Author: Admin

The UK’s Information Commissioner’s Office (ICO) recorded a 60% rise in reports of nuisance calls, texts and emails in the first six months of 2021 compared to 2020, according to official figures analyzed by litigation firm Griffin Law. In the first half of 2021, the ICO received an average of 13,925 reports of nuisance calls, texts and emails per month; this compared to just 8680 per month throughout the whole of 2020. The disparity was even greater when…

The US authorities have released new guidance for organizations on hardening their VPNs against compromise by reducing the attack surface. The Cybersecurity Information Sheet comes from the NSA and Cybersecurity and Infrastructure Security Agency (CISA). It warned that multiple nation-state actors had exploited known vulnerabilities in products over the past year to steal credentials, execute arbitrary code remotely on devices, weaken and hijack encrypted communications, and read sensitive data. “These effects usually lead to further malicious access…

Microsoft has discovered a new post-exploitation backdoor attributed to the SolarWinds attackers, designed to help them gain admin-level access to active directory federation services (AD FS) servers. Dubbed “FoggyWeb,” the malware has been in use since around April 2021, allowing the Russian-linked APT group known as Nobelium (aka APT29) to steal info from compromised servers and receive and execute additional malicious code. AD FS are on-premises servers that support single sign-on (SSO) for cloud applications…

Last month, the Port of Houston, one of the major US ports, was hit by a cyber attack allegedly orchestrated by a nation-state actor. One of the major US ports, the Port of Houston, revealed that it was hit by a cyber attack in August that had no impact on its systems. “The Port of Houston Authority (Port Houston) successfully defended itself against a cybersecurity attack in August. Port Houston followed its Facilities Security Plan…

Cybersecurity researchers spotted a new version of the Jupyter infostealer which is distributed via MSI installers. Cybersecurity researchers from Morphisec have spotted a new version of the Jupyter infostealer that continues to be highly evasive. In November 2020, researchers at Morphisec have spotted Russian-speaking threat actors that have been using a piece of .NET infostealer, tracked as Jupyter, to steal information from their victims. The Jupyter malware is able to collect data from multiple applications,…