Microsoft discovers threat actor targeting SolarWinds Serv-U software with 0-day exploit

Credit to Author: Eric Avena| Date: Tue, 13 Jul 2021 22:30:17 +0000

Microsoft has detected a 0-day remote code execution exploit being used to attack SolarWinds Serv-U FTP software in limited and targeted attacks. The Microsoft Threat Intelligence Center (MSTIC) attributes this campaign with high confidence to DEV-0322, a group operating out of China.

The post Microsoft discovers threat actor targeting SolarWinds Serv-U software with 0-day exploit appeared first on Microsoft Security Blog.

Read more

Breaches and Incidents: Top 5 Cyber-attacks in Quarter 1 – 2021

Credit to Author: Quickheal| Date: Thu, 17 Jun 2021 14:39:07 +0000

The second wave of the pandemic has hit India hard from a cybersecurity perspective. There has been a…

The post Breaches and Incidents: Top 5 Cyber-attacks in Quarter 1 – 2021 appeared first on Quick Heal Blog | Latest computer security news, tips, and advice.

Read more

Russia accused of hacking Dutch police during MH17 investigation

Credit to Author: Pieter Arntz| Date: Thu, 10 Jun 2021 14:19:03 +0000

Journalists in the Netherlands suspect that Russian group APT29 (Cozy Bear) breached Dutch Police systems looking for information about MH17.

Categories: Reports

Tags:

(Read more…)

The post Russia accused of hacking Dutch police during MH17 investigation appeared first on Malwarebytes Labs.

Read more

A week in security (May 24 -30)

Credit to Author: Malwarebytes Labs| Date: Mon, 31 May 2021 09:00:50 +0000

A roundup of the previous week’s most interesting security and online privacy news, from May 24 to May 30.

Categories: A week in security

Tags:

(Read more…)

The post A week in security (May 24 -30) appeared first on Malwarebytes Labs.

Read more

SolarWinds attackers launch new campaign

Credit to Author: Pieter Arntz| Date: Fri, 28 May 2021 14:24:01 +0000

The Microsoft Threat Intelligence Center has issued a warning about new activities from Nobelium, the group behind SolarWinds, Sunburst, and related attacks.

Categories: Threat analysis

Tags:

(Read more…)

The post SolarWinds attackers launch new campaign appeared first on Malwarebytes Labs.

Read more

Colonial Pipeline attack expected to trigger imminent hardening of cybersecurity rules for federal agencies

Credit to Author: David Ruiz| Date: Tue, 11 May 2021 21:22:31 +0000

Colonial Pipeline’s ransomware attack caused the White House to possibly refine a planned Executive Order on cybersecurity.

Categories: Government

Tags:

(Read more…)

The post Colonial Pipeline attack expected to trigger imminent hardening of cybersecurity rules for federal agencies appeared first on Malwarebytes Labs.

Read more

SUPERNOVA malware discovered on SolarWinds Orion server

Credit to Author: Pieter Arntz| Date: Fri, 23 Apr 2021 14:00:12 +0000

During an incident response investigation CISA found SUPERNOVA malware hidden on a server running SolarWinds Orion.

Categories: Reports

Tags:

(Read more…)

The post SUPERNOVA malware discovered on SolarWinds Orion server appeared first on Malwarebytes Labs.

Read more

CodeCov supply-chain compromise likened to SolarWinds attack

Credit to Author: Malwarebytes Labs| Date: Tue, 20 Apr 2021 20:13:24 +0000

A sophisticated supply-chain attack on CodeCov appears to have given attackers access to “hundreds” of the company’s clients, and their codebases.

Categories: Awareness

Tags:

(Read more…)

The post CodeCov supply-chain compromise likened to SolarWinds attack appeared first on Malwarebytes Labs.

Read more