Software containers have become more popular in recent years as many organizations have discovered the benefits of containerization. Kubernetes is the most widely used container orchestrator in the market, and Kubernetes adoption – especially in production environments – is taking off. According to Gartner, “by 2022, more than 75% of global organizations will be running containerized applications in production.” However, the explosion in Kubernetes adoption hasn’t been without its share of security concerns. In fact, according to a recent research, nearly half of all companies surveyed (44%) have delayed moving an application into production because of concerns over security of…
ISBuzz Team
ZDNet has reported that a group of hackers has breached the network of Zaha Hadid Architects, one of the world’s leading architectural firms. The intrusion took place last week, and hackers stole files from the company’s network, encrypted files using ransomware, and are now threatening to release sensitive information on the dark web unless the company pays a hefty ransom demand. The hackers, who said they go by the name of Light (possibly the name of their ransomware variant), provided ZDNet with proof of having ZHA files in their possession. These included payroll records, bank documents, files holding employee details, life insurance details, employee contracts, email…
ZDNet reported that the Israeli government says that hackers have targeted its water supply and treatment facilities last week. In a security alert sent by the Israeli National Cyber-Directorate (INCD), the agency is urging personnel at companies active in the energy and water sectors to change passwords for all internet-connected systems.
A new ransomware has been circulating that spoofs the FBI to lend an air of legitimacy to the ransom demand, according to a blog post from CheckPoint. This malware was originally seen back in September 2018, and acts as a dropper to spread malware and take control of Android devices. After successfully infecting an Android device, the ransomware encrypts files and then displays a ransom note in a browser window, claiming to be an official message from the FBI that accuses the victim of owing and storing pornography.
It has been reported that Warwick University was hacked and kept breach secret from students and staff. The security incident occurred when a staff member installed remote-viewing software enabling hackers to steal sensitive personal information on students, staff and even volunteers taking part in research studies. The university’s security system was reportedly so poor, it was impossible for Warwick to detect what data had been stolen and who was impacted.
In a new report by Kaspersky, researchers see a new wave of phishing scams that utilise a COVID-19 theme and impersonate well-known shipping carriers such as FedEx, UPS, and DHL.
A new variant of Russian malware tricks mobile users into encrypting their files, then impersonates the FBI to force ransom payments, accusing the user of downloading illegal pornographic content Malware is downloaded and installed via social media and instant messenger apps as a video player application Lucy sends ransom note under guise of FBI, stating that user’s details have been uploaded to the FBI Cyber Crime Department’s Data Center Lucy demands ransom of $500 to be paid via credit card Researchers at Check Point discovered a new variant of Android malware called Black Rose Lucy. First discovered by Check Point in September 2018, Lucy is a…
It has been reported that security researchers have found “symlink race” vulnerabilities in 28 of today’s most popular antivirus products. The researchers said in a report that the bugs can be exploited by an attacker to delete files used by the antivirus or by the operating system, resulting in crashes or rendering the computer unusable. Given that almost all antivirus software runs with the highest privileges on the operating system, it will continue to be a high-value target for cybercriminals.
As reported by The Guardian, in the last week of March, visits to film piracy sites were up by 57% compared with the last week of February. Sites allowing viewers to illegally watch TV shows and series saw a 29% increase across the same period. In total there were more than 300m visits to sites allowing film and TV content to be downloaded illegally last month, as millions of homebound Britons hunted out more home entertainment to pass the time.
It has been reported that Sophos has fixed a zero-day SQL injection vulnerability in their XG Firewall after receiving reports that hackers actively exploited it in attacks.