Norway recommends replacing SSL VPN to prevent breaches post, mei 16, 2024mei 17, 2024 The Norwegian National Cyber Security Centre (NCSC) recommends replacing SSLVPN/WebVPN solutions with alternatives due to the repeated exploitation of related vulnerabilities in edge network devices to breach corporate networks. The organization recommends that the transition be completed by 2025, while organizations subject to the ‘Safety Act’ or those in critical infrastructure… Continue Reading
FBI takes down BreachForums ransomware website and Telegram channel post, mei 15, 2024mei 16, 2024 The FBI, in combination with police around the world, have taken control of the website and Telegram channel of ransomware brokerage site BreachForums. The action occurred on Wednesday, just days after the site hosted information apparently stolen from Europol’s databases and marks the latest action against the pernicious site. Despite numerous takedowns… Continue Reading
Nieuwe ‘Cuckoo’ macOS spyware post, mei 6, 2024 Let op als je Mac gebruiker bent en bedenkt dat je muziek wilt rippen. Deze malware is ingebed in gratis en betaalde applicaties die claimt dit voor je te doen. De malware installeert spyware alvorens te hebben gecontroleerd of je systeem zich in Armenië, Wit-Rusland, Kazakhstan, Rusland of Oekraine bevindt…. Continue Reading
Germany points finger at Fancy Bear for widespread 2023 hacks, DDoS attacks post, mei 6, 2024 It was just around a year ago that a spate of allegedly Russian-orchestrated cyberattacks hit government agencies in Germany, and now German officials claim to know for a fact who did it: APT28, or Fancy Bear, a Russian threat actor linked to the GRU intelligence service. Continue Reading
Microsoft Outlook Flaw Exploited by Russia’s APT28 to Hack Czech, German Entities post, mei 4, 2024mei 6, 2024 Czechia and Germany on Friday revealed that they were the target of a long-term cyber espionage campaign conducted by the Russia-linked nation-state actor known as APT28, drawing condemnation from the European Union (E.U.), the North Atlantic Treaty Organization (NATO), the U.K., and the U.S. The Czech Republic’s Ministry of Foreign Affairs… Continue Reading
Aanvallers tonen inventiviteit in DuneQuixote post, mei 2, 2024 De afgelopen maand ontdekte DuneQuixote malware campaign laat eens te meer zien hoe inventief aanvallers zijn. DuneQuixote maakt gebruik van twee verschillende ‘droppers’ en twee verschillende ‘payloads’. De dropper wordt gebruik voor de initiele toegang en zet de communicatie met de command&control infrastructuur op. De aanvallers gebruiken delen van Spaanse… Continue Reading
Terug van weggeweest: USB post, mei 1, 2024 De aanval met de USB-stick is nooit helemaal weggeweest, maar in IT-netwerken zagen we de laatste jaren dat beveiligingsmaatregelen succesvolle aanvallen steeds moeilijker maakten. In hun onderzoek laat Honeywell terecht zien dat USB-apparatuur in aanvallen op OT-infrastructuren door aanvallers nog steeds wordt gezien als een belangrijk middel. Hiermee wordt het… Continue Reading
US Post Office phishing sites get as much traffic as the real one post, april 28, 2024april 30, 2024 Security researchers analyzing phishing campaigns that target United States Postal Service (USPS) saw that the traffic to the fake domains is typically similar to what the legitimate site records and it is even higher during holidays. […] The total queries generated by all malicious websites uncovered by Akamai’s research during… Continue Reading
Ukraine Targeted in Cyberattack Exploiting 7-Year-Old Microsoft Office Flaw post, april 27, 2024april 30, 2024 Cybersecurity researchers have discovered a targeted operation against Ukraine that has been found leveraging a nearly seven-year-old flaw in Microsoft Office to deliver Cobalt Strike on compromised systems. The attack chain, which took place at the end of 2023 according to Deep Instinct, employs a PowerPoint slideshow file (“signal-2023-12-20-160512.ppsx”) as… Continue Reading
Suddenly, Chinese Spies Seem to Be Popping Up All Over Europe post, april 27, 2024april 30, 2024 One of the men, a young Briton known for his hawkish views on China, worked as an aide to a prominent member of the British Parliament. Another, a German citizen of Chinese descent, was an assistant to a member of the European Parliament representing Germany’s far right. While from different… Continue Reading