Tag Archives: cybersecuritynews

Cyber Attacks Rock Ukraine and Russia

From command & control to data wiping malware, Ukraine is struggling with quite a bit of cyber threats since the start of Russia’s operation. When it comes to DDoS attacks both Russia and Ukraine are both having to defend themself. Internet sites in both countries have been seen going completely un-reachable during this event.

ABC News – Cyberattacks accompany Russian military assault on Ukraine – ABC News: https://abcn.ws/3IjbNmX

ZDNet – Flight tracker Flightradar24 crash caused by ‘international interest’ in Ukraine, Russia conflict: https://www.zdnet.com/article/flight-tracker-flightradar24-crash-caused-by-international-interest-in-ukraine-russia-conflict/

ZDNet – Ukraine Ministry of Defense confirms DDoS attack; state banks lose connectivity: https://www.zdnet.com/article/ukraine-ministry-of-defense-confirms-ddos-attack-state-banks-loses-connectivity/

Infosecurity Magazine – US and UK Warn of VPNFilter Successor “Cyclops Blink”: https://www.infosecurity-magazine.com/

Reuters – Ukraine computers hit by data-wiping software as Russia launched invasion: https://www.reuters.com/world/europe/ukrainian-government-foreign-ministry-parliament-websites-down-2022-02-23/

CNBC – Cyberattack hits Ukrainian banks and government websites: https://www.cnbc.com/2022/02/23/cyberattack-hits-ukrainian-banks-and-government-websites.html

CNN – Russian government websites mysteriously go dark as invasion continues: https://www.cnn.com/europe/live-news/ukraine-russia-news-02-24-22-intl/h_e0d16b404e39c4f6bbbb337fe2e4f1a1

Info Stealer Banking Trojan Xenomorph Supposedly on Google Play

Info Stealer Banking Trojan Xenomorph Supposedly on Google Play. Targeting 56 banks in Europe and having over 50,000 installations.

#banking #android #google #trojan #informationtheft #cybercrime #cybersecurity

burnoutblusbolsteredblog.blogspot.com/2022/02/info-stealer-banking-trojan-xenomorph.html

Raid on Illegal Cryptomining Operation Seized Thousands of PS4s

“Thousands of PS4s seized in Ukraine in illegal cryptocurrency mining sting” via Charlie Osborne | ZDNet

“Thousands of PlayStation 4 gaming consoles have been seized after their discovery in an old warehouse, used to illicitly mine for cryptocurrency.

Ukraine’s Security Service said last week that in the city of Vinnytsia, located along the Southern Bug river, there was an abandoned warehouse in its industrial area that once belonged to…”

More detail: https://www.zdnet.com/article/thousands-of-ps4s-seized-in-ukraine-in-illegal-cryptocurrency-mining-sting/

0Day Used Against Orgs via CyberThreat Group

“Hackers used SolarWinds zero-day bug to target US Defense orgs” via Lawrence Abrams | Bleeping Computer

“China-based hackers actively target US defense and software companies using a vulnerability in the SolarWinds Serv-U FTP server.

Today, SolarWinds released a security update for a zero-day vulnerability in Serv-U FTP servers that allow remote code execution when SSH is enabled.

According to SolarWinds, this vulnerability was disclosed to Microsoft, who saw a threat actor actively exploiting the vulnerability to execute commands on vulnerable customer’s devices.”

More detail: https://www.bleepingcomputer.com/news/microsoft/hackers-used-solarwinds-zero-day-bug-to-target-us-defense-orgs/

RiskIQ to be Acquired by Microsoft

“Microsoft to acquire RiskIQ to strengthen cybersecurity of digital transformation and hybrid work” via Emma Jones | Microsoft Security Blog

“Organizations are increasingly using the cloud to reimagine every facet of their business. Hybrid work has accelerated this digital transformation, and customers are challenged with the increasing sophistication and frequency of cyberattacks. Today, Microsoft is announcing that we have entered into a definitive agreement to acquire RiskIQ, a leader in global threat intelligence and attack surface management, to help our shared customers build a more comprehensive view of the global threats to their businesses, better understand vulnerable internet-facing assets, and build world-class threat intelligence.”

More detail: https://www.microsoft.com/security/blog/2021/07/12/microsoft-to-acquire-riskiq-to-strengthen-cybersecurity-of-digital-transformation-and-hybrid-work/

25 Didi Apps Removed after Investigation Launch

“China to remove 25 Didi apps from store as crackdown intensifies” via Reuters

“administration on Friday said it would remove 25 mobile apps operated by Didi Global Inc from app stores as the government stepped up a crackdown on the ride-hailing giant.

The apps in question used data that was illegally collected by Didi and include those for its delivery service, camera device and finance services, the Cyberspace Administration of China said in a statement.”

More detail: https://finance.yahoo.com/amphtml/news/china-cyberspace-administration-says-remove-142715192.html

Artificial Intelligence’s Affects on the Cybersecurity Sector

Does AI have any affect on the current state of the cybersecurity sector? Booz Allen and industry leaders are pondering exactly that:

“Booz Allen and Industry Leaders Explore AI’s Impact on San Diego’s Booming Cybersecurity Sector” via Yahoo! Finance

““AI is not only helping cyber firms develop new products but also helping companies expand output amid talent shortages.”

Booz Allen Senior Vice President Jennie Brooks, head of the firm’s San Diego office

Few cities in America can match San Diego’s status as a growing technology hub. The region’s impact and support of cybersecurity in particular is staggering.

“Cyber in San Diego continues to grow by leaps and bounds, especially in tech, critical infrastructure, and national security. With a total regional economic impact of $3.5 billion annually, the cyber sector is the economic equivalent of hosting nine Super Bowls,” said Lisa Easterly, President and CEO of Cyber Center of Excellence (CCOE)—sponsor of the study.”

More details: https://finance.yahoo.com/news/booz-allen-industry-leaders-explore-120239741.html