Securitybreaches

More Stolen Data is For Sale on the Dark Web

Posted on

Most interesting information came to light recently, Dave.com said that 7.5 million users data was stolen. The entity that stole the data is called ShinyHunters and we are talking about the mobile banking entity of Dave.com which is an app that does some mobile banking, so it is a business wholly on the Internet. It […]

computersecuritynews

What Does it Mean When Your Website’s Registrar is Hacked?

Posted on

On October 16 Web.com, Networksolutions.com, and register.com had a breach, and as of Nov2nd there is no mention of anything like a breach on their website (web.com owns the others) The breach information was obtained from the always useful Krebsonsecurity.com site.   So what happens when your website’s registrar was hacked? It likely means all […]

Securitybreaches

Risk Analysis Gone Wrong?

Posted on

Since a picture says a thousand words here is an attempt at explanation of Risk Analysis. The rows are “Impact on Environment”: none, minimal, minor, significant, major, critical The “Likelihood” or “Likely – what is % to happen” is  the columns: not likely, low, medium, medium-high, high, will happen. These are not “real” systems in […]

computersecuritynews

Current Attacks Massive 1.6Mil unique addresses found hacked by “GoldBrute”

Posted on

Internet Storm Center discusses an attack by the ‘GoldBrute’ botnet They found 1.5mil servers being used by the botnet. This means that a weakness in Microsoft (CVE-2019-0708)  May 14 Customer Guidance page: Specifically:  CVE-2019-0708 A remote code execution vulnerability exists in Remote Desktop Services – formerly known as Terminal Services – when an unauthenticated attacker […]