Malware campaign is using some old and new methods. One email claims to be from Maersk shipping line and the attachment (word doc) opens a backdoor connection to two hacker command and control servers The dropbox domain is also referenced, the links attempt to contact londonpaerl (. )co (. )uk and selombiznet(.)net (I added the … Read more
Information Systems & Supplies(ISS) has a letter to all of its customers They discovered a breach through their remote access software, where customer data could have been stolen. this is a travesty – so how do you know if a company you frequent has ISS there may have been a breach Here is a list … Read more
Duosecurity has bypassed the Two-factor authentication This is effect makes the 2FA (Two Factor Authentication) useless. this means that a password still has to be guessed(broken into) by the hackers for the account to be compromised. Essentially if you set up your PayPal account for “extra” security, unfortunately that did not pan out. 2FA is … Read more
Cari.net has the details They even did a scan to the Internet Total Hosts responding to web requests on port 49152: 9,867,259 Vulnerable Systems: 31,964 So not all systems responding on port 49152 are Supermicro products. they also have to return something to a “get /{SBlock” Once you know you have a problem, … Read more
Vocativ has the story: The hacker group Rex Mundi (or “King of the World”) is blackmailing french and Belgian branches of Dominos Here are Domino’s tweets recommending customers to change passwords Dominos is asking its customers to change passwords “Rex Mundi has previously pulled similar stunts, demanding $20,000 from money lender group AmeriCash … Read more