U.S. cybersecurity and intelligence agencies have published a joint advisory warning of attacks perpetrated by a cybercrime gang known as the Daixin Team primarily targeting the healthcare sector in the country. “The Daixin Team is a ransomware and data extortion group that has targeted the HPH Sector with ransomware and data extortion operations since at least June […]
Cyber News, Cyber Threat Trends
SideWinder, a prolific nation-state actor mainly known for targeting Pakistan military entities, compromised the official website of the National Electric Power Regulatory Authority (NEPRA) to deliver a tailored malware called WarHawk. “The newly discovered WarHawk backdoor contains various malicious modules that deliver Cobalt Strike, incorporating new TTPs such as KernelCallBackTable injection
Cyber News, Cyber Threat TrendsWhen it comes to identity theft, trust your gut when something doesn’t feel right. Follow up. What you’re seeing could be a problem. A missing bill or a mysterious charge on your credit card could be the tip of an identity theft iceberg, one that can run deep if left unaddressed. Here, we’ll look at several signs of identity theft that likely need some investigation and the steps […]
Cyber News, Cyber Threat Trends
SSH Error — Github or AWS CloudFormation? While trying to access the Github meta API to get the list of CIDRs associated with GitHub and put them into an AWS Prefix List I randomly got this error. verfiable_password_authentication… falsessh_key_fingerprints The thing is, my code never changed when I got this error. I had run the same code a […]
Cyber News, Cyber Threat Trends
The breach of LA Unified School District (LAUSD) highlights the prevalence of password vulnerabilities, as criminal hackers continue to use breached credentials in increasingly frequent ransomware attacks on education. The Labor Day weekend breach of LAUSD brought significant districtwide disruptions to access to email, computers, and applications. It’s unclear what student or employee data the
Cyber News, Cyber Threat Trends
ACM.89 Using a KMS customer managed key (CMK) to limit access to data on EC2 Instances and EBS Volumes This is a continuation of my series on Automating Cybersecurity Metrics. Encrypting Volumes when you deploy an EC2 instance is a security best practice on AWS. In fact, you will probably want to enforce this throughout your […]
Cyber News, Cyber Threat Trends
ACM.88 Deploy and instance in the Developer VPC created Earlier and Test Remote Access This is a continuation of my series of posts on Automating Cybersecurity Metrics. We already spent a few posts considering ways to authenticate and log into an EC2 instance and for now, we will use an SSH key. You can follow along […]
Cyber News, Cyber Threat TrendsPeople on all levels are still making attempts to adopt the new “normal” that COVID-19 presented to the world. It […]
Cyber News, Cyber Threat Trends
Researchers have disclosed details about a now-patched critical flaw in the Move virtual machine that powers the Aptos blockchain network. The vulnerability “can cause Aptos nodes to crash and cause denial of service,” Singapore-based Numen Cyber Labs said in a technical write-up published earlier this month. Aptos is a new entrant to the blockchain space, which launched its mainnet on October
Cyber News, Cyber Threat Trends