Frank Crast, Author at Securezoo

MicroTik router infections spread, cause surge in CoinHive

Cybersecurity Attacks, Malware, Network Security / Frank Crast / August 4, 2018 / CoinHive, Cryptocurrency, CVE-2018-14847, malware, MicroTik, Network, Router, RouterOS

Security researchers recently spotted a surge in CoinHive infected MikroTik network devices in Brazil.

MicroTik router infections spread, cause surge in CoinHive Read More »

FBI warns of IoT risks

Internet of Things (IoT), Network Security / Frank Crast / August 3, 2018 / Cybercrime, FBI, IOT, malware

The FBI issued a warning on Thursday of the risks of Internet of Things (IoT) devices.

FBI warns of IoT risks Read More »

Hacker breaks into Reddit systems via SMS-based 2FA

Data Breach, Identity & Access Management, Password Management / Frank Crast / August 2, 2018 / 2FA, 800-63B, Authenticator, Hacker, NIST, Reddit, SMS, token, TOTP

Reddit, a popular social news aggregation and discussion website, suffered from a security breach between June 14 and June 18 of this year. The incident was discovered on June 19 and linked to weaknesses in SMS-based two-factor authentication (2FA).

Hacker breaks into Reddit systems via SMS-based 2FA Read More »

GandCrab ransomware threat

Leave a Comment / Malware / Frank Crast / August 1, 2018 / GandCrab, malware, McAfee, Ransomware

A relatively new ransomware dubbed GandCrab is becoming a leading cyber threat, according to McAfee security researchers.

GandCrab ransomware threat Read More »

Single account blamed for Clarksons breach

Leave a Comment / Data Breach, Identity & Access Management, Third-Party Security / Frank Crast / July 31, 2018 / Clarksons, Data Breach, Privacy, UK

Clarkson PLC (“Clarksons”), a British shipping company, recently revealed a single and isolated user account compromise was the cause of a data breach and theft of confidential information last year.

Single account blamed for Clarksons breach Read More »

CactusTorch abuses .NET to infect systems

Cybersecurity Attacks / Frank Crast / July 30, 2018 / CactusTorch, Cyberattack, Fileless, malware, McAfee

Researchers from McAfee Labs have spotted a significant spike in a fileless cyber threat dubbed CactusTorch.

CactusTorch abuses .NET to infect systems Read More »

NetSpectre cyber attack

Leave a Comment / Cybersecurity Attacks / Frank Crast / July 27, 2018 / CVE-2017-5753, Cyberattack, NetSpectre, Spectre

Security researchers have discovered a generic remote Spectre variant 1 attack dubbed NetSpectre that can be carried out over the network.

NetSpectre cyber attack Read More »

Chrome 68 security updates

Leave a Comment / Security Updates & Patches / Frank Crast / July 26, 2018 / Chrome, Google, SSL

Google released Chrome 68 (68.0.3440.70) for Android and will be available on Google Play in the upcoming weeks. The update includes a fix for an Autofill issue.

Chrome 68 security updates Read More »

Cyber attackers targeting ERP applications

Leave a Comment / Cybersecurity Attacks / Frank Crast / July 25, 2018 / Cyberattack, Dridex, ERP, malware, Oracle, SAP

Onapsis and Digital Shadows, a digital risk management firm, have released research and evidence of cybercriminals targeting Enterprise Resource Planning (ERP) applications. The research highlights the vast majority of large organizations potentially impacted by the threat have implemented SAP and Oracle ERP applications. As noted in the report, security researchers have discovered attackers using an updated version of Dridex to

Cyber attackers targeting ERP applications Read More »

Bluetooth vulnerability alert

Leave a Comment / Vulnerabilities & Exploits / Frank Crast / July 24, 2018 / bluetooth, CVE-2018-5383, encryption, firmware, Network

NCCIC has issued a security advisory and mitigation guidance for a bluetooth vulnerability that impacts Bluetooth firmware and operating system software drivers from multiple vendors.

Bluetooth vulnerability alert Read More »