Just six weeks on from WannaCry, the world has fallen victim to another fast-spreading ransomware in the form of Petya/GoldenEye. Why haven’t lessons been learned?
Source: Petya ransomware attack: What it is, and why this is happening again | ZDNet
Imagine that one day you discover that a burglar has broken into your home and attempted to make off with your big-screen TV. Fearing for your safety, you immediately contact local law enforcement, and they promptly apprehend the criminal. But to your horror, as they drag the burglar away in handcuffs, they have an additional shocking revelation: […]
Source: WSO Shell: The Hack Is Coming From Inside The House!
Running applications from 2006 will tend to leave you “wide open” to attack…
South Korean web hosting provider has agreed to pay $1 million in bitcoins to hackers after a Linux ransomware infected its 153 servers, encrypting 3,400 business websites and their data, hosted on them.
According to a blog post published by NAYANA, the web hosting company, this unfortunate event happened on 10th June when ransomware malware hit its hosting servers and attacker demanded 550 bitcoins (over $1.6 million) to unlock the encrypted files.
However, the company later negotiated with the cyber criminals and agreed to pay 397.6 bitcoins (around $1.01 million) in three installments to get their files decrypted.
Read more here.
I found myself being attacked more and more with this type of RCE vulnerability. If you are not sure if you are safe, please read on…
On March 6th, a new remote code execution (RCE) vulnerability in Apache Struts 2 was made public. This recent vulnerability, CVE-2017-5638, allows a remote attacker to inject operating system commands into a web application through the “Content-Type” header. Written in Java, Apache Struts 2 is the popular open source web application framework that we’ve blogged about before. This is yet another incident that adds up to a long list of vulnerabilities in this framework.
Source: CVE-2017-5638: New Remote Code Execution (RCE) Vulnerability in Apache Struts 2 – Blog | Imperva
Yeah… seriously doubt it… yet another “leaked” NSA document condemning Russia. Like a nation state would leave those kinds of tracks… #wakeuppeople
A leaked NSA document determining that hackers connected to Russian military intelligence tried to breach US voting systems days before the 2016 election has national security experts and former intelligence officials reeling.
Source: ‘This is huge’: National security experts were floored by the leaked NSA document on Russia’s election hack