cyber news

Hackers Exploit Mitel VoIP Zero-Day in Likely Ransomware Attack

Jun 24, 2022 by iHash Leave a Comment

A suspected ransomware intrusion against an unnamed target leveraged a Mitel VoIP appliance as an entry point to achieve remote code execution and gain initial access to the environment. The findings come from cybersecurity firm CrowdStrike, which traced the source of the attack to a Linux-based Mitel VoIP device sitting on the network perimeter, while also identifying a … [Read more...] about Hackers Exploit Mitel VoIP Zero-Day in Likely Ransomware Attack

NSO Confirms Pegasus Spyware Used by at least 5 European Countries

Jun 23, 2022 by iHash Leave a Comment

The beleaguered Israeli surveillanceware vendor NSO Group this week admitted to the European Union lawmakers that its Pegasus tool was used by at least five countries in the region. "We're trying to do the right thing and that's more than other companies working in the industry," Chaim Gelfand, the company's general counsel and chief compliance officer, said, according to a … [Read more...] about NSO Confirms Pegasus Spyware Used by at least 5 European Countries

Researchers Uncover Ways to Break the Encryption of ‘MEGA’ Cloud Storage Service

Jun 22, 2022 by iHash Leave a Comment

A new piece of research from academics at ETH Zurich has identified a number of critical security issues in the MEGA cloud storage service that could be leveraged to break the confidentiality and integrity of user data. In a paper titled "MEGA: Malleable Encryption Goes Awry," the researchers point out how MEGA's system does not protect its users against a malicious server, … [Read more...] about Researchers Uncover Ways to Break the Encryption of ‘MEGA’ Cloud Storage Service

New ToddyCat Hacker Group on Experts’ Radar After Targeting MS Exchange Servers

Jun 21, 2022 by iHash Leave a Comment

An advanced persistent threat (APT) actor codenamed ToddyCat has been linked to a string of attacks aimed at high-profile entities in Europe and Asia since at least December 2020. The relatively new adversarial collective is said to have commenced its operations by targeting Microsoft Exchange servers in Taiwan and Vietnam using an unknown exploit to deploy the China Chopper … [Read more...] about New ToddyCat Hacker Group on Experts’ Radar After Targeting MS Exchange Servers

Do You Have Ransomware Insurance? Look at the Fine Print

Jun 20, 2022 by iHash Leave a Comment

Insurance exists to protect the insured party against catastrophe, but the insurer needs protection so that its policies are not abused – and that's where the fine print comes in. However, in the case of ransomware insurance, the fine print is becoming contentious and arguably undermining the usefulness of ransomware insurance. In this article, we'll outline why, particularly … [Read more...] about Do You Have Ransomware Insurance? Look at the Fine Print

Learn Cybersecurity with Palo Alto Networks Through this PCCSA Course @ 93% OFF

Jun 18, 2022 by iHash Leave a Comment

In the world of cybersecurity, reputation is everything. Most business owners have little understanding of the technical side, so they have to rely on credibility. Founded back in 2005, Palo Alto Networks is a cybersecurity giant that has earned the trust of the business community thanks to its impressive track record. The company now provides services to over 70,000 … [Read more...] about Learn Cybersecurity with Palo Alto Networks Through this PCCSA Course @ 93% OFF

Over a Dozen Flaws Found in Siemens’ Industrial Network Management System

Jun 18, 2022 by iHash Leave a Comment

Cybersecurity researchers have disclosed details about 15 security flaws in Siemens SINEC network management system (NMS), some of which could be chained by an attacker to achieve remote code execution on affected systems. "The vulnerabilities, if exploited, pose a number of risks to Siemens devices on the network including denial-of-service attacks, credential leaks, and … [Read more...] about Over a Dozen Flaws Found in Siemens’ Industrial Network Management System

Same CyberSec in Office and at Home

Jun 17, 2022 by iHash Leave a Comment

It was first the pandemic that changed the usual state of work - before, it was commuting, working in the office & coming home for most corporate employees. Then, when we had to adapt to the self-isolation rules, the work moved to home offices, which completely changed the workflow for many businesses.As the pandemic went down, we realized success never relied on where the … [Read more...] about Same CyberSec in Office and at Home

High-Severity RCE Vulnerability Reported in Popular Fastjson Library

Jun 16, 2022 by iHash Leave a Comment

Cybersecurity researchers have detailed a recently patched high-severity security vulnerability in the popular Fastjson library that could be potentially exploited to achieve remote code execution. Tracked as CVE-2022-25845 (CVSS score: 8.1), the issue relates to a case of deserialization of untrusted data in a supported feature called "AutoType." It was patched by the project … [Read more...] about High-Severity RCE Vulnerability Reported in Popular Fastjson Library

A New Golang-based Peer-To-Peer Botnet Targeting Linux Servers

Jun 15, 2022 by iHash Leave a Comment

A new Golang-based peer-to-peer (P2P) botnet has been spotted actively targeting Linux servers in the education sector since its emergence in March 2022. Dubbed Panchan by Akamai Security Research, the malware "utilizes its built-in concurrency features to maximize spreadability and execute malware modules" and "harvests SSH keys to perform lateral movement." The … [Read more...] about A New Golang-based Peer-To-Peer Botnet Targeting Linux Servers

Smart Home DIY Wireless Alarm Security System 4-Piece Kit for $69

Flux 7 TWS Earbuds with Wireless Charging Case & Power Bank for $24

MiniTool MovieMaker Ultimate Plan: Perpetual Lifetime License for $49

Robolly Graphic Automation: Lifetime Subscription for $29

Animation Desk Windows Pro Lite: Lifetime Subscription for $59