Page 40 of 44 FirstFirst ... 3032333435363738394041424344 LastLast
Results 976 to 1,000 of 1081
  1. #976
    Thailand Expat harrybarracuda's Avatar
    Join Date
    Sep 2009
    Last Online
    @
    Posts
    96,555
    Quote Originally Posted by jabir View Post
    I won't be fiddling with stuff that I don't understand, esp without Butterfly to save the day.
    Well that's fucking hilarious.


  2. #977
    Member

    Join Date
    Jan 2020
    Last Online
    01-08-2023 @ 11:33 PM
    Posts
    510
    Remember the recent North Korea sponsored attack on security researchers? This article has a screenshot of one of the actual Phishing messages.

    https://safernet.it/state-sponsored-hackers-cybersecurity/

    *** The Security News Thread  ***-nk-phishing-png *** The Security News Thread  ***-screen-shot-2021-02-01-9-a *** The Security News Thread  ***-screen-shot-2021-02-01-9-a

  3. #978
    Thailand Expat harrybarracuda's Avatar
    Join Date
    Sep 2009
    Last Online
    @
    Posts
    96,555
    They have been busy little bees.

    CISA, the Federal Bureau of Investigation, and the Department of the Treasury have released a Joint Cybersecurity Advisory and seven Malware Analysis Reports (MARs) on the North Korean government’s dissemination of malware that facilitates the theft of cryptocurrency—referred to by the U.S. Government as “AppleJeus.”
    The U.S. Government refers to malicious cyber activity by the North Korean government as HIDDEN COBRA.
    CISA encourages users and administrators to review the following resources for more information.

    https://us-cert.cisa.gov/ncas/curren...vity-applejeus

  4. #979
    Member

    Join Date
    Jan 2020
    Last Online
    01-08-2023 @ 11:33 PM
    Posts
    510
    The big guy can't feed his own people but has plenty of cash to train and/or hire some of the world's best hackers. Piece of work.

  5. #980
    Thailand Expat harrybarracuda's Avatar
    Join Date
    Sep 2009
    Last Online
    @
    Posts
    96,555
    I don't normally post tweets but Microsoft don't normally use the word "rampant".

    We’re tracking a rampant phishing attack that uses DGA domains, free email services, and even compromised email accounts to send massive numbers of phishing emails. These emails are linked by open redirector URLs that begin with a distinct pattern: hxxps://t[.]domain[.]tld/r/?
    https://twitter.com/MsftSecIntel/sta...62191304019968

  6. #981
    Thailand Expat harrybarracuda's Avatar
    Join Date
    Sep 2009
    Last Online
    @
    Posts
    96,555
    A user on a popular hacker forum is selling three databases that purportedly contain user credentials and device data stolen from three different Android VPN services – SuperVPN, GeckoVPN, and ChatVPN – with 21 million user records being sold in total.

    https://cybernews.com/security/one-of-the-biggest-android-vpns-hacked-data-of-21-million-users-from-3-android-vpns-put-for-sale-online/?web_view=true

  7. #982
    Thailand Expat harrybarracuda's Avatar
    Join Date
    Sep 2009
    Last Online
    @
    Posts
    96,555
    So stay away from Xerox multifunction printers then....

    A legal demand has allegedly prevented a security conference speaker from holding a talk on Xerox printers.

    On February 18, a copy of a notice published by Infiltrate security conference organizers was posted to Twitter. The statement revealed that a planned talk by Raphaël Rigo, a security researcher from Airbus Security Lab, was canceled.

    The presentation was due to happen on February 18 at 11:00 EST. However, with what appeared to be less than an hour to go, Infiltrate said the event was canceled and “apologized for the inconvenience”.

    “I regret to inform you that we received notification this morning that ‘pending legal action’ we cannot present Raphaël’s Xerox research,” the notice from Infiltrate reads.

    “Sadly, we must cancel the event today. We must cease and desist publication, presentation, and discussions related to the content of Raphaël’s talk.”
    https://portswigger.net/daily-swig/xerox-legal-threat-reportedly-silences-researcher-at-infiltrate-security-conference


  8. #983
    Member

    Join Date
    Jan 2020
    Last Online
    01-08-2023 @ 11:33 PM
    Posts
    510
    New ransomware doesn't demand money, but instead requires victims to join a Discord server. And if you can't join the server, they decode your stuff anyway. Looks like someone is practicing for something bigger.

    https://www.bleepingcomputer.com/news/security/new-ransomware-only-decrypts-victims-who-join-their-discord-server/

    *** The Security News Thread  ***-hog-ranomware-decryptor-jpg


    *** The Security News Thread  ***-decryption-free-jpg

  9. #984
    Thailand Expat Backspin's Avatar
    Join Date
    Oct 2019
    Last Online
    @
    Posts
    11,260

    US Preparing Cyberattack Against Russia Over SolarWinds Hack: Report


    According to a report from The New York Times, the Biden administration is planning cyberattacks against Russia in the coming weeks. The cyber offensive could come with new sanctions and would mark a serious escalation towards Moscow from the new administration.


    Anonymous US officials told the Times that the first "major move" is expected to happen over the next three weeks. It will consist of a "series of clandestine actions across Russian networks that are intended to be evident to President Vladimir Putin and his intelligence services and military but not to the wider world."


    Watch all the Russophobes cheer this on. Yes ! Lets attack our only nuclear equal. Great idea !

  10. #985
    Member

    Join Date
    Jan 2020
    Last Online
    01-08-2023 @ 11:33 PM
    Posts
    510
    Quote Originally Posted by Backspin View Post

    US Preparing Cyberattack Against Russia Over SolarWinds Hack: Report



    According to a report from The New York Times, the Biden administration is planning cyberattacks against Russia in the coming weeks. The cyber offensive could come with new sanctions and would mark a serious escalation towards Moscow from the new administration.


    Anonymous US officials told the Times that the first "major move" is expected to happen over the next three weeks. It will consist of a "series of clandestine actions across Russian networks that are intended to be evident to President Vladimir Putin and his intelligence services and military but not to the wider world."


    Watch all the Russophobes cheer this on. Yes ! Lets attack our only nuclear equal. Great idea !
    What would your suggestion be for an alternative, safer action plan?

  11. #986
    Thailand Expat harrybarracuda's Avatar
    Join Date
    Sep 2009
    Last Online
    @
    Posts
    96,555
    Chinkies next.

  12. #987
    Thailand Expat
    Bogon's Avatar
    Join Date
    Mar 2010
    Last Online
    Today @ 09:04 PM
    Posts
    5,791
    Quote Originally Posted by TTraveler View Post
    What would your suggestion be for an alternative, safer action plan?
    Scrap Microsoft and move over to BlackBerry would be the best option.

  13. #988
    Thailand Expat harrybarracuda's Avatar
    Join Date
    Sep 2009
    Last Online
    @
    Posts
    96,555
    Quote Originally Posted by Bogon View Post
    Scrap Microsoft and move over to BlackBerry would be the best option.
    Wow what a cracking idea.

  14. #989
    Thailand Expat
    Bogon's Avatar
    Join Date
    Mar 2010
    Last Online
    Today @ 09:04 PM
    Posts
    5,791
    ^ The only suggested alternative so far, which means by default that it's the best.

  15. #990
    Thailand Expat harrybarracuda's Avatar
    Join Date
    Sep 2009
    Last Online
    @
    Posts
    96,555
    Probably should have done that a bit earlier...


  16. #991
    Thailand Expat harrybarracuda's Avatar
    Join Date
    Sep 2009
    Last Online
    @
    Posts
    96,555
    Ouch

    Acer reportedly hit with $50 million ransomware demand

    The attack looks to be the work of the REvil group that hit Travelex last year
    Acer reportedly hit with $50 million ransomware demand - The Verge

  17. #992
    Thailand Expat harrybarracuda's Avatar
    Join Date
    Sep 2009
    Last Online
    @
    Posts
    96,555
    Am I bad for laughing?

    "CNA is one of the larger providers of cyber insurance in the country".

  18. #993
    Member

    Join Date
    Jan 2020
    Last Online
    01-08-2023 @ 11:33 PM
    Posts
    510
    Quote Originally Posted by harrybarracuda View Post
    Am I bad for laughing?


    "CNA is one of the larger providers of cyber insurance in the country".
    Laughter is probably the best response right about now, unless you have cyber insurance with CNA; then finding a new provider might be a better activity.

  19. #994
    Thailand Expat harrybarracuda's Avatar
    Join Date
    Sep 2009
    Last Online
    @
    Posts
    96,555
    OK this is getting serious. Now the bastards are nicking your porn!

    'We have your porn collection': The rise of extortionware


  20. #995
    Thailand Expat harrybarracuda's Avatar
    Join Date
    Sep 2009
    Last Online
    @
    Posts
    96,555
    Big Oops.

    Whistleblower: Ubiquiti Breach “Catastrophic”
    Whistleblower: Ubiquiti Breach “Catastrophic” — Krebs on Security

  21. #996
    Thailand Expat harrybarracuda's Avatar
    Join Date
    Sep 2009
    Last Online
    @
    Posts
    96,555
    Facebook data on millions of user accounts leaked online in latest breach

    Leaked data from 533 million Facebook users across the world was posted online. Information security experts believe the leaked information will be used for cybercrimes by bad actors.

    Facebook data on millions of user accounts leaked online in latest breach | News | DW | 04.04.2021

  22. #997
    Thailand Expat harrybarracuda's Avatar
    Join Date
    Sep 2009
    Last Online
    @
    Posts
    96,555
    *** The Security News Thread  ***-securitypic-jpg

  23. #998
    Member

    Join Date
    Jan 2020
    Last Online
    01-08-2023 @ 11:33 PM
    Posts
    510
    Feds say hackers are likely exploiting critical Fortinet VPN vulnerabilities.

    Exploits allow hackers to log into VPNs and then access other network resources.
    Feds say hackers are likely exploiting critical Fortinet VPN vulnerabilities | Ars Technica

  24. #999
    Thailand Expat harrybarracuda's Avatar
    Join Date
    Sep 2009
    Last Online
    @
    Posts
    96,555
    None of these exploits are new and anyone getting hit by them deserves it for appalling security hygiene.

    advanced persistent threat (APT) actors are actively exploiting known Fortinet FortiOS vulnerabilities
    CVE-2018-13379, CVE-2020-12812, and CVE-2019-5591.

  25. #1000
    Thailand Expat harrybarracuda's Avatar
    Join Date
    Sep 2009
    Last Online
    @
    Posts
    96,555

Page 40 of 44 FirstFirst ... 3032333435363738394041424344 LastLast

Thread Information

Users Browsing this Thread

There are currently 2 users browsing this thread. (0 members and 2 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •