IT Security Newsletter - 5/7/2020
Naikon APT Hid Five-Year Espionage Attack Under Radar
After five years under the radar, the Naikon APT group has been unmasked in a long-term espionage campaign against several governments in the Asia-Pacific region. The Chinese APT group was first uncovered by Kaspersky researchers in 2015, in attacks against top-level government agencies around the South China Sea. After 2015, Naikon seemingly went silent. READ MORE...
Microsoft's GitHub account allegedly hacked, 500GB stolen
A hacker claims to have stolen over 500GB of data from Microsoft's private GitHub repositories, BleepingComputer has learned. This evening, a hacker going by the name Shiny Hunters contacted BleepingComputer to tell us they had hacked into the Microsoft GitHub account, gaining full access to the software giant's 'Private' repositories. READ MORE...
InfinityBlack Dismantled After Selling Millions of Credentials
The InfinityBlack hacking group, which is responsible for selling millions of stolen credentials, has been dismantled. Polish and Swiss law-enforcement authorities, supported by Europol, arrested five individuals in Poland believed to be members of InfinityBlack, on April 29. According to Europol, police also seized electronic equipment, external hard drives and hardware cryptocurrency wallets worth about $108,000. READ MORE...
Large scale Snake Ransomware campaign targets healthcare, more
The operators of the Snake Ransomware have launched a worldwide campaign of cyberattacks that have infected numerous businesses and at least one health care organization over the last few days. This past January, BleepingComputer reported on the new Snake ransomware that was targeting enterprise networks. Since then, the ransomware operators have been relatively quiet, with little to no new infections being detected in the wild. READ MORE...
How hackers are updating the EVILNUM malware to target the global financial sector
Hackers behind a series of targeted financial attacks have been updating their malware to better evade detection over the last year, according to new Prevailion research slated to be published Wednesday. Since at least February 2019, the hackers, who have begun impersonating CEOs and banks in their lure documents, have introduced at least seven updates to the malicious software known as EVILNUM. READ MORE...
Another Stuxnet-Style Vulnerability Found in Schneider Electric Software
Researchers have found another vulnerability in software made by Schneider Electric that is similar to the one exploited by the notorious Stuxnet malware. Stuxnet, the malware used a decade ago by the United States and Israel to cause damage to Iran's nuclear program, was designed to target Siemens' SIMATIC S7-300 and S7-400 programmable logic controllers (PLCs). READ MORE...
- ...in 1915, the British ocean liner Lusitania is sunk by a German submarine.
- ...in 1974, West German Chancellor Willy Brandt resigns.
- ...in 1992, the Space Shuttle Endeavour is launched on its first mission, which will also include the only three-person EVA ever attempted.
- ...in 1998, Mercedes-Benz buys Chrysler for $40 billion forming DaimlerChrysler.