IT Security Newsletter

IT Security Newsletter - 6/30/2021

Written by Cadre | Wed, Jun 30, 2021

International cops seize DoubleVPN, a service allegedly meant to shield ransomware attacks from investigators

A security tool that hackers used to disguise their ransomware attacks, email scams and other nefarious activity is offline following a global law enforcement action. Servers and web domains belonging to DoubleVPN, a virtual private network (VPN), were seized during an investigation by the Dutch National Police, the FBI, the U.K.'s National Crime Agency and Europol, authorities said Wednesday. READ MORE...

Russian hackers had months-long access to Denmark's central bank

Russian state hackers compromised Denmark's central bank (Danmarks Nationalbank) and planted malware that gave them access to the network for more than half a year without being detected. The breach was part of the SolarWinds cyber espionage campaign last year that the U.S. attributed to the Russian Foreign Intelligence Service, the SVR, through its hacking division commonly referred to as APT29, The Dukes, Cozy Bear, or Nobelium. READ MORE...

Lorenz ransomware decryptor recovers victims' files for free

Dutch cybersecurity firm Tesorion has released a free decryptor for the Lorenz ransomware, allowing victims to recover some of their files for free without paying a ransom. Lorenz is a human-operated ransomware that began operating in April 2021 and has since listed twelve victims whose data they have stolen and leaked on their ransomware data leak site. Lorenz is not particularly active and has begun to taper off in recent months compared to other operations. READ MORE...

PoC for critical Windows Print Spooler flaw leaked (CVE-2021-1675)

CVE-2021-1675, a Windows Print Spooler vulnerability that Microsoft patched in June 2021, presents a much greater danger than initially thought: researchers have proved that it can be exploited to achieve remote code execution and - what's worse - PoC exploits have since been leaked. CVE-2021-1675 (aka "PrintNightmare") was initially classed as low severity vulnerability, allowing local privilege elevation, and was patched on June 2021 Patch Tuesday. READ MORE...

  • ...in 1908, an explosion in the sky near Russia's Tunguska River flattens thousands of miles of Siberian forest with the largest known surface impact in recorded history.
  • ...in 1917, actress, singer, and civil rights activist Lena Horne is born in New York.
  • ...in 1953, the first Chevrolet Corvette rolls off the assembly line in Flint, MI.
  • ...in 1997, the United Kingdom transfers sovereignty over Hong Kong to the Chinese government.