malware Archives - Page 23 of 57 - Cyber Security Minute

Researchers Raise Alarm for F5 BIG-IP Malware Attacks

Issued by: Security Week

Malware hunters at U.K.-based NCC Group are raising the alarm for mass scanning and “multiple exploitation attempts” with exploits targeting critical security flaws in the F5 enterprise networking infrastructure products. The vulnerabilities were patched on March 10 and are considered high-priority fixes because of the risk of exposure to authentication bypass and remote code execution…

Network Security

Healthcare IoT Security Firm Cylera Closes $10 Million Series A Round

Issued by: Security Week

Founded in 2017 and headquartered in New York City, Cylera seeks to protect both healthcare organizations and patients, providing a security and analytics platform that aims to deliver asset management, risk analysis, and threat detection for IoT, ICS, and IoMT (Internet of Medical Things). Cylera seeks to secure the entire connected environment, providing insights and…

Malware & Threats

FBI Warns of PYSA Ransomware Attacks on Education Institutions in US, UK

Issued by: Security Week

Last year, authorities in the UK and France also issued alerts for the PYSA ransomware, following attacks on government and other types of organizations. According to the FBI, PYSA attacks have been launched by “unidentified cyber actors” against higher education, K-12 schools and seminaries in a dozen U.S. states, as well as the U.K. The…

Vulnerabilities

Mimecast Says SolarWinds Hackers Stole Source Code

Issued by: Security Week

Mimecast was one of the several cybersecurity companies to confirm being targeted by the hackers who breached the systems of IT management solutions provider SolarWinds. After compromising SolarWinds systems, the attackers, which have been linked to Russia, used their access to deliver malicious updates for SolarWinds’ Orion monitoring product to roughly 18,000 customers. A few…

Application Security

Malware Operator Employs New Trick to Upload its Dropper into Google Play

Issued by: Dark Reading

Researchers at Check Point recently discovered that the operator of a malware tool that breaks into mobile users’ financial accounts was employing a novel new method to sneak its malware into Google’s official Android Play mobile app store. The method involved using Google’s own Firebase platform for command-and-control (C2) communications and using GitHub as a…

Vulnerabilities

Apple Patches Remote Code Execution Bug in WebKit

Issued by: Security Week

Tracked as CVE-2021-1844 and co-reported by Clément Lecigne of Google’s Threat Analysis Group and Alison Huffman of Microsoft Browser Vulnerability Research, the flaw was addressed with software updates for macOS, iOS, watchOS, and Safari. To exploit the vulnerability, an attacker would simply need to craft a webpage containing malicious code, and then lure the victim…

Malware & Threats

Number of ransomware attacks grew by more than 150%

Issued by: Help Net Security

By the end of 2020, the ransomware market, fueled by the pandemic turbulence, had turned into the biggest cybercrime money artery. Based on the analysis of more than 500 attacks observed during Group-IB’s own incident response engagements and cyber threat intelligence activity, researchers estimate that the number of ransomware attacks grew by more than 150%…

Mobile Security

Thousands of Mobile Apps Expose Data via Misconfigured Cloud Containers

Issued by: Security Week

The issue, the company notes, is rooted in the fact that many developers tend to overlook the security of cloud containers during the development process. Cloud services help resolve the issue of storage space on mobile devices, and developers have numerous such solutions to choose from, some of the most popular being Amazon Web Services,…

Vulnerabilities

Privilege Escalation Bugs Patched in Linux Kernel

Issued by: Security Week

Identified by Positive Technologies security researcher Alexander Popov, the high severity bugs resided in the virtual socket implementation of the Linux kernel. Tracked as CVE-2021-26708 and featuring a CVSS score of 7.0, the security holes were introduced in Linux kernel version 5.5 in November 2019. The vulnerabilities are the result of race conditions that were…

Malware & Threats

How SolarWinds Busted Up Our Assumptions About Code Signing

Issued by: Dark Reading

As the fallout from the SolarWinds hack broadens, we continue to learn more about just how it happened in the first place. There have now been four malware strains identified, one being Sunspot, which was installed on the SolarWinds build server that developers use to piece together software applications. When it comes to software supply…