IT Security Newsletter - 5/6/2020
Attackers Claim Identity of Financial NGO to Steal Sharepoint, Office Credentials
A new phishing campaign is targeting investment brokers with fraudulent emails aimed at stealing their Microsoft SharePoint and Office credentials, by invoking the identity of a credible financial regulatory organization. The "widespread, ongoing phishing campaign" is using emails that claim to be from specific officers at the Financial Industry Regulatory Authority (FINRA). READ MORE...
Krebs on Security: Europe's Largest Private Hospital Operator Hit by Ransomware
Fresenius, Europe's largest private hospital operator and a major provider of dialysis products and services that are in such high demand thanks to the COVID-19 pandemic, has been hit in a ransomware cyber attack on its technology systems. The company said the incident has limited some of its operations, but that patient care continues. READ MORE...
Nation-state hackers are targeting COVID-19 response orgs
Organizations involved in international COVID-19 responses, healthcare, and essential services are actively targeted by government-backed hacking groups according to a joint advisory issued today by cyber-security agencies from the US and the UK. Healthcare bodies, medical research organizations, pharmaceutical companies, academia, and local governments are some examples of organizations currently being targeted by state-backed hacking groups. READ MORE...
Massive campaign targets 900,000 WordPress sites in a week
Hackers have launched a massive attack against more than 900,000 WordPress sites seeking to redirect visitors to malvertising sites or plant a backdoor if an administrator is logged in. Based on the payload, the attacks seem to be the work of a single threat actor, who used at least 24,000 IP? addresses over the past month to send malicious requests to more than 900,000 sites. READ MORE...
Kaiji - a new strain of IoT malware seizing control and launching DDoS attacks
Kaiji, a new botnet campaign, created from scratch rather than resting on the shoulders of those that went before it, is infecting Linux-based servers and IoT devices with the intention of launching distributed denial-of-service (DDoS) attacks. Kaiji,named by researcher MalwareMustDie after one of the function names they observed in the malware's code, is believed to have originated in China, but is now spreading slowly around the world infecting new devices. READ MORE...
Hacker buys old Tesla parts on eBay, finds them full of user data
Tesla infotainment systems are a marvel to behold. Among other things, they display videos, run Spotify, connect to Wi-Fi, and of course store phone numbers of contacts. But those benefits require storing heaps of personal information. An amateur researcher recently gained access to 13 Tesla media control units that were removed from electric vehicles during repairs and refurbishments. Each one of the devices stored a trove of sensitive information despite being retired. READ MORE...
- ...in 1856, Austrian neurologist and father of modern psychoanalysis Sigmund Freud is born in Moravia, CZ.
- ...in 1915, actor/filmmaker Orson Welles ("Citizen Kane", "The Third Man") is born in Kenosha, WI.
- ...in 1915, Babe Ruth hits his first major league home run as a pitcher for the Boston Red Sox.
- ...in 1935, President Franklin D. Roosevelt issues Executive Order 7034, establishing the Works Progress Administration.
- ...in 1941, comedian Bob Hope makes his first of dozens of tours with the USO to entertain American troops overseas.