Darkside Ransomware who began operating around at the start of August is currently affecting the real estate developer in North America. Brookfield Residential is one of the first victims of the new DarkSide Ransomware. Below, the security expert provides insight on this new ransomware.
ISBuzz Team
Pre-installed malware that signs mobile users up for subscription services without their permission has been discovered on thousands of low-cost smartphones from the Chinese manufacturer Transsion. The discovery was made by Upstream’s anti-fraud platform Secure-D whose researchers conducted a full investigation into the origin of the suspicious transactions detected by its platform. Beginning in March of last year, the firm discovered and blocked an unusually large number of transactions originating from Transsion Tecno W3 handsets in Ethiopia, Cameroon, Egypt, Ghana and South Africa with additional fraudulent mobile transactions detected in another 14 countries.
UpGuard researchers found sensitive internal files inside several Cloudera cloud storage buckets, causing Cloudera to pull the cloud storage servers offline, despite initially claiming the servers were “open by design.” UpGuard discovered multiple misconfigured AWS cloud storage buckets under the control of Hortonworks, an enterprise data processing company which completed a merger with Cloudera in January of 2019. Amidst terabytes of intentionally public files, however, were numerous system credentials and other internal developer information. UpGuard concluded that when so many directories and files of varying format are stashed away together, it becomes all too easy for something to be mistakenly…
Malware that signed users up to subscription services without their permission has been found on thousands of mobiles sold in Africa, according to BBC News. Anti-fraud firm Upstream found the malicious code on 53,000 Tecno handsets, sold in Ethiopia, Cameroon, Egypt, Ghana and South Africa. Transsion, the manufacturer of these devices, claimed the malware was installed in the supply chain without its knowledge. The Triada malware found by Upstream on the Android smartphones installs malicious code known as xHelper which then finds subscription services and submits fraudulent requests on behalf of users, doing so invisibly and without the user’s knowledge. If…
Trading on New Zealand’s stock exchange was halted for several hours on Wednesday after what appeared to be a second offshore cyber attack in as many days, bourse operator NZX Ltd (NZX.NZ) said.
Researchers have found what they believe is a previously undiscovered botnet that uses unusually advanced measures to covertly target millions of servers around the world. The botnet uses proprietary software written from scratch to infect servers and corral them into a peer-to-peer network, researchers from security firm Guardicore Labs reported on Wednesday. Peer-to-peer (P2P) botnets distribute their administration among many infected nodes rather than relying on a control server to send commands and receive pilfered data. With no centralized server, the botnets are generally harder to spot and more difficult to shut down. More information: https://www.wired.com/story/a-new-botnet-is-covertly-targeting-millions-of-servers/
Researchers have found what they believe is a previously undiscovered botnet that uses unusually advanced measures to covertly target millions of servers around the world. The botnet uses proprietary software written from scratch to infect servers and corral them into a peer-to-peer network, researchers from security firm Guardicore Labs reported on Wednesday. The botnet, which Guardicore Labs researchers have named FritzFrog, has a host of other advanced features, including: In-memory payloads that never touch the disks of infected servers At least 20 versions of the software binary since January A sole focus on infecting secure shell, or SSH, servers that network administrators…
Freepik reported that hackers were able to steal emails and password hashes for 8.3M Freepik and Flaticon users in an SQL injection attack against the company’s Flaticon website. Freepik is one of the largest online graphic resources sites in the world; together Freepik and the Flaticon database platform total 18 million monthly unique users, 50 million monthly views, and 100 million monthly downloads.
Year to date, the value of Bitcoin has increased by around 64% and one Bitcoin is now worth around $11,500 (1), and new research (2) reveals institutional investors expect further rises in the valuation of the cryptocurrency this year. Evertas, the world’s first crypto asset insurance company, which focuses on covering institutional holders of crypto assets including exchanges, custodians, traditional financial institutions, funds, family offices and ultra-high net worth individuals, surveyed institutional investors who collectively manage $78.4 billion of assets. It found 60% think Bitcoin will be worth over $12,000 by the end of this year, and four out of ten (40%) expect one Bitcoin to be valued at over $15,000 by then. Only 24% think it will be worth $10,000 or less. …
Researchers have uncovered malicious code in a popular Advertising SDK used by over 1,200 apps in the AppStore which represent over 300 Million downloads per month. It was uncovered in the iOS versions of the SDK from the Chinese mobile ad platform provider, Mintegral dating back to July 2019 and can spy on user activity by logging URL-based requests made through the app.