Parent Company GoTo Suffers Data Breach, Customers’ Backups Compromised

Jan 25, 2023 by iHash Leave a Comment

Jan 25, 2023Ravie LakshmananData Breach / Remote Work Tool LastPass-owner GoTo (formerly LogMeIn) on Tuesday disclosed that unidentified threat actors were able to steal encrypted backups of some customers' data along with an encryption key for some of those backups in a November 2022 incident. The breach, which targeted a third-party cloud storage service, impacted Central, … [Read more...] about LastPass Parent Company GoTo Suffers Data Breach, Customers’ Backups Compromised

Active Directory Domain Compromised in Under 24 Hours

Jan 12, 2023 by iHash Leave a Comment

Jan 12, 2023Ravie LakshmananActive Directory / Malware A recent IcedID malware attack enabled the threat actor to compromise the Active Directory domain of an unnamed target less than 24 hours after gaining initial access, while also borrowing techniques from other groups like Conti to meet its goals. "Throughout the attack, the attacker followed a routine of recon commands, … [Read more...] about Active Directory Domain Compromised in Under 24 Hours

Hackers Sign Android Malware Apps with Compromised Platform Certificates

Dec 2, 2022 by iHash Leave a Comment

Platform certificates used by Android smartphone vendors like Samsung, LG, and MediaTek have been found to be abused to sign malicious apps. The findings were first discovered and reported by Google reverse engineer Łukasz Siewierski on Thursday. "A platform certificate is the application signing certificate used to sign the 'android' application on the system image," a report … [Read more...] about Hackers Sign Android Malware Apps with Compromised Platform Certificates

Hackers Breached Colonial Pipeline Using Compromised VPN Password

Jun 7, 2021 by iHash Leave a Comment

The ransomware cartel that masterminded the Colonial Pipeline attack early last month crippled the pipeline operator's network using a compromised virtual private network (VPN) account password, the latest investigation into the incident has revealed. The development, which was reported by Bloomberg on Friday, involved gaining an initial foothold into the networks as early as … [Read more...] about Hackers Breached Colonial Pipeline Using Compromised VPN Password

The Mental Health & Self-Improvement Bundle for $19

Lenovo ThinkCentre M900 Tiny Core i5-6500T 16GB 256GB SSD Wi-Fi Windows 10 Pro (Grade A Refurbished) for $199

Apple iPad Pro 9.7" 32GB , Silver (Wi-Fi Only) [A1673] Bundle – Updates to IOS 16 for $199

Microsoft Surface Pro 5, 12.3" 4GB RAM 128GB SSD Windows 10 (Refurbished) for $280

Microsoft Surface Pro 6, 12.3" 8GB RAM Windows 10 (Refurbished) for $549

Stealthy HeadCrab Malware Compromised Over 1,200 Redis Servers

LastPass Parent Company GoTo Suffers Data Breach, Customers’ Backups Compromised

Active Directory Domain Compromised in Under 24 Hours

Hackers Sign Android Malware Apps with Compromised Platform Certificates

Hackers Breached Colonial Pipeline Using Compromised VPN Password