Cybersecurity Attacks Archives - Page 16 of 41

SQL Server malware “MrbMiner” attacks

Cloud Security, Cybersecurity Attacks, Malware, Network Security / Frank Crast / January 25, 2021 / Cryptocurrency, Cryptomining, Database, MrbMiner, SQL Server

Security researchers have identified the source of a SQL Server malware “MrbMiner” attacks allegedly tied to an Iranian software firm.

SQL Server malware “MrbMiner” attacks Read More »

FireEye publishes Microsoft 365 tools and hardening strategies to defend against SolarWinds attackers

Cloud Security, Cybersecurity Attacks, Security Monitoring / Frank Crast / January 21, 2021 / Active Directory, Microsoft 365, SolarWinds, UNC2452

Security firm FireEye has published new Microsoft 365 tools and hardening strategies to defend against SolarWinds attackers, also known as UNC2452.

FireEye publishes Microsoft 365 tools and hardening strategies to defend against SolarWinds attackers Read More »

FBI: Cyber criminals target employee credentials via voice phishing attacks

Cybercrime, Cybersecurity Attacks, Phishing / Frank Crast / January 18, 2021 / COVID-19, DHS, FBI, phishing, vishing, VPN

The FBI issued a private industry notification of cyber criminals targeting employee credentials via voice phishing or “vishing” attacks.

FBI: Cyber criminals target employee credentials via voice phishing attacks Read More »

ElectroRAT malware zaps thousands of systems to empty cryptocurrency wallets

Cybersecurity Attacks, Malware / Frank Crast / January 5, 2021 / Cryptocurrency, DaoPoker, ElectroRAT, eTrade, Jamm, malware

Security researchers have discovered a new ElectroRAT malware that empties cryptocurrency wallets on thousands of macOS, Linux and Windows systems.

ElectroRAT malware zaps thousands of systems to empty cryptocurrency wallets Read More »

DHS issues new emergency guidance on SolarWinds Orion Code compromise

Cybersecurity Articles, Cybersecurity Attacks, Data Breach, Security Updates & Patches, Third-Party Security / Frank Crast / December 30, 2020 / CISA, CVE-2020-10148, DHS, malware, SolarWinds, Sunburst, Supernova, Zero-day

The Department of Homeland Security (DHS) has issued new emergency guidance on the SolarWinds Orion Code compromise and supply chain vulnerability.

DHS issues new emergency guidance on SolarWinds Orion Code compromise Read More »

Hackers target Vietnam in supply chain cyberattack

Cybersecurity Attacks, Malware, Third-Party Security / Frank Crast / December 29, 2020 / certificate, Cyberattack, ESET, Government, Operation SignSight, PhantomNet, Supply Chain, third party, vendor, Vietnam

Cybersecurity experts discovered a new supply chain attack against a certification authority organization in Vietnam.

Hackers target Vietnam in supply chain cyberattack Read More »

Whirlpool victim of Nefilim ransomware attack

Cybersecurity Attacks, Data Breach, Malware / Frank Crast / December 28, 2020 / Cyberattack, Cybercrime, cybercriminal, KitchenAid, malware, Maytag, Nefilim, Ransomware, Whirlpool

Home appliance maker Whirlpool has fallen victim to a Nefilim ransomware attack.

Whirlpool victim of Nefilim ransomware attack Read More »

Cybersecurity experts reveal growing list of SolarWinds 2nd stage attack victims

Cybersecurity Attacks, Malware, Third-Party Security / Frank Crast / December 22, 2020 / Cisco, Deloitte, DNS, malware, Solarigate, SolarWinds, Sunburst, Truesec

Cybersecurity experts have revealed a growing list of SolarWinds 2nd stage attack victims based on malware analysis.

Cybersecurity experts reveal growing list of SolarWinds 2nd stage attack victims Read More »

Solorigate malware behind the SolarWinds attack

Cybersecurity Attacks, Malware, Third-Party Security / Frank Crast / December 22, 2020 / DLL, Solarigate, SolarWinds, Supply Chain

Microsoft shared new insights into the Solarigate malware, the compromised DLL file behind the SolarWinds software supply chain attacks.

Solorigate malware behind the SolarWinds attack Read More »

CISA: Threat actors behind SolarWinds hack pose ‘grave risk’ (updated)

Cloud Security, Configuration Management, Cybersecurity Attacks, Data Breach, Malware, Security Updates & Patches, Third-Party Security, Vulnerabilities & Exploits / Frank Crast / December 19, 2020 / APT, CISA, Cisco, Emergency Directive, Equifax, FireEye, Microsoft, NNSA, NSA, Nuclear, SolarWinds, Sunburst, Supply Chain, Symantec, Teardrop, UNC2452

The Cybersecurity and Infrastructure Security Agency (CISA) has warned the recent compromise by threat actors of SolarWinds poses a ‘grave risk’ to critical infrastructure, government and private sector organizations.

CISA: Threat actors behind SolarWinds hack pose ‘grave risk’ (updated) Read More »