Daily Archives: March 3, 2019

Home » March 2019 » Archives for March 3, 2019

Running Elasticsearch 1.4.2 or earlier? There’s targeted malware going for your boxen

 

Institute For Ethical Hacking Course and Ethical Hacking Training in Pune – India

Extreme Hacking | Sadik Shaikh | Cyber Suraksha Abhiyan

 

Credits: The Register

Cisco’s security limb has spotted nefarious people targeting Elasticsearch clusters using relatively ancient vulns to plant malware, cryptocurrency miners and worse – though it does root out some other cybercrims’ dodgy wares, cuckoo-style.

“These attackers are targeting clusters using versions […]

By |March 3rd, 2019|Cyber News|

Web hacker ‘Alfabeto Virtual’ thrown in the clink for 3 months by US judge who wanted to ‘send a message’

Institute For Ethical Hacking Course and Ethical Hacking Training in Pune – India

Extreme Hacking | Sadik Shaikh | Cyber Suraksha Abhiyan

Credits: ABC News

A US judge this week sentenced website hacker Billy Anderson to three months behind bars, refusing his lawyer’s request not to put him in jail, in order to “send a message” to others.

Anderson, 42, of Torrance, California, targeted thousands […]

By |March 3rd, 2019|Cyber News|

Qbot malware’s back, and latest strain relies on Visual Basic script to slip into target machines

Institute For Ethical Hacking Course and Ethical Hacking Training in Pune – India

Extreme Hacking | Sadik Shaikh | Cyber Suraksha Abhiyan

Credits: ABC News

A new version of the decade-old banking credential-stealing Qbot malware is doing the rounds, according to infosec firm Varonis.

The latest version, spotted after an unfortunate customer’s systems were infected, retains the anti-analysis polymorphism features of the original, Varonis researchers […]

By |March 3rd, 2019|Cyber News|

In the cloud, things aren’t always what they SIEM: Microsoft rolls out AI-driven Azure Sentinel

Institute For Ethical Hacking Course and Ethical Hacking Training in Pune – India

Extreme Hacking | Sadik Shaikh | Cyber Suraksha Abhiyan

Credits: The Register

RSA Microsoft has wheeled out two new enterprise security tools – Azure Sentinel, a cloud-based SIEM, and Microsoft Threat Experts, an infosec advice-as-a-service bundled with a panic button.

The two services are part of Redmond’s ongoing invasion of the cloud security market. […]

By |March 3rd, 2019|Cyber News|

Did you hear the one about Cisco routers using strcpy insecurely for login authentication? Makes you go AAAAA-AAAAAAArrg *segfault*

Institute For Ethical Hacking Course and Ethical Hacking Training in Pune – India

Extreme Hacking | Sadik Shaikh | Cyber Suraksha Abhiyan

Credits: ABC News

Cisco has patched three of its RV-series routers after Pen Test Partners (PTP) found them using hoary old C function strcpy insecurely in login authentication function. The programming blunder can be exploited to potentially hijack the devices.

PTP looked at how the […]

By |March 3rd, 2019|Cyber News|

Kerala Cyberdome, Dubai police tie up on cyber security

Institute For Ethical Hacking Course and Ethical Hacking Training in Pune – India

Extreme Hacking | Sadik Shaikh | Cyber Suraksha Abhiyan

Credits: Deccan Chronical 

The Kerala Cyberdome has decided to cooperate with Dubai police in cyber security. The two sides reached an agreement on sharing the information about those who are engaged in criminal activities on social media, said Police Cyberdome chief Manoj […]

By |March 3rd, 2019|Cyber News|

Jyotipriya Singh, DCP cyber crime, Pune, says stronger policies are needed to prevent fraud through breach of KYC data

Institute For Ethical Hacking Course and Ethical Hacking Training in Pune – India

Extreme Hacking | Sadik Shaikh | Cyber Suraksha Abhiyan

Credits: Hindustan Times

It is too easy to obtain and breach KYC data collected from customers by banks, mobile phone companies and other organisations, Jyotipriya Singh, deputy commissioner of police, cyber crime and economic offences wing, Pune, has said.

KYC or know your […]

By |March 3rd, 2019|Cyber News|