2 stories from the Hacker News: Solar Winds Hackers Targeting Government and Why everyone needs to take the latest CISA directive seriously The Solarwinds hack from last year (the one I discussed in several stories including this one: SolarWinds hackers Hacked Multi-factor Authentication. It is sometimes instructive to review past hacks to see what … Read more
Certitute has a story that shows what happens when you decide for one reason or another not to update your Exchange server Apparently somebody did not update the Exchange server (which runs the email for the company). So when the system is not updated it becomes vulnerable of various vulnerabilities. From the story: The IIS … Read more
Yes now your files will be hidden (apparently they will be placed in a Winrar format – which is a kind of packed encrypted format). And then the original files are deleted. There are more details in the Sophos analysis a their blogpost. How about this attack? KrebsonSecurity has an interesting story about a Nigerian … Read more
Yes The hackers that just hacked the FBI email server only spammed thousands of email addresses and all they did was embarrass the FBI. The Criminal Justice Information Services division (CJIS) from FBI which apparently manages several national crime information systems, available to the criminal justice community. According to KrebsonSecurity the “from address” emails to … Read more
Hacker News has an article on how Hackers use a method of installing their software onto your systems. 1. If you notice the problem is when the user opens an attachment or link (URL) in their web browser(Firefox – Microsoft Edge, or Google chrome among the most used browsers) 2. Then the browser decodes the … Read more
