Cyber Security and Information Systems Information Analysis Center
Almost two weeks ago, we reported how unknown attackers managed to compromise the Chrome Web Store account of a developer team and hijacked Copyfish extension, and then modified it to distribute spam correspondence to users.
http://thehackernews.com/2017/08/chrome-extension-hacking.html
"This technique uses AES encryption instead of B64 or simple XOR routines write new content to the page at load time," said a Ring 0 Labs representative in an email to Threatpost. "Since this is a newer technique, it can be fairly effective at avoiding scanning services and crawlers that aim to detect these types of sites. But like anything, these services
https://threatpost.com/researchers-find-phishing-site-encrypted-with-aes/127424/
Marcus Hutchins, the researcher, was widely praised for identifying a way to disable the WannaCry malicious software, or malware, attack that seized hundreds of thousands of computers this year. Researchers credited Mr. Hutchins’s discovery of a so-called kill switch in the malware for stopping its spread and preventing the attack from infecting millions
The attack works on any Docker installation which exposes its API through TCP, which has (until recently) been the default for Windows PCs running Docker for Windows, an application used by developers to create and test containerized applications. "The attack endgame is a persistent remote code execution within the enterprise’s network," Dulce said.
https://threatpost.com/attack-uses-docker-containers-to-hide-persist-plant-malware/126992/
More than 750 domain names were hijacked through the internet's own systems, registrar Gandi has admitted. Late last week, an unknown individual managed to get hold of the company's login to one of its technical providers, which then connects to no fewer than 27 other top-level domains, including .asia, .au, .ch, .jp and .se. Using that login, the
http://www.theregister.co.uk/2017/07/13/swiss_domain_name_hijack/
US-based and international courier delivery service FedEx admitted on Monday that some of its systems were significantly affected by the NotPetya ransomware, and some of the damage may be permanent. FedEx was just one of the many businesses across the world hit by the NotPetya ransomware, a cyber-weapon designed to attack organizations in the Ukraine, but
Ukraine said on Saturday that Russian security services were involved in a recent cyber attack on the country, with the aim of destroying important data and spreading panic. The SBU, Ukraine's state security service, said the attack, which started in Ukraine and spread around the world on Tuesday, was by the same hackers who attacked the Ukrainian power
https://www.reuters.com/article/us-cyber-attack-ukraine-idUSKBN19M39P
"Today we can finally reopen our key applications," Maersk said in a statement on Monday. The company, which handles one in seven containers shipped globally, said it expects to have all its 1500 applications fully functional within a week. Maersk said on Friday it expected client-facing operations to return to normal by Monday and was resuming
https://www.reuters.com/article/us-cyber-attack-maersk-idUSKBN19O0X8
While blockchain is among the hottest technologies in the enterprise security, data storage and file-sharing arenas, many experts question its use or even whether it's really as secure as billed.
Microsoft sparked a curious squabble over malware discovery and infection rates. At the start of the month security firm Check Point reported on a browser hijacker and malware downloader called Fireball. The firm claimed that it had recently discovered the Chinese malware and that it had infected some 250 million systems.
The CSIAC is a DoD-sponsored Center of Excellence in the fields of Cybersecurity, Information Assurance, Software Engineering, Modeling & Simulation, and Knowledge Management & Information Sharing.Learn More
| Phone: | 800-214-7921 |
| Email: | i...@csiac.org |
| Address: | 266 Genesee St. Utica, NY 13502 |
