You are here

Home » Cybersecurity

Cybersecurity

SpeakUp Backdoor Trojan May Be a Threat throughout 2019

Software technology company Check Point reports its researchers detected a new campaign exploiting Linux servers to distribute a backdoor Trojan, dubbed SpeakUp. SpeakUp is capable of delivering any payload and executing it on compromised machines; it evades detection by all security vendors’ anti-virus software. According to Check Point, threats like SpeakUp are a stark warning of bigger threats to come since they can evade detection and then distribute further, potentially more dangerous malware to compromised machines.

Four Ransomware Trends to Watch in 2019

An article from Recorded Future predicts some trends in ransomware for the coming year. One of the predicted trends is that successful ransomware campaigns will continue to rely on open remote desktop protocol (RDP) servers as the initial access point. These campaigns look for networks that have internet-facing servers running the RDP service, with attackers either taking advantage of well-known vulnerabilities in unpatched servers or using brute-force password attacks.

Some GPS Receivers May Malfunction on or after April 6

GPS Week Rollover occurs on April 6, 2019, which could cause a mini "millennium bug" for some GPS devices. While this is a known issue arising from the way the system works, critical infrastructure operators whose systems use GPS are encouraged to prepare for the event. Most modern GPS receivers shouldn't be affected by this (devices that conform to IS-GPS-200 and provides UTC will be fine), but testing carried out by the U.S.

Why U.S. Cities are a Major Target for Cyber Attacks

A former cyber attacker writes about why city governments are appealing targets for malicious cyber operations. For one, the potential impact of targeting a city is huge. In addition to the normal “benefits” of getting access to private customer data, credit cards and so on, penetrating a city may give attackers access to sensitive information about residents. Depending on the local-government agency and its IT structure, attackers can access and impact a variety of systems, including those associated with critical infrastructure. Secondly, cities are vulnerable.

Hackers Wipe U.S. Servers of Email Provider, Erasing Customers’ Data

Hackers have breached the severs of email provider VFEmail and wiped the data from all its US servers, destroying customers' data in the process. "At this time, the attacker has formatted all the disks on every server," the company said yesterday. "Every VM is lost. Every file server is lost, every backup server is lost. This was more than a multi-password via SSH exploit, and there was no ransom. Just attack and destroy," VFEmail said. Founded in 2001 and based in Milwaukee, VFEmail provides email service to businesses and end users.

Microsoft Releases February 2019 Security Updates

Microsoft has released its monthly update to address vulnerabilities in its software. For this month, Microsoft has released security updates for Adobe Flash Player, Internet Explorer, Microsoft Edge, Microsoft Windows, Microsoft Office and Microsoft Office Services and Web Apps, ChakraCore, .NET Framework, Microsoft Exchange Server, Microsoft Visual Studio, Azure IoT SDK, Microsoft Dynamics, Team Foundation Server, and Visual Studio Code.

Siemens EN100 Ethernet Module (ICSA-19-038-02) – Product Used in the Energy Sector

The NCCIC has published an advisory on an improper input vulnerability in Siemens EN100 Ethernet Module. Firmware variant IEC 61850 for EN100 Ethernet module version prior to 4.33 is affected. The EN100 Ethernet module for the SWT 3000 management platform is affected by security vulnerabilities that could allow an attacker to conduct a denial-of-service attack over the network. Siemens has released update v4.33 for several affected products, is working on updates for the remaining affected products, and recommends specific countermeasures until fixes are available.

Pages

Subscribe to Cybersecurity