Misconfigured Elasticsearch Instance Exposes More Than 5 Billion Records
An open Elasticsearch instance has exposed more than 5 billion records in an incident discovered on March 16. The irony is that the data in two Elasticsearch collections appears to be information on data breaches collected by a UK-based research firm from 2012 to 2019. The structured data includes extensive information on the breaches, including domain, source, contact email address, and password. READ MORE...
DDoS Attack Targets German Food Delivery Service
Cybercriminals have launched a distributed denial-of-service (DDoS) attack against German food delivery service Takeaway[dot]com (Liefrando[dot]de), demanding two bitcoins (about $11,000) to stop the flood of traffic. The attack has now stopped, according to a report from BleepingComputer. The COVID-19 virus has caused Germany to implement severe restrictions on the restaurant industry. READ MORE...
COVID-19 disruption delays release of Chrome version 81
It's the COVID-19 shortage nobody expected - not toilet rolls, tinned goods or headache pills this time but Google software engineers. It's a problem that many believe explains the abrupt decision by Google to delay the release of Chrome 81, the stable version of which was scheduled to start appearing on users' computers on 17 March. The same delay applies for future Chrome versions, which should have appeared roughly every five weeks after that. READ MORE...
Cryptojacking is almost conquered - crushed along with Coinhive
Cryptojacking may not be entirely dead following the shutdown of a notorious cryptomining service, but it isn't very healthy, according to a paper released this week. Cryptomining websites embed JavaScript code that forces the user's browser to begin mining for cryptocurrency. The digital asset of choice is normally Monero, which is often used in cybercrime because of its enhanced anonymity features. READ MORE...
Sodinokibi Ransomware Data Leaks Now Sold on Hacker Forums
Ransomware victims who do not pay a ransom and have their stolen files leaked are now facing a bigger nightmare as other hackers and criminals sell and distribute the released files on hacker forums. In 2019, the Maze Ransomware operators began stealing data from victims before encrypting devices and using the stolen files as leverage to get the victims to pay. If the victim decided not to pay, the Maze operators would then publish the files, READ MORE...
The cybersecurity implications of working remotely
We sat down with Demi Ben-Ari, CTO at Panorays, to discuss the cybersecurity risks of remote work facilitated by virtual environments. The global spread of the COVID-19 coronavirus has had a notable impact on workplaces worldwide, and many organizations are encouraging employees to work from home. What are the cybersecurity implications of this shift? READ MORE...
Malwarebytes: Security tips for working from home (WFH)
Over the last decade, remote work and working from home has grown in popularity for many professionals. In fact, a 2018 study found more than 70 percent of global employees work remotely at least once per week. However, the coronavirus pandemic and resulting lockdown in many parts of the world have forced a large number of employees into unfamiliar territory-not just remote work, but full-time working from home (WFH). READ MORE...
Cisco Warns of High-Severity SD-WAN Flaws
Cisco Systems has fixed three high-severity vulnerabilities in its software-defined networking for wide-area network (SD-WAN) solutions for business users. If exploited, the flaws could enable bad actors to execute commands with root privileges on affected systems. To exploit the vulnerabilities attackers need to first be local and authenticated. The three flaws are located in various Cisco hardware and software products running the company's SD-WAN software earlier than Release 19.2.2. READ MORE...
