05 Jun 2020

Iranian And Chinese Hackers Targeted Trump And Biden Campaigns, Google Says

According to Google, Iranian and Chinese threat actors have already attempted to breach the Trump and Biden presidential campaigns. In a statement released on Thursday, Google illustrated how state-backed hackers are already interfering in the US 2020 presidential election, although there is no evidence these attacks have been successful to

Read More
05 Jun 2020

DDoS-ers Target Black Lives Matter Groups

The US Black Live Matter protests that have sparked over the past week have also drawn the attention of malicious threat actors, who attempted attacks on several right groups over the past week. According to web security firm Cloudflare, the analysis of malicious HTTP requests month to month showed an

Read More
05 Jun 2020

Attackers tried to grab WordPress configuration files from over a million sites

A hacker tried to gather the WordPress configuration files of 1.3 million sites in one month after insertion a backdoor into the sites in early May. The XSS campaigns have been previously reported and sent attacks from over 20,000 different IP addresses. However, this new campaign is using the same

Read More
04 Jun 2020

Cyber-Attack Hits US Nuclear Missile Sub-Contractor

According to researchers, sensitive and confidential documents have been obtained from Westech International, a US military nuclear missile contractor, after a cyberattack. Experts believe the cyberattack was likely the work of threat group Maze, a well-known and sophisticated group. Cyber-criminals were reportedly able to gain unauthorized access to Westech’s computer

Read More
04 Jun 2020

Netwalker ransomware continues assault on US colleges, hits UCSF

Netwalker Ransomware operators have claimed to have carried out a successful cyberattack on the University of California San Francisco (UCSF). The group allegedly stole unencrypted data, as well as encrypted their systems. UCSF, a health sciences research university, ranks highly among medical schools for research and primary care. Netwalker has

Read More
04 Jun 2020

Kaspersky IDs Sophisticated New Malware Targeted at Air-Gapped Systems

A threat actor group with potential ties to China called Cycldek may have more sophisticated capabilities than researchers previously thought after security vendor Kaspersky released an analysis examining the threat group’s malware toolset. Earlier this week, Kaspersky researchers disclosed that they had found new information suggesting these operators may have

Read More
04 Jun 2020

Critical flaw in IOS routers allows ‘complete system compromise’

Four critical flaws have been disclosed by Cisco, affecting router equipment operating on IOS XE and IOS software created by the company. the critical flaws are part of Cisco’s June 3 semi-annual advisory and were disclosed alongside 23 advisories describing 25 vulnerabilities in total. The most severe bug, CVE-2020-3227, is

Read More
03 Jun 2020

Intelligence Community Wants Better Tech for COVID-19 and the Next Pandemic

After COVID-19, US pandemic researchers and responders have been dedicated to preparing for the next viral outbreak so as to not get caught in precarious situations similar to those COVID-19 has presented. The Intelligence Advanced Research Projects Activity has issued an announcement that advertises funding for early-stage technology aiming to

Read More
03 Jun 2020

Half of US CISOs Have Suffered 10+ Cloud Breaches

According to new research conducted by Ermetic, a cloud security vendor, has concluded that almost 80% of US companies have suffered from at least one cloud security breach in the past year and a half. Misconfiguration remains the number one concern among CISOs, according to industry research. Ermetic commissioned the

Read More
03 Jun 2020

Two Critical Android Bugs Open Door to RCE

In June updates, Google and Qualcomm addressed significant vulnerabilities affected Andriod users that could lead to remote code execution (RCE) on applicable devices. The bugs, CVE-2020-0117, and CVE-2020-8597 affect Andriod versions 8 to 10 and can allow for RCE in the context of a privileged process. An attacker could potentially

Read More