May 6, 2020 APT Groups Target Healthcare and Essential Services National Cyber Awareness System: AA20-126A: APT Groups Target Healthcare and Essential Services Original release date: May 5, 2020 Summary This is a joint alert from the United States Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA) and the United Kingdom’s National Cyber…
Category: Commentaries and Analyses
How hackers are updating the EVILNUM malware to target the global financial sector
Shannon Vavra reports: Hackers behind a series of targeted financial attacks have been updating their malware to better evade detection over the last year, according to new Prevailion research slated to be published Wednesday. Since at least February 2019, the hackers, who have begun impersonating CEOs and banks in their lure documents, have introduced at…
Jump in vulnerable RDP ports is leaving networks open to hacking and cyberattacks
The sudden explosion of employees working from home (WFH) during the pandemic has increased the risk of cyberattacks. Among the factors contributing to that increased risk: people may use their own less secure personal devices which may also be shared with other members of their household, and they may need to be connecting to the…
Hacker group selling databases with millions of user credentials busted in Poland and Switzerland
Polish and Swiss law enforcement authorities, supported by Europol and Eurojust, dismantled InfinityBlack, a hacking group involved in distributing stolen user credentials, creating and distributing malware and hacking tools, and fraud. On 29 April 2020, the Polish National Police (Policja) searched six locations in five Polish regions and arrested five individuals believed to be members…
Aarogya Setu: The story of a failure
Elliot Alderson (pseudonym) writes: In order to fight Covid19, the Indian government released a mobile contact tracing application called Aarogya Setu. This application is available on the PlayStore and 90 million Indians already installed it. This application is currently getting a lot of attention in India. In Noida, if people doesn’t have the app installed…
‘No data, security breach’: Aarogya Setu says after hacker claims ‘privacy of 90 million Indians at stake’
The Indian Express reports what may be only opening salvos in this story: The Twitter handle of Aaroga Setu said they were alerted “by an ethical hacker of a potential security issue in the app”, which they discussed with him, but “no personal information of any user has been proven to be at risk”. The…