Cyber Defense Advisors

Month: November 2022

Home / News / 2022 / November / Page 35
  • by
  • November 14, 2022

New “Earth Longzhi” APT Targets Ukraine and Asian Countries with Custom Cobalt Strike Loaders

Entities located in East and Southeast Asia as well as Ukraine have been targeted at least since 2020 by a previously undocumented subgroup of APT41, a prolific Chinese advanced persistent threat (APT). Cybersecurity firm Trend Micro, which christened the espionage crew Earth Longzhi, said the actor’s long-running campaign can be split into two based on the toolset deployed to […]

Cyber News, Cyber Threat Trends
  • by
  • November 14, 2022

How Cisco keeps its APIs secure throughout the software development process

Software developers know not to reinvent the wheel. So, they lean on reusable micro-services – and their corresponding application programming interfaces (APIs) – as building blocks for application components. “Developers want to focus on the added value they can bring instead of rebuilding things that have great solutions out there already,” says Grace Francisco, vice president […]

Cyber News, Cyber Threat Trends
  • by
  • November 14, 2022

What is an External Penetration Test?

A penetration test (also known as a pentest) is a security assessment that simulates the activities of real-world attackers to identify security holes in your IT systems or applications.  The aim of the test is to understand what vulnerabilities you have, how they could be exploited, and what the impact would be if an attacker […]

Cyber News, Cyber Threat Trends
  • by
  • November 14, 2022

Over 15,000 WordPress Sites Compromised in Malicious SEO Campaign

A new malicious campaign has compromised over 15,000 WordPress websites in an attempt to redirect visitors to bogus Q&A portals. “These malicious redirects appear to be designed to increase the authority of the attacker’s sites for search engines,” Sucuri researcher Ben Martin said in a report published last week, calling it a “clever black hat SEO trick.” The search […]

Cyber News, Cyber Threat Trends

Mass Email Extortion Campaign Claims Server Hack

Threat actors claim they’ll destroy victims’ reputation if they don’t pay

Cyber News, Cyber Threat Trends

Stories from the SOC: Fortinet authentication bypass observed in the wild

Executive summary: Fortinet’s newest vulnerability, CVE-2022-40684, allowing for authentication bypass to manipulate admin SSH keys, unauthorized downloading of configuration files, and creating of super admin accounts, is put a big target on the back’s of  unpatched and exposed Fortinet devices. An AT&T Managed Extended Detection and Response (MXDR) customer was involved in a true positive […]

Cyber News, Cyber Threat Trends

Ukrainian CERT Discloses New Data-Wiping Campaign

Somnia malware hijacks Telegram and VPN accounts

Cyber News, Cyber Threat Trends

UK Shoppers Lost £15m+ to Scammers Last Winter

Cyber experts urge consumers to improve online safety

Cyber News, Cyber Threat Trends
  • by
  • November 14, 2022

New KmsdBot Malware Hijacking Systems for Mining Crypto and Launch DDoS Attacks

A newly discovered evasive malware leverages the Secure Shell (SSH) cryptographic protocol to gain entry into targeted systems with the goal of mining cryptocurrency and carrying out distributed denial-of-service (DDoS) attacks. Dubbed KmsdBot by the Akamai Security Intelligence Response Team (SIRT), the Golang-based malware has been found targeting a variety of companies ranging from gaming to

Cyber News, Cyber Threat Trends