So much for NZ as the last refuge of civilisation New Zealand’s stock exchange (NZX) has closed for a third day thanks to a DDOS attack.…
More:
DDOS downs New Zealand stock exchange for third consecutive day
Monthly Archives: August 2020
Forget your space-age IT security systems. It might just take a $1m bribe and a willing employee to be pwned
Russian charged with trying to bung staffer cash to infect own bosses’ network during DDoS distraction A Russian citizen is accused of flying to America to bribe a Nevada company employee to infect their bosses’ IT network with malware.…
See more here:
Forget your space-age IT security systems. It might just take a $1m bribe and a willing employee to be pwned
New Zealand stock exchange halted by cyber-attack
Relatively simple DDoS attacks knocked trading offline on Tuesday and Wednesday, NZX says.
Read the article:
New Zealand stock exchange halted by cyber-attack
New attack vectors make securing virtual companies even more challenging
As organizations are settling into long-term remote working, new attack vectors for opportunistic cyberattackers—and new challenges for network administrators have been introduced, Nuspire reveals. Now six months into the pandemic, attackers pivoted away from COVID-19 themes, instead utilizing other prominent media themes like the upcoming U.S. election to wreak havoc. Increase in both botnet and exploit activity There was an increase in both botnet and exploit activity over the course of Q2 2020 by 29% … More ? The post New attack vectors make securing virtual companies even more challenging appeared first on Help Net Security .
Continued here:
New attack vectors make securing virtual companies even more challenging
Week in review: Kali Linux 2020.3, mobile security threats, ISO certs at risk of lapsing
Here’s an overview of some of last week’s most interesting news and articles: Updated cryptojacking worm steals AWS credentials A malicious cryptocurrency miner and DDoS worm that has been targeting Docker systems for months now also steals Amazon Web Services (AWS) credentials. Thousands of ISO certifications at risk of lapsing due to halted re-certification audits Thousands of valuable ISO management system certifications earned by UK companies may now be at risk because auditors from Certification … More ? The post Week in review: Kali Linux 2020.3, mobile security threats, ISO certs at risk of lapsing appeared first on Help Net Security .
Excerpt from:
Week in review: Kali Linux 2020.3, mobile security threats, ISO certs at risk of lapsing
Fileless worm builds cryptomining, backdoor-planting P2P botnet
A fileless worm dubbed FritzFrog has been found roping Linux devices running SSH servers – corporate servers, routers and IoT devices – into a P2P botnet whose apparent goal is to mine cryptocurrency. Simultaneously, though, the malware creates a backdoor on the infected machines, allowing attackers to access it at a later date even if the SSH password has been changed in the meantime. “When looking at the amount of code dedicated to the miner, … More ? The post Fileless worm builds cryptomining, backdoor-planting P2P botnet appeared first on Help Net Security .
More:
Fileless worm builds cryptomining, backdoor-planting P2P botnet
Updated cryptojacking worm steals AWS credentials
A malicious cryptocurrency miner and DDoS worm that has been targeting Docker systems for months now also steals Amazon Web Services (AWS) credentials. What’s more, TeamTNT – the attackers wielding it – have also begun targeting Kubernetes clusters and Jenkins servers. The original threat TeamTNT’s “calling card” appears when the worm first runs on the target installation: First spotted by MalwareHunterTeam and Trend Micro researchers in May 2020, the original worm would: Scan for open … More ? The post Updated cryptojacking worm steals AWS credentials appeared first on Help Net Security .
Read the original post:
Updated cryptojacking worm steals AWS credentials
DDoS attacks in April, May and June 2020 double compared to Q2 2019
Findings from Link11’s H1 2020 DDoS Report reveal a resurgence in DDoS attacks during the global COVID-19 related lockdowns. In April, May and June 2020, the number of attacks registered by Link11’s Security Operations Center (LSOC) averaged 97% higher than the during the same period in 2019, peaking at a 108% increase in May 2020. Key findings from the annual report include: Multivector attacks on the rise: 52% of attacks combined several methods of attack, … More ? The post DDoS attacks in April, May and June 2020 double compared to Q2 2019 appeared first on Help Net Security .
Continued here:
DDoS attacks in April, May and June 2020 double compared to Q2 2019
New defense method enables telecoms, ISPs to protect consumer IoT devices
Instead of relying on customers to protect their vulnerable smart home devices from being used in cyberattacks, Ben-Gurion University of the Negev (BGU) and National University of Singapore (NUS) researchers have developed a new method that enables telecommunications and internet service providers to monitor these devices. An overview of the key steps in the proposed method According to their new study, the ability to launch massive DDoS attacks via a botnet of compromised devices is … More ? The post New defense method enables telecoms, ISPs to protect consumer IoT devices appeared first on Help Net Security .
Visit site:
New defense method enables telecoms, ISPs to protect consumer IoT devices