NGINX Shares Mitigations for Zero-Day Bug Affecting LDAP Implementation

NGINX Shares Mitigations for Zero-Day Bug Affecting LDAP Implementation,

The maintainers of the NGINX web server project have issued mitigations to address security weaknesses in its Lightweight Directory Access Protocol (LDAP) Reference Implementation.
« NGINX Open Source and NGINX Plus are not themselves affected, and no corrective action is necessary if you do not use the reference implementation, » Liam Crilly and Timo Stark of F5 Networks said in an advisory

,

The maintainers of the NGINX web server project have issued mitigations to address security weaknesses in its Lightweight Directory Access Protocol (LDAP) Reference Implementation.
« NGINX Open Source and NGINX Plus are not themselves affected, and no corrective action is necessary if you do not use the reference implementation, » Liam Crilly and Timo Stark of F5 Networks said in an advisory

, ,
https://thehackernews.com/2022/04/nginx-shares-mitigations-for-zero-day.html

Finding Attack Paths in Cloud Environments

Finding Attack Paths in Cloud Environments,

The mass adoption of cloud infrastructure is fully justified by innumerable advantages. As a result, today, organizations’ most sensitive business applications, workloads, and data are in the cloud.
Hackers, good and bad, have noticed that trend and effectively evolved their attack techniques to match this new tantalizing target landscape. With threat actors’ high reactivity and adaptability, it

,

The mass adoption of cloud infrastructure is fully justified by innumerable advantages. As a result, today, organizations’ most sensitive business applications, workloads, and data are in the cloud.
Hackers, good and bad, have noticed that trend and effectively evolved their attack techniques to match this new tantalizing target landscape. With threat actors’ high reactivity and adaptability, it

, ,
https://thehackernews.com/2022/04/finding-attack-paths-in-cloud.html

Google Sues Scammer for Running ‘Puppy Fraud Scheme’ Website

Google Sues Scammer for Running ‘Puppy Fraud Scheme’ Website

,

Google on Monday disclosed that it’s taking legal action against a nefarious actor who has been spotted operating fraudulent websites to defraud unsuspecting people into buying non-existent puppies.
« The actor used a network of fraudulent websites that claimed to sell basset hound puppies — with alluring photos and fake customer testimonials — in order to take advantage of people during the

,

Google on Monday disclosed that it’s taking legal action against a nefarious actor who has been spotted operating fraudulent websites to defraud unsuspecting people into buying non-existent puppies.
« The actor used a network of fraudulent websites that claimed to sell basset hound puppies — with alluring photos and fake customer testimonials — in order to take advantage of people during the

, ,
https://thehackernews.com/2022/04/google-sues-scammer-for-running-puppy.html

Over 16,500 Sites Hacked to Distribute Malware via Web Redirect Service

Over 16,500 Sites Hacked to Distribute Malware via Web Redirect Service,

A new traffic direction system (TDS) called Parrot has been spotted leveraging tens of thousands of compromised websites to launch further malicious campaigns.
« The TDS has infected various web servers hosting more than 16,500 websites, ranging from adult content sites, personal websites, university sites, and local government sites, » Avast researchers Pavel Novák and Jan Rubín said in a report

,

A new traffic direction system (TDS) called Parrot has been spotted leveraging tens of thousands of compromised websites to launch further malicious campaigns.
« The TDS has infected various web servers hosting more than 16,500 websites, ranging from adult content sites, personal websites, university sites, and local government sites, » Avast researchers Pavel Novák and Jan Rubín said in a report

, ,
https://thehackernews.com/2022/04/over-16500-sites-hacked-to-distribute.html

Le harcèlement par Apple AirTag prend de l’ampleur

Le harcèlement par Apple AirTag prend de l’ampleur,

Les plaintes se multiplient dans les postes de police américains. La balise est généralement cachée dans la voiture de la victime. Et l’auteur est souvent un ex-conjoint jaloux et revanchard.

,

Les plaintes se multiplient dans les postes de police américains. La balise est généralement cachée dans la voiture de la victime. Et l’auteur est souvent un ex-conjoint jaloux et revanchard.

, ,
https://www.01net.com/actualites/le-harcelement-par-apple-airtag-prend-de-l-ampleur-2055842.html

Researchers warn of FFDroider and Lightning info-stealers targeting users in the wild

Researchers warn of FFDroider and Lightning info-stealers targeting users in the wild,

Cybersecurity researchers are warning of two different information-stealing malware, named FFDroider and Lightning Stealer, that are capable of siphoning data and launching further attacks.
« Designed to send stolen credentials and cookies to a Command & Control server, FFDroider disguises itself on victim’s machines to look like the instant messaging application ‘Telegram,' » Zscaler ThreatLabz

,

Cybersecurity researchers are warning of two different information-stealing malware, named FFDroider and Lightning Stealer, that are capable of siphoning data and launching further attacks.
« Designed to send stolen credentials and cookies to a Command & Control server, FFDroider disguises itself on victim’s machines to look like the instant messaging application ‘Telegram,' » Zscaler ThreatLabz

, ,
https://thehackernews.com/2022/04/researchers-warn-of-ffdroider-and.html

Microsoft’s New Autopatch Feature to Help Businesses Keep Their Systems Up-to-Date

Microsoft’s New Autopatch Feature to Help Businesses Keep Their Systems Up-to-Date

,

Microsoft last week announced that it intends to make generally available a feature called Autopatch as part of Windows Enterprise E3 in July 2022.
« This service will keep Windows and Office software on enrolled endpoints up-to-date automatically, at no additional cost, » said Lior Bela, senior product marketing manager at Microsoft, in a post last week. « The second Tuesday of every month will be

,

Microsoft last week announced that it intends to make generally available a feature called Autopatch as part of Windows Enterprise E3 in July 2022.
« This service will keep Windows and Office software on enrolled endpoints up-to-date automatically, at no additional cost, » said Lior Bela, senior product marketing manager at Microsoft, in a post last week. « The second Tuesday of every month will be

, ,
https://thehackernews.com/2022/04/microsofts-new-autopatch-feature-to.html

Hackers Exploiting Spring4Shell Vulnerability to Deploy Mirai Botnet Malware

Hackers Exploiting Spring4Shell Vulnerability to Deploy Mirai Botnet Malware,

The recently disclosed critical Spring4Shell vulnerability is being actively exploited by threat actors to execute the Mirai botnet malware, particularly in the Singapore region since the start of April 2022.
« The exploitation allows threat actors to download the Mirai sample to the ‘/tmp’ folder and execute them after permission change using ‘chmod,' » Trend Micro researchers Deep Patel, Nitesh

,

The recently disclosed critical Spring4Shell vulnerability is being actively exploited by threat actors to execute the Mirai botnet malware, particularly in the Singapore region since the start of April 2022.
« The exploitation allows threat actors to download the Mirai sample to the ‘/tmp’ folder and execute them after permission change using ‘chmod,' » Trend Micro researchers Deep Patel, Nitesh

, ,
https://thehackernews.com/2022/04/hackers-exploiting-spring4shell.html

Chinese Hacker Groups Continue to Target Indian Power Grid Assets

Chinese Hacker Groups Continue to Target Indian Power Grid Assets,

China-linked adversaries have been attributed to an ongoing onslaught against Indian power grid organizations, one year after a concerted campaign targeting critical infrastructure in the country came to light.
Most of the intrusions involved a modular backdoor named ShadowPad, according to Recorded Future’s Insikt Group, a sophisticated remote access trojan which has been dubbed a « masterpiece

,

China-linked adversaries have been attributed to an ongoing onslaught against Indian power grid organizations, one year after a concerted campaign targeting critical infrastructure in the country came to light.
Most of the intrusions involved a modular backdoor named ShadowPad, according to Recorded Future’s Insikt Group, a sophisticated remote access trojan which has been dubbed a « masterpiece

, ,
https://thehackernews.com/2022/04/chinese-hacker-groups-continue-to.html

Researchers Connect BlackCat Ransomware with Past BlackMatter Malware Activity

Researchers Connect BlackCat Ransomware with Past BlackMatter Malware Activity,

Cybersecurity researchers have uncovered further links between BlackCat (aka AlphaV) and BlackMatter ransomware families, the former of which emerged as a replacement following international scrutiny last year.
« At least some members of the new BlackCat group have links to the BlackMatter group, because they modified and reused a custom exfiltration tool […] and which has only been observed in

,

Cybersecurity researchers have uncovered further links between BlackCat (aka AlphaV) and BlackMatter ransomware families, the former of which emerged as a replacement following international scrutiny last year.
« At least some members of the new BlackCat group have links to the BlackMatter group, because they modified and reused a custom exfiltration tool […] and which has only been observed in

, ,
https://thehackernews.com/2022/04/researchers-connect-blackcat-ransomware.html