April 2022 - Page 3 of 4 - Cyber Security Minute

Russia-Linked Pipedream/Incontroller ICS Malware Designed to Target Energy Facilities

Issued by: Security Week

The malware, described as a modular ICS attack framework and a collection of custom-made tools, can be used by threat actors to target ICS and SCADA devices, including programmable logic controllers (PLCs) from Schneider Electric and Omron, and OPC UA servers. Advisories and blog posts describing the toolset have been released by industrial cybersecurity firm…

Vulnerabilities

Critical Vulnerability in Elementor Plugin Impacts Millions of WordPress Sites

Issued by: Security Week

Elementor is a drag-and-drop website builder for WordPress that has more than 5 million installations. Considered critical, the newly addressed vulnerability was apparently introduced on March 22, in version 3.6.0 of the plugin. Roughly one-third of websites were running a vulnerable version when the bug was found. Researchers with Plugin Vulnerabilities, who identified the flaw,…

Malware & Threats

Wind Turbine Giant Nordex Scrambling to Recover From Cyberattack

Issued by: Security Week

The incident was publicly disclosed in early April, when the company announced that it shut down “IT systems across multiple locations and business units” to contain the issue. The company also said that the cyberattack was detected in its early stages, and that it immediately set up an incident response team to investigate and address…

Vulnerabilities

128 vulnerabilities in Microsoft products

Issued by: Kaspersky Blog

In a traditional patch Tuesday update, Microsoft fixed a total of 128 vulnerabilities in various products and components. Of those, at least 10 are critical, at least two were known before the release of the patches and at least one of them was already actively exploited by unknown attackers. This is why it is a…

Network Security

The benefits of cyber risk quantification in the modern cybersecurity landscape

Issued by: Help Net Security

Kovrr and SANS Institute released their joint survey that reveals enterprise motivation and impact of cyber risk quantification (CRQ) in the modern cybersecurity landscape. CRQ helps businesses evaluate the potential financial impact of cyber events on an organization and is becoming an increasingly critical part of risk management programs. The survey found that over 75%…

Network Security, Software Security

Cyber defense: Prioritized by real-world threat data

Issued by: Help Net Security

The impact of a cybersecurity breach can be painful for any enterprise, and devastating for some. Any one of the top five threats we see in today’s environment—malware, ransomware, web application hacking, insider and privilege misuse, and targeted intrusions— are serious and can cause severe, long-lasting financial and reputational damage. First, there’s the financial cost—$4.24…

Malware & Threats

Shopping with Fraud Protection and Adaptive Artificial Intelligence

Issued by: CIO Security

With the worldwide pandemic, consumer behavior has shifted significantly. There has been substantially less travel — employees haven’t been driving to the office, flying on planes, or taking cruises. Many have gone out less, stopped going to movies, and don’t hang out on Friday night after work. This has caused a major disruption in the…

Malware & Threats

‘Octo’ Android Trojan Allows Cybercrooks to Conduct On-Device Fraud

Issued by: Security Week

Dubbed Octo, the botnet was first mentioned on dark web forums in January 2022, but an analysis of its code revealed a close connection with ExobotCompact, which is believed to be the successor of the Exobot Android trojan, which in turn was based on the source code of the Marcher trojan. Exobot was used in…

Vulnerabilities

CVE-2022-22965: Analyzing the Exploitation of Spring4Shell Vulnerability in Weaponizing and Executing the Mirai Botnet Malware

Issued by: Trend Micro Blog

Trend Micro Threat Research observed active exploitation of the Spring4Shell vulnerability assigned as CVE-2022-22965, which allows malicious actors to weaponize and execute the Mirai botnet malware. The exploitation allows threat actors to download the Mirai sample to the “/tmp” folder and execute them after permission change using “chmod”. We began seeing malicious activities at the…

Network Security

Why the Mitre Engenuity ATT&CK Evaluations Matter

Issued by: Trend Micro Blog

As the cyber attack surface continues to rapidly expand, enterprises need a security solution that can help organizations to better understand, communicate, and mitigate cyber risk across their entire IT ecosystem. And with many offerings on the market, choosing the right product can be challenging. CISOs can make a more informed decision by leveraging the…