Cybersecurity Highlights

Malware infects foreign embassies in Iran

Kaspersky Lab has warned of several attempts to infect foreign embassies in Iran with a home-made program, which appears to use a Remexi malware backdoor update along with several legitimate tools...

References:

infochannel.info

securitic.com.mx

cso.computerworld.es

pcbuyersguide.com.ph

Tags:

Cyberespionage

Critical Infrastructure

Information leakage

Malware

European Commission withdraws smartwatch model with privacy issues

The European Commission has ordered the withdrawal from the market of the smartwatch Safe-KID-One model of the German brand Enox, as it is considered too dangerous for use, especially among minors...

References:

ec.europa.eu

omicrono.elespanol.com

threatpost.com

bbc.com

abc.es

Tags:

Airbus suffers a cyberattack that exposes professional and employee data

Airbus airline has published an announcement reporting a security incident in its information systems, specifically in its commercial aircraft business.They explain that there was unauthorised...

References:

airbus.com

eldiario.es

europapress.es

hotforsecurity.bitdefender.com

threatpost.com

Tags:

Cybercrime

Cyberespionage

Critical Infrastructure

Incident

Japanese government plans to discover the insecure IoT devices of its citizens

Japanese Government approved allowing the NICT (National Institute of Information and Communications Technology) officials to try to log into citizens’ and business’ IoT devices. The goal is to get...

References:

zdnet.com

schneier.com

techspot.com

threatpost.com

Tags:

Cybercrime

DNS hijacking campaign

From the National Cybersecurity and Communications Integration Center (NCCIC), part of the Cybersecurity and Infrastructure Security Agency (CISA), is aware of a global Domain Name System (DNS)...

References:

us-cert.gov

threatpost.com

blog-cert.opmd.fr

fireeye.com

Tags:

Cybercrime

Cyberespionage

DNS

Malware uses Google Drive services as its C&C server

A new variant of the RogueBin Trojan uses Google Drive as its Command & Control (C&C) server. The Trojan infects the victim's computers when the user opens a Microsoft Excel file containing...

References:

thehackernews.com

2-spyware.com

welivesecurity.com

globalnotary.es

Tags:

DNS

Tool

Malware

Compromised WPML website user data

The website of the popular WordPress WPML plugin has been restored after being compromised by an ex-employee on January 20, 2019, as reported from the website itself.The attacker used an old...

References:

wpml.org

hotforsecurity.bitdefender.com

welivesecurity.com

cyberscoop.com

Tags:

Massive data breach of millions of emails

Researcher Troy Hunt has unveiled a data breach called Collection #1, a collection of 773 million total e-mail accounts and more than 21 million unique passwords. All of this data comes from many...

References:

troyhunt.com

krebsonsecurity.com

cso.computerworld.es

authlogics.com

osi.es

cincodias.elpais.com

recordedfuture.com

welivesecurity.com

Tags:

Information leakage

Incident

An issue in Twitter turn off the option "Protect your Tweets" in some accounts

Twitter, in an official statement, has reported a security flaw that turn off the "Protect your Tweets" option for Android users who had made changes to their account settings, such as the...

References:

twitter.com

genbeta.com

hispasec.com

Tags:

Information leakage

Incident

Data of students of the University of Valladolid exposed

The University of Valladolid (UVa) has reported that it has been the victim of an attack and theft of personal data hosted on the website of the International Relations Service.After detecting the...

References:

uva.es

elconfidencial.com

elnortedecastilla.es

tribunavalladolid.com

Corporate access

Cybersecurity Highlights

Malware infects foreign embassies in Iran

European Commission withdraws smartwatch model with privacy issues

Airbus suffers a cyberattack that exposes professional and employee data

Japanese government plans to discover the insecure IoT devices of its citizens

DNS hijacking campaign

Malware uses Google Drive services as its C&C server

Compromised WPML website user data

Massive data breach of millions of emails

An issue in Twitter turn off the option "Protect your Tweets" in some accounts

Data of students of the University of Valladolid exposed

Pages