Cybersecurity Attacks Archives - Page 29 of 41

FASTCash: ATM cash-out scheme

Cybercrime, Cybersecurity Attacks / Frank Crast / October 3, 2018 / ATM, cash-out, Cyberattack, DHS, FASTCash, FBI, HIDDEN COBRA, ISO 8583, North Korea, payments

Bad actors have been targeting payment systems in an ATM cash-out scheme dubbed “FASTCash.”

FASTCash: ATM cash-out scheme Read More »

Attackers exploit Facebook code that impacts 50 million accounts

Leave a Comment / Cybersecurity Attacks, Data Breach, Data Privacy / Frank Crast / September 28, 2018 / Cyberattack, Data Breach, Facebook

Facebook posted a security update that describes a security issue that occurred on September 25, 2018 that affected nearly 50 million accounts.

Attackers exploit Facebook code that impacts 50 million accounts Read More »

First UEFI rootkit LoJax discovered in the wild

Cybersecurity Attacks, Malware / Frank Crast / September 27, 2018 / APT28, Balkans, BIOS, EUFI, Fancy Bear, firmware, LoJax, malware, rootkit, Secure Boot, Sofacy, STRONTIUM

The first ever UEFI rootkit has been detected in the wild. As discovered by ESET security researchers, the Sednit APT group was behind the latest campaign that successfully installed a malicious UEFI rootkit dubbed LoJax on a victim system.

First UEFI rootkit LoJax discovered in the wild Read More »

Cold boot attack can expose encryption keys, data on laptops

Cryptography, Cybersecurity Attacks, Endpoint Security / Frank Crast / September 17, 2018 / Cold boot, Cyberattack, encryption, F-Secure, firmware, laptop, RAM

Security researchers at F-Secure have uncovered a decade-old attack that exploits firmware weaknesses in laptops to expose encryption keys and sensitive data.

Cold boot attack can expose encryption keys, data on laptops Read More »

MageCart compromises Feedify

Cybercrime, Cybersecurity Attacks, Data Breach, Malware / Frank Crast / September 15, 2018 / British Airways, Cloud, eCommerce, Feedify, Magecart, Ticketmaster

Magecart cyber criminal group has been targeting numerous eCommerce sites since 2015, to include Ticketmaster and British Airways.

MageCart compromises Feedify Read More »

New Mirai, Gafgyt IoT botnet variants target systems with Apache Struts, SonicWall vulnerability exploits

Cybersecurity Attacks, Malware, Network Security, Vulnerabilities & Exploits / Frank Crast / September 10, 2018 / Apache, botnet, CVE-2017-5638, CVE-2018-9866, Gafgyt, IOT, Mirai, Struts

New variants of IoT botnets Mirai and Gafgyt are increasingly targeting enterprise devices with outdated versions and unpatched vulnerabilities.

New Mirai, Gafgyt IoT botnet variants target systems with Apache Struts, SonicWall vulnerability exploits Read More »

Fallout exploit kit used in malvertising campaign

Leave a Comment / Cybersecurity Attacks, Malware / Frank Crast / September 7, 2018 / CVE-2018-8174, Fallout, FireEye, GandCrab, malvertising, SmokeLoader

A new exploit kit (EK) dubbed Fallout has been used in a cybersecurity malvertising campaign affecting users in Japan, Korea, the Middle East, Southern Europe, and other countries in the Asia Pacific region, according to a new FireEye report.

Fallout exploit kit used in malvertising campaign Read More »

MicroTik routers vulnerable

Leave a Comment / Cybersecurity Attacks, Network Security, Vulnerabilities & Exploits / Frank Crast / September 4, 2018 / Chinese, CVE-2018-14847, hacking, MicroTik, Router, RouterOS, Socks4, WikiLeaks, Winbox

Security researchers at Chinese security company Qihoo 360 Netlab have discovered 7,500 MicroTik routers have been compromised and forwarding traffic to attackers.

MicroTik routers vulnerable Read More »

KeyPass ransomware spreads worldwide

Leave a Comment / Cybersecurity Attacks, Malware / Frank Crast / August 17, 2018 / KeyPass, malware, Ransomware

A nasty strain of ransomware dubbed KeyPass has been infecting computers around the world.

KeyPass ransomware spreads worldwide Read More »

Hackers target PGA servers with ransomware

Leave a Comment / Cybersecurity Attacks, Malware / Frank Crast / August 9, 2018 / golf, malware, PGA, Ransomware

Hackers targeted servers belonging to the Professional Golfers’ Association of America (PGA) and encrypted files hosted on those systems with ransomware.

Hackers target PGA servers with ransomware Read More »