Cybersecurity News - Page 269

In 2021 nation-state actors somewhat faded into the background, but they still pose a significant threat.

The attackers exploited the Log4Shell vulnerability on ONUS’ Cyclos server to plant backdoor and exfiltrate data.

The adversary used a modified version of the Log4Shell exploit to gain access to the instance of VMware Horizon that employed the vulnerable Log4j library.

According to a member of AvosLocker, the gang usually tries to steer clear of government agencies and hospitals.

The latest update marks the fifth security issue discovered in the software over the past month.

The attack disrupted systems for publishing paper newspapers, advertisements and subscription management.

LastPass says that that some of the security alerts users received were “likely triggered in error.”

DanderSpritz first came to light on April 14, 2017, when the Shadow Brokers group leaked the exploit tool as part as of the “Lost in Translation” leak.

The exposed data contained files detailing financial, shipment, transportation, personal and sensitive records of D.W. Morgan’s employees and clients worldwide.

In the recent attacks the eCh0raix operators have been observed demanding a ransom ranging from .024 up to .06 bitcoins.