Category Archives: Latest Security News

Malware Using Memes Posted on Twitter as C&C Service

Researchers have observed a new threat using malicious memes posted on Twitter to receive command-and-control (C&C) instructions. Trend Micro observed that the malicious activity begins after a threat detected as “TROJAN.MSIL.BERBOMTHUM.AA” executes on an infected machine. As of this writing, the Japanese multinational digital security firm had not identified the delivery mechanism for the malware. […]… Read More

The post Malware Using Memes Posted on Twitter as C&C Service appeared first on The State of Security.

Office 365 Phishing Attack Using Fake Non-Delivery Notifications

A new phishing attack is using fake non-delivery notifications in an attempt to steal users’ Microsoft Office 365 credentials. SANS ISC Handler Xavier Mertens discovered the attack while reviewing data captured by his honeypots. The attack begins when a user receives a fake non-delivery notification from Microsoft such as the one shown below: For the […]… Read More

The post Office 365 Phishing Attack Using Fake Non-Delivery Notifications appeared first on The State of Security.

Saipem Identified a Digital Attack against Some of Its Servers

Italian oil and gas industry contractor Saipem has announced that it identified a digital attack against some of its servers. On 10 December, Saipem published a statement on its website in which it revealed the attack and said it was in the process of collecting information to determine the impact on its systems and the […]… Read More

The post Saipem Identified a Digital Attack against Some of Its Servers appeared first on The State of Security.

Bug Affected 52.5 Million Users in Connection with a Google+ API

A bug connected to a Google+ API potentially exposed the profile information belonging to 52.5 million users of Google’s social network. According to David Thacker, VP of Product Management for G Suite, a software update in November introduced the weakness. This bug enabled apps that requested visibility of 52.5 million Google+ users’ name, email address, […]… Read More

The post Bug Affected 52.5 Million Users in Connection with a Google+ API appeared first on The State of Security.

New Sextortion Scam Campaign Delivering GandCrab Ransomware

Digital criminals have launched a new sextortion campaign that attempts to infect users’ computers with a version of GandCrab ransomware. On 5 December, researchers at Proofpoint observed a scam operation spewing out thousands of emails to users primarily based in the United States. Its emails followed the same model as those of an earlier campaign […]… Read More

The post New Sextortion Scam Campaign Delivering GandCrab Ransomware appeared first on The State of Security.

Linux Rabbit and Rabbot Malware Leveraged to Install Cryptominers

Digital attackers used new malware called “Linux Rabbit” and “Rabbot” to install cryptominers on targeted devices and servers. In August 2018, researchers at Anomali Labs came across a campaign where Linux Rabbit targeted Linux servers located in Russia, South Korea, the United Kingdom and the United States. The malware began by using Tor hidden services […]… Read More

The post Linux Rabbit and Rabbot Malware Leveraged to Install Cryptominers appeared first on The State of Security.

More Than 100,000 PCs in China Infected by New Ransomware Strain

A new ransomware strain successfully infected more than 100,000 personal computers in China over a period of just four days. According to a report from Velvet Security, the first samples of this ransomware broke out on 1 December after users installed multiple social media-themed apps including “Account Operation V3.1,” an app designed to help users […]… Read More

The post More Than 100,000 PCs in China Infected by New Ransomware Strain appeared first on The State of Security.

Critical Vulnerability Uncovered In Kubernetes

The first major security flaw has been uncovered in Kubernetes, the popular container orchestration system developed by Google. The vulnerability, identified as CVE-2018-1002105, carries a critical CVSS V3 rating of 9.8 due to low attack complexity, requiring no special privileges, and a network attack vector. The vulnerability is triggered when specially crafted requests allow users […]… Read More

The post Critical Vulnerability Uncovered In Kubernetes appeared first on The State of Security.

Security Incident Potentially Exposed 100 Million Quora Users’ Personal Data

A security incident at Quora potentially compromised the personal information and other details of approximately 100 million users. On 30 November, the question-and-answer website identified that a third party had gained access to one of its systems and compromised the data of 100 million users. The information potentially exposed by the incident included users’ names, […]… Read More

The post Security Incident Potentially Exposed 100 Million Quora Users’ Personal Data appeared first on The State of Security.

Marriott Reveals Security Incident Involving Starwood Reservation Database

Marriott announced that it recently detected and addressed a security incident involving the Starwood guest reservation database. On 30 November, Marriott revealed that an internal investigation had found evidence of unauthorized access to the database containing guests’ reservation information at Sheraton hotels and other Starwood properties on or before 10 September 2018. The American multinational […]… Read More

The post Marriott Reveals Security Incident Involving Starwood Reservation Database appeared first on The State of Security.

Dell Discloses Digital Security Event Involving Customer Information

Dell disclosed a digital security incident in which unauthorized individuals targeted some pieces of customer information. On 28 November, the American multinational computer technology company announced that it had detected a security incident earlier in the month. The event consisted of unauthorized activity on Dell.com, Premier, Global Portal and support.dell.com (‘Esupport’). Other parts of the […]… Read More

The post Dell Discloses Digital Security Event Involving Customer Information appeared first on The State of Security.

Worm Using Removable Drives to Distribute BLADABINDI Backdoor

A newly detected worm is propagating through removable drives to distribute a fileless variant of the BLADABINDI backdoor. In mid-November, researchers at Trend Micro first observed the worm, which the security firm detects as “Worm.Win32.BLADABINDI.AA.” They’re still investigating the threat’s exact method for infecting a system. But after analyzing its propagation routine, the researchers determined […]… Read More

The post Worm Using Removable Drives to Distribute BLADABINDI Backdoor appeared first on The State of Security.

German Social Media Provider Fined €20K for Data Breach

A German social media provider received an order to pay a €20,000 fine for a data breach that occurred in the summer of 2018. On 22 November, the regional data protection watchdog LfDI Baden-Württemberg announced that it had imposed the fine on a local “social media provider” after the organization filed a data breach report […]… Read More

The post German Social Media Provider Fined €20K for Data Breach appeared first on The State of Security.

Two Young Men Jailed for Involvement in TalkTalk Data Breach

Two young men received prison sentences for helping to perpetrate a data breach at the UK telecommunications provider TalkTalk. On 19 November, Judge Anuja Dhir QC at the Old Bailey sentenced Matthew Hanley, 23, to 12 months in prison. She handed down a slightly lighter sentence of eight months in jail to Connor Allsopp, 21. […]… Read More

The post Two Young Men Jailed for Involvement in TalkTalk Data Breach appeared first on The State of Security.

Fraudsters Targeting UK University Students with Fake Tax Refund Emails

Fraudsters are targeting UK university students with fake tax refund emails designed to steal their personal and/or banking information. According to BBC News, Her Majesty’s Revenue and Customs (HRMC) received reports of scammers targeting thousands of students at educational institutions across the country in October and November. In their scam attempts, the bad actors sent […]… Read More

The post Fraudsters Targeting UK University Students with Fake Tax Refund Emails appeared first on The State of Security.

Malaysia’s Largest Media Company Allegedly Suffers Ransomware Attack

Malaysia’s largest media company allegedly suffered a ransomware attack that affected its ability to use its in-house email system. Anonymous sources told The Edge Financial Daily that ransomware attackers struck Media Prima Berhad, a media giant which operates businesses in television, print, radio, out-of-home advertising, content and digital media. According to those unnamed individuals, bad […]… Read More

The post Malaysia’s Largest Media Company Allegedly Suffers Ransomware Attack appeared first on The State of Security.

14 Malware Families Targeting E-Commerce Brands Ahead of Black Friday

Researchers discovered 14 malware families targeting dozens of e-commerce brands just over one week before Black Friday. Kaspersky Lab observed the threats targeting 67 e-commerce brands including 33 consumer apparel sites, eight consumer electronic outlets and three online retail platforms. Banking trojans made up more than half of the malware tracked by Kaspersky. They included […]… Read More

The post 14 Malware Families Targeting E-Commerce Brands Ahead of Black Friday appeared first on The State of Security.

Nordstrom Reveals Data Breach, Sensitive Employee Information Exposed

A data breach involving luxury retailer Nordstrom has potentially exposed the personal information of thousands of its employees. The Seattle-based company said the compromised data included employee names, Social Security numbers, dates of birth, checking account and routing numbers, salaries, and more. According to reports, employees received an email notification this week informing them of […]… Read More

The post Nordstrom Reveals Data Breach, Sensitive Employee Information Exposed appeared first on The State of Security.

Canada Post Leaked Personal Data of 4,500 Cannabis Customers

The Ontario Cannabis Store (OCS) is warning that approximately 4,500 customers had their personal information exposed following a privacy breach involving Canada Post. In a statement on Twitter, the OCS announced on Wednesday that an unauthorized individual was able to access order records for roughly two percent of its customer base using the mail carrier’s […]… Read More

The post Canada Post Leaked Personal Data of 4,500 Cannabis Customers appeared first on The State of Security.

Half a Million People Potentially Affected by Data Breach at Bankers Life

A data breach at Bankers Life might have compromised the personally identifiable information of over half a million people. On 25 October 2018, Fortune 1000 company CNO Financial Group, Inc. submitted a report to the Office for Civil Rights’ Breach Portal at the U.S. Department of Health and Human Services. The report revealed an instance […]… Read More

The post Half a Million People Potentially Affected by Data Breach at Bankers Life appeared first on The State of Security.

HSBC Bank Notifies Customers of Data Breach

HSBC Bank sent a letter to an undisclosed number of customers informing them of a data breach that might have exposed their personal information. The California Attorney General’s Office recently received a template of a letter that HSBC Bank sent out to customers on 2 November. In the notice, the bank explains that it learned […]… Read More

The post HSBC Bank Notifies Customers of Data Breach appeared first on The State of Security.