Cybersecurity Highlights

This section registers the most relevant incidents or public events related to the cybersecurity and information and communication technologies (ICT), in a way that a chronological history of them is available, together with their main links, references and information sources.

Post related to: Tool

The VPN service known as Safe-Inet is dismantled

The Virtual Private Network (VPN) service, known as Safe-Inet, and preferably used, according to police sources, by cybercriminals worldwide, as it has a robust identity concealment system, was...

References:

europol.europa.eu

infosecurity-magazine.com

genbeta.com

Tags:

Other critical infrastructures

Public administration

Tool

FireEye Red Team tools have been stolen

FireEye, one of the world's leading cybersecurity companies dedicated to vulnerability analysis and prevention, has reported being the victim of a cyberattack through which its Red Team pentesting...

References:

fireeye.com

github.com

us-cert.cisa.gov

cso.computerworld.es

theverge.com

fireeye.com

sec.gov

incibe-cert.es

microsoft.com

Tags:

Other critical infrastructures

Public administration

Tool

Vishing scam targets GoDaddy employees

A security incident at GoDaddy, an Internet domain and hosting registrar, has compromised some cryptocurrency services such as Liquid and NiceHash.The cyberattack, using vishing techniques against...

References:

twitter.com

blog.liquid.com

nicehash.com

krebsonsecurity.com

gizmodo.com

bankinfosecurity.com

Tags:

Interruption in the availability of the services offered by Managed.com

The provider of hosting and support solutions for websites, Managed.com, has suffered a security incident based on ransomware REvil in its IT infrastructure.The cyberattack was detected on 16th of...

References:

status.managed.com

zdnet.com

bleepingcomputer.com

seguridadyfirewall.cl

Tags:

Data from a database of Animal Jam game is stolen

The company WildWorks, developer of the game Animal Jam, has reported a security breach in one of its databases, after an attack on a vendor's server that WildWorks uses for internal communications...

References:

animaljam.com

bleepingcomputer.com

infosecurity-magazine.com

es.digitaltrends.com

Tags:

Cybercriminals target the second largest computer manufacturer in the world: Compal Electronics

The Taiwanese electronics manufacturer, Compal Electronics, has reported a security incident in its IT infrastructure that has temporarily disrupted its office automation system.The company's IT...

References:

money.udn.com

bleepingcomputer.com

tripwire.com

zdnet.com

Tags:

Cybercrime

Incident

Tool

Credential stuffing cyberattack aimed at The North Face

The North Face, an American sportswear retailer, has reported unauthorized access to its IT network.The incident, which took place on 8th and 9th of October, consisted of a credential stuffing...

References:

oag.ca.gov

bleepingcomputer.com

unaaldia.hipasec.com

Tags:

Cybercriminal steals $ 24 million from cryptocurrency service Harvest Finance

About 24 million USD in tokens have been stolen from Harvest Finance, a decentralized finance protocol (DeFi), by a cybercriminal.The incident, detected on October 26, thanks to analytics service...

References:

medium.com

zdnet.com

es.beincrypto.com

criptonoticias.com

technadu.com

Tags:

Microsoft and several cybersecurity firms dismantle the TrickBot botnet

Microsoft and Lumen's cybersecurity firms ESET, FS-ISAC, NTT, Symantec and Black Lotus Labs have teamed up to dismantle the TrickBot botnet, one of the most active and dangerous in the world,...

References:

blogs.microsoft.com

microsoft.com

welivesecurity.com

Symantec Enterprise Blogs

zdnet.com

news.microsoft.com

xataka.com

Tags:

Industrial Control System

Other critical infrastructures

Public administration

Tool

Leaked Bing search data through an Elasticsearch server

Ata Hakcil, a security researcher at WizCas, discovered an information leak in Microsoft's Bing search service. Through a misconfigured Elasticsearch server, 6.5TB of information from searches made...

References:

zdnet.com

blogs.masterhacks.net

wizcase.com

theregister.com

unaaldia.hispasec.com

Tags:

Corporate access

Cybersecurity Highlights

The VPN service known as Safe-Inet is dismantled

FireEye Red Team tools have been stolen

Vishing scam targets GoDaddy employees

Interruption in the availability of the services offered by Managed.com

Data from a database of Animal Jam game is stolen

Cybercriminals target the second largest computer manufacturer in the world: Compal Electronics

Credential stuffing cyberattack aimed at The North Face

Cybercriminal steals $ 24 million from cryptocurrency service Harvest Finance

Microsoft and several cybersecurity firms dismantle the TrickBot botnet

Leaked Bing search data through an Elasticsearch server

Pages