IT Security Newsletter

IT Security Newsletter - 7/7/2020

Written by Cadre | Tue, Jul 7, 2020

First-Ever Russian BEC Gang, Cosmic Lynx, Uncovered

Researchers say they have discovered the first-ever reported Russian business email compromise (BEC) cybercriminal ring, showing that sophisticated attackers beyond the usual Nigerian scammers are setting their sights on the email-based attack vector. The BEC gang is called Cosmic Lynx, and has been associated with more than 200 BEC campaigns targeting senior-level executives in 46 countries since last July. READ MORE...

EDP energy giant confirms Ragnar Locker ransomware attack

EDP Renewables North America (EDPR NA) confirmed a Ragnar Locker ransomware attack that affected its parent corporation's systems, the Portuguese multinational energy giant Energias de Portugal (EDP). EDP Group's activities are focused on electric power generation and distribution, as well as on the information technology industry sectors. At the moment, it has over 11,500 employees, delivers energy to over 11 million customers, and is the world's 4th largest producer of wind energy. READ MORE...

Citrix fixes 11 flaws in ADC, Gateway, and SD-WAN WANOP appliances

Citrix today patched a set of 11 vulnerabilities found to affect its Citrix ADC, Citrix Gateway, and Citrix SD-WAN WANOP (appliance models 4000-WO, 4100-WO, 5000-WO, and 5100-WO) networking products. According to Citrix, these vulnerabilities are not related to CVE-2019-19781 remote code execution flaw the company patched in January 2020 and do not affect cloud versions of Citrix appliances. READ MORE...

Credit-Card Skimmer Seeks Websites Running Microsoft's ASP.NET

A credit-card skimmer is exclusively targeting websites that are hosted on Microsoft IIS servers and running ASP.NET, the company's web framework for developing web applications and services. Malwarebytes Lab researchers found more than a dozen websites compromised with malicious code injected into one of their existing JavaScript libraries. The campaign likely started in April 2020 and has affected a range of victims, including sports organizations, health and community associations, and a credit union. READ MORE...

Try2Cry Ransomware Spreads via USB Drives

G Data security researchers have identified a new ransomware family that attempts to spread using infected USB drives. Dubbed Try2Cry, the new piece of ransomware borrows functionality from Spora, which first emerged three years ago. Written in .NET, Try2Cry features a USB worm component similar to that previously observed in the njRAT remote access Trojan. The new piece of ransomware appears related to the "Stupid" ransomware family, which is available in open-source on GitHub. READ MORE...

Android Users Hit with 'Undeletable' Adware

A healthy percentage of Android users targeted by mobile malware or mobile adware last year suffered a system partition infection, making the malicious files virtually undeletable. That's according to research from Kaspersky, which found that 14.8 percent of its users who suffered such attacks were left with undeletable files. These range from trojans that can install and run apps without the user's knowledge, to less threatening, but nevertheless intrusive, advertising apps. READ MORE...

Purple Fox EK Adds Microsoft Exploits to Arsenal

The Purple Fox exploit kit (EK) has added two new exploits targeting critical- and high-severity Microsoft vulnerabilities to its bag of tricks - and researchers say they expect more attacks to be added in the future. The Purple Fox EK was previously analyzed in September, when researchers said that it appears to have been built to replace the Rig EK in the distribution chain of Purple Fox malware, which is a trojan/rootkit. READ MORE...

Nigerian Instagram Star Extradited to U.S. Over Role in Cybercrime Schemes

A Nigerian national who has more than 2.5 million followers on Instagram, where he flaunts his lavish lifestyle, was extradited from the United Arab Emirates (UAE) and appeared in court in the United States to face cybercrime-related charges. The man, Ramon Olorunwa Abbas, 37, who is also known as "Ray Hushpuppi" and "Hush," is accused of targeting multiple organizations, including a U.S. law firm, a foreign bank and an English Premier League soccer club, to perform business email compromise (BEC) fraud. READ MORE...

The rise and fall of Adobe Flash

Few technologies have yielded such divisive and widespread passion as Flash. Many gush over its versatility and ease of use as a creative platform or its critical role in the rise of web video. Others abhor Flash-based advertising and Web design, or they despise the resource-intensiveness of the Flash Player plugin in its later years. Whichever side of the love-hate divide you land on, there's no denying the fact that Flash changed how we consume, create, and interact with content on the Web. READ MORE...

  • ...in 1928, sliced bread is sold for the first time by the Chillicothe Baking Company of Chillicothe, MO.
  • ...in 1940, former Beatle and actor Ringo Starr (born Richard Starkey) is born in Liverpool, England.
  • ...in 1954, Elvis Presley makes his radio debut on WHBQ Memphis when they play his first Sun Records single, "That's All Right".
  • ...in 1981, President Ronald Reagan nominates Sandra Day O'Connor to be the first female member of the U.S. Supreme Court.