SupplyChain

Kaseya Rules Out Supply-Chain Attack; Says VSA 0-Day Hit Its Customers Directly

Jul 6, 2021 by iHash Leave a Comment

U.S. technology firm Kaseya, which is firefighting the largest ever supply-chain ransomware strike on its VSA on-premises product, ruled out the possibility that its codebase was unauthorizedly tampered with to distribute malware. While initial reports raised speculations that the ransomware gang might have gained access to Kaseya's backend infrastructure and abused it to … [Read more...] about Kaseya Rules Out Supply-Chain Attack; Says VSA 0-Day Hit Its Customers Directly

Kaseya Supply-Chain Attack Hits Nearly 40 Service Providers With REvil Ransomware

Jul 4, 2021 by iHash Leave a Comment

Threat actors behind the notorious REvil cybercrime operation appear to have pushed ransomware via an update for Kaseya's IT management software, hitting around 40 customers worldwide, in what's an instance of a widespread supply-chain ransomware attack. "Beginning around mid-day (EST/US) on Friday, July 2, 2021, Kaseya's Incident Response team learned of a potential security … [Read more...] about Kaseya Supply-Chain Attack Hits Nearly 40 Service Providers With REvil Ransomware

A New Software Supply‑Chain Attack Targeted Millions With Spyware

Feb 1, 2021 by iHash Leave a Comment

Cybersecurity researchers today disclosed a new supply chain attack compromising the update mechanism of NoxPlayer, a free Android emulator for PCs and Macs. Dubbed "Operation NightScout" by Slovak cybersecurity firm ESET, the highly-targeted surveillance campaign involved distributing three different malware families via tailored malicious updates to selected victims based in … [Read more...] about A New Software Supply‑Chain Attack Targeted Millions With Spyware

Software Supply-Chain Attack Hits Vietnam Government Certification Authority

Dec 18, 2020 by iHash Leave a Comment

Cybersecurity researchers today disclosed a new supply-chain attack targeting the Vietnam Government Certification Authority (VGCA) that compromised the agency's digital signature toolkit to install a backdoor on victim systems. Uncovered by Slovak internet security company ESET early this month, the "SignSight" attack involved modifying software installers hosted on the CA's … [Read more...] about Software Supply-Chain Attack Hits Vietnam Government Certification Authority

Trojanized Security Software Hits South Korea Users in Supply-Chain Attack

Nov 16, 2020 by iHash Leave a Comment

Cybersecurity researchers took the wraps off a novel supply chain attack in South Korea that abuses legitimate security software and stolen digital certificates to distribute remote administration tools (RATs) on target systems. Attributing the operation to the Lazarus Group, also known as Hidden Cobra, Slovak internet security company ESET said the state-sponsored threat actor … [Read more...] about Trojanized Security Software Hits South Korea Users in Supply-Chain Attack

Beducated: Lifetime Subscription for $99

Amysen Wi-Fi Smart Plug (4-Pack) for $23

Refurbished Apple iPad 4 (2012) WiFi Black / 16GB / Grade A for $76

FreeCast Value Channels: 1-Yr Subscription for $39

Refurbished Apple iPad 4 (2012) WiFi Black / 16GB / Grade B for $71

Kaseya Rules Out Supply-Chain Attack; Says VSA 0-Day Hit Its Customers Directly

Kaseya Supply-Chain Attack Hits Nearly 40 Service Providers With REvil Ransomware

A New Software Supply‑Chain Attack Targeted Millions With Spyware

Software Supply-Chain Attack Hits Vietnam Government Certification Authority

Trojanized Security Software Hits South Korea Users in Supply-Chain Attack