Web application

Some insight into this week’s DDoS attacks. Germany opens a criminal investigation into

[ad_1]

Attacks, Threats, and Vulnerabilities

Meet Meris, the new 250,000-strong DDoS botnet terrorizing the internet (The Record by Recorded Future) A new botnet consisting of an estimated 250,000 malware-infected devices has been behind some of the biggest DDoS attacks over the summer, breaking the record for the largest volumetric DDoS attack twice, once in June and again this month.

Mēris botnet, climbing to the record (Qrator Labs) End of June 2021, Qrator Labs started to see signs of a new assaulting force on the Internet – a botnet of a new kind. That is a joint research we conducted together with Yandex to elaborate on the specifics of the DDoS attacks enabler emerging in almost real-time.

Cyber attack: ANZ online access down for third day (New Zealand Herald) The bank and a number of other major organisations have been under a cyber attack.

Russia Influences Hackers but Stops Short of Directing Them, Report Says (New York Times) The arrangement allows the Russian government some plausible deniability for attacks, researchers found.

Dark Covenant: Connections Between the Russian State and Criminal Actors (Recorded Future) The intersection of individuals in the cybercriminal world and officials in the Russian government is well established yet highly diffuse.

U.S. Cyber Czar: Too soon to tell if Russia ransomware has stopped (The Record by Recorded Future) A top U.S. cybersecurity official said on Thursday that it was too soon to tell whether Russian ransomware gangs have let up their assault on U.S. targets.

Cyberangriffe auf Politiker: Generalbundesanwalt ermittelt gegen Putins Hacker (Der Spiegel) Erstmals hat die Bundesregierung Russlands Militärgeheimdienst GRU öffentlich für die Hackerkampagne »Ghostwriter« angeprangert. Nach SPIEGEL-Informationen ermittelt nun auch die Bundesanwaltschaft.

Germany probes claims of pre-election MP hacking by Russia (Yahoo) German federal prosecutors said Thursday they are probing alleged hacking attacks against lawmakers ahead of this month’s German election that Berlin has blamed on Russia.

Is the Taliban a Cyber Threat to the West? (SecurityWeek) While the Taliban provides no immediate cybersecurity threat, there is ample potential for it to develop into a major threat on a par with North Korea over the next three to five years

Cybersecurity Advisory: Hackers Are Exploiting CVE-2021-40444 (Huntress) Huntress is monitoring a new threat against Windows OS and Microsoft Office products (CVE-2021-40444). The MSHTML engine is vulnerable to arbitrary code execution.

REvil Is Back on Exploit and Trying to Restore Its Reputation (Flashpoint) A threat actor operating under the alias “REvil” appeared on Exploit claiming to be the ransomware group’s new representative on the illicit Russian-language forum.

Threat Thursday: Get Your Paws Off My Data, Raccoon Infostealer (BlackBerry) Raccoon is an information-stealing malware variant made available to subscribers through a Malware-as-a-Service (MaaS) arrangement. It targets Windows users, seeking out and stealing their stored credentials.

Get Ready for PYSA Ransomware Attacks Against Linux Systems (SecurityWeek) Linux is increasingly targeted by ransomware. Researchers have now detected indications that the PYSA ransomware, often also known as Mespinoza, is also being readied for Linux targets.

Virginia National Guard confirms cyberattack hit Virginia Defense Force email accounts (ZDNet) A spokesperson said there was no impact on the Virginia Army National Guard or Virginia Air National Guard IT infrastructure.

Hackers are leaking children’s data — and there’s little parents can do (NBC News) Most don’t have bank passwords. Few have credit scores yet.

August 2021’s Most Wanted Malware: Formbook Climbs into First Place (Check Point Software) Check Point Research reports that the infostealer, Formbook, is the most prevalent malware while the banking trojan, Qbot, has dropped from the list all

Security Patches, Mitigations, and Software Updates

Microsoft Warns of Information Leak Flaw in Azure Container Instances (SecurityWeek) Microsoft patches Azure Container Instances vulnerability that could allow access to other customers’ information.

AVEVA PCS Portal (CISA) 1. EXECUTIVE SUMMARY

CVSS v3 7.3
ATTENTION: Low attack complexity
Vendor: AVEVA
Equipment: Platform Common Services (PCS) Portal
Vulnerability: Uncontrolled Search Path Element
2. RISK EVALUATION

The DLL hijacking vulnerability in the Platform Common Services (PCS) Portal, if exploited, could allow malicious code execution within the context of the PCS Portal application.

Delta Electronics DOPSoft 2 (CISA) 1. EXECUTIVE SUMMARY

CVSS v3 7.8
ATTENTION: Low attack complexity
Vendor: Delta Electronics
Equipment: DOPSoft 2
Vulnerabilities: Stack-based Buffer Overflow, Out-of-Bounds Write, Heap-based Buffer Overflow
2. RISK EVALUATION

Successful exploitation of these vulnerabilities may allow arbitrary code execution.

Mitsubishi Electric Europe B.V. smartRTU and INEA ME-RTU (CISA) 1. EXECUTIVE SUMMARY

CVSS v3 9.8
ATTENTION: Exploitable remotely/low attack complexity
Vendor: Mitsubishi Electric Europe B.V.
Equipment: smartRTU and INEA ME-RTU
Vulnerabilities: OS Command Injection, Improper Access Control, Cross-site Scripting, Use of Hard-coded Credentials, Unprotected Storage of Credentials, Incorrect Default Permissions
2.

Mitsubishi Electric Multiple Products (Update C) (CISA) 1. EXECUTIVE SUMMARY

CVSS v3 7.3
ATTENTION: Exploitable remotely/low attack complexity
Vendor: Mitsubishi Electric
Equipment: Multiple Products
Vulnerability: Predictable Exact Value from Previous Values
2.

The Cybersecurity 202: Cybersecurity pros want to stop talking about a ‘cyber 9/11’ (Washington Post) For nearly two decades, government analysts have warned of a “cyber 9/11” or a “cyber Pearl Harbor” following the Sept. 11, 2001 terrorist attack, whose 20th anniversary is tomorrow.

IT leaders facing backlash from remote workers over cybersecurity measures: HP study (ZDNet) More than 30% of workers under the age of 24 admitted to outright bypassing certain corporate security policies to get work done.

How 9/11 sparked the rise of America’s biometrics security empire (Fast Company) Hundreds of millions of people have been caught up in the U.S.’s biometrics databases—at home, at the border, and abroad—including millions of Afghans who now may be at risk from the Taliban.

Marketplace

Piratica Is Back at Hack For Troops’ Fundraising Event (PR Newswire) PlayCyber, powered by Katzcy and Tech For Troops (T4T), a 501(c)(3) nonprofit organization, are pleased to announce that the annual Capture the…

Snyk Closes $530 Million Series F Investment at $8.5 Billion Valuation (PR Newswire) Snyk, the leader in developer security, today announced a $530 million Series F investment to accelerate the industry’s shift to developer…

Mastercard to Acquire Blockchain Analytics Firm CipherTrace (SecurityWeek) Mastercard (NYSE: MA) has…

[ad_2]

Read More:Some insight into this week’s DDoS attacks. Germany opens a criminal investigation into

Products You May Like