Cybersecurity Highlights

Leakage of personal data from FBI agents

An unknown group of cybercriminals has released the personal data of some 4,000 employees of the Federal Bureau of Investigation (FBI) after accessing three related web servers.Although the servers...

References:

myemail.constantcontact.com

techcrunch.com

databreachtoday.com

urbantecno.com

nakedsecurity.sophos.com

Tags:

Cybercrime

Information leakage

Public administration

Asian Embassy Attacked by a sophisticated Malware

In the fall of 2018, Kaspersky discovered what may be the most comprehensive malware known to date, which has been named TajMahal and has 80 different components.TajMahal is capable of stealing...

References:

kaspersky.es

wired.com

adslzone.net

cyberscoop.com

Tags:

Incident

Tool

Vulnerability

Triton malware compromises critical infrastructure again

Cybersecurity experts from FireEye have published a report explaining that Triton malware has been used again, after the 2017 attack, to compromise an undisclosed critical infrastructure...

References:

fireeye.com

techcrunch.com

wired.com

csoonline.com

zonavirus.com

dailymail.co.uk

incibe-cert.es

Tags:

Chemical industry

Cybercrime

Energy

Industrial Control Systems

Malware

Pharmaceutical company Bayer suffers a cyber attack

Bayer, Germany's largest pharmaceutical company, has been cyber-attacked by the Wicked Panda group of cyber-criminals operating from China.Andreas Rohr, employee of the DCSO cybersecurity group,...

References:

reuters.com

cyberscoop.com

infosecurity-magazine.com

zdnet.com

eleconomista.es

eldiario.es

Tags:

ASUS tool infected by Operation ShadowHammer

Kaspersky Lab has discovered a new Advanced Persistent Threat (APT) campaign that has affected more than one million users through an ASUS software supply chain attack. The investigation revealed...

References:

securelist.com

kaspersky.com

motherboard.vice.com

symantec.com

asus.com

xataka.com

unaaldia.hispasec.com

Tags:

Facebook accidentally saves passwords in plain text

Facebook has reported that, by mistake, it has been storing its users' passwords in plain text, although it has not provided details of this failure, it has confirmed that both Facebook and...

References:

newsroom.fb.com

motherboard.vice.com

genbeta.com

welivesecurity.com

unaaldia.hispasec.com

Tags:

Incident

Social networks

Norsk Hydro metallurgical company suffers a ransomware cyber attack

The Norwegian metallurgical company Norsk Hydro has suffered, on March 19, 2019, an attack by a variety of ransomware called LockerGoga that encrypts files on Windows devices. As a result, both the...

References:

hydro.com

kaspersky.es

ics-cert.kaspersky.com

databreachtoday.com

hotforsecurity.bitdefender.com

itproportal.com

Tags:

Cybercrime

Incident

Malware

Other critical infrastructures

Elsevier platform credentials exposed

Mossab Hussein, CSO of cybersecurity company SpiderSilk, has found a bug in Elsevier, a multimedia scientific publishing house. A bad configuration in one of its servers, exposed email addresses...

References:

motherboard.vice.com

cyware.com

z6mag.com

nakedsecurity.sophos.com

latesthackingnews.com

Tags:

Incident

Information leakage

Detected a spam campaign that distributes malware via email

Taking advantage of the dissemination of news about the Boeing 737 Max 8 accidents, a new spam campaign is being carried out that distributes malware via email.Those affected receive an email with...

References:

bleepingcomputer.com

securityaffairs.co

2-spyware.com

malware-board.com

Tags:

Malware

Tool

Transport

Vulnerability found in the Steam gaming platform

The video game platform Steam, belonging to Valve, allows players to search for game servers through a specific UDP protocol for which a buffer overflow vulnerability has been found. This...

References:

unaaldia.hispasec.com

hackerone.com

blog.satinfo.es

Tags:

Vulnerability

Corporate access

Cybersecurity Highlights

Leakage of personal data from FBI agents

Asian Embassy Attacked by a sophisticated Malware

Triton malware compromises critical infrastructure again

Pharmaceutical company Bayer suffers a cyber attack

ASUS tool infected by Operation ShadowHammer

Facebook accidentally saves passwords in plain text

Norsk Hydro metallurgical company suffers a ransomware cyber attack

Elsevier platform credentials exposed

Detected a spam campaign that distributes malware via email

Vulnerability found in the Steam gaming platform

Pages