Plus, Minnesota and North Carolina cities hit by hackers As April hits its stride, we saw a week of Wi-Fi bugs, Assange’s public eviction and King’s College warnings. These things also happened. Need another reason to quit using Internet Explorer? How about this XXE zero-day? Microsoft has all but killed off Internet Explorer, but more than a few PC owners continue to hold out. ...
Read More »Author Archives: firewalladmin
Hackers crack university defenses in just two hours
More than 50 universities in the United Kingdom had their cyber-defenses tested by ethical hackers, and the ‘grades’ aren’t pretty A team of ethical hackers recently conducted tests on the cybersecurity defenses of more than 50 universities in the United Kingdom. In each case, it took them less than two hours to gain access to “high-value data”. This is according to ...
Read More »Romanian Duo Convicted of Malware Scheme Infecting 400,000 Computers
The duo are convicted of infecting 400,000 computers in the U.S. with malware and scamming victims out of millions of dollars. A Romanian duo has been convicted for infecting hundreds of thousands of computers with malware that scooped up credentials and financial information, and scamming victims out of millions of dollars. The two, Bogdan Nicolescu, 36, and Radu Miclaus, 37, ...
Read More »More Than Half of Organizations with Cybersecurity Incident Response Plans Fail to Test Them
A vast majority of organizations are still unprepared to properly respond to cybersecurity incidents, with 77 percent of survey respondents indicating they do not have a cybersecurity incident response plan applied consistently across the enterprise. The 2019 Cyber Resilient Organization study from IBM Resilient also found that of the organizations that do have a plan in place, more than half (54 percent) ...
Read More »Uniden commercial site compromised to distribute Emotet trojan
The official website of Uniden has been compromised to host an MS Word document that delivers a variant of the Emotet trojan known as Geodo and Heodo. The malicious Word document is capable of delivering three JavaScript payloads and all three payloads have signatures for Geodo. What is the issue – abuse.ch’s URLhaus project uncovered that the official website of Uniden ...
Read More »Threat actors leverage old email conversation threads to spread Emotet
Threat actors revive old email conversation threads to inject a link to an Emotet-infected file. The tactic has been previously used by a North Korean hacker group to target various individuals. The operators of Emotet trojan have evolved their tactics to spread the malware. Lately, they have been observed reviving old email conversation threads to inject a link to an ...
Read More »PLDT taps Cisco for 5G transport network infrastructure
Officials of PLDT Inc and Cisco announce their 5G partnership in Manila on April 11, 2019. Jessica Fenol, ABS-CBN News MANILA – PLDT Inc said Thursday it tapped global firm Cisco to develop 5G-ready transport network infrastructure, broadening its partnerships in rolling out the next generation connectivity standard. Cisco will build the 5G transport network using PLDT’s existing fiber facilities, company ...
Read More »Iliad Launches 5G Ready IP Network Architecture with Segment Routing IPv6 in Italy
PARIS – MPLS+SDN+NFV World Congress – April 9, 2019 – Cisco announced today its involvement in helping Iliad deploy a state-of-the-art national IP Network, powered by Segment Routing IPv6 (SRv6), to provide a new mobile offering in Italy. This new architecture is built upon multiple products spanning the Cisco networking portfolio, including the ASR 9000 and new NCS 5500 routers for ...
Read More »FBI now investigating “RobinHood” ransomware attack on Greenville computers
GREENVILLE, NC (WITN) – Most city-owned computers remain offline for the second day as the FBI has joined in the investigation into the ransomware attack. The city shut down most computers early Wednesday after a police department employee noticed the virus. A city spokesman said they are victims of the “RobbinHood” ransomware, but they will not say how much the ransomware ...
Read More »Hackers Abuse Google Cloud Platform to Attack D-Link Routers
Three waves of DNS hijacking attacks against consumer routers have been linked back to Google Cloud Platform abuse. Hackers have been abusing Google’s cloud computing service to redirect and intercept web and mail traffic on an array of vulnerable consumer routers. A researcher said that he has seen the Google Cloud Platform being abused to carry out three separate waves of DNS ...
Read More »