LockerGoga infected companies include Altran Technologies, Norsk Hydro, Hexion, and Momentive. The ransomware was first spotted on January 24, 2019, when it infected Altran Technologies, forcing the French company to shut down its IT network and all applications. LockerGoga is a ransomware that primarily targets industrial and manufacturing companies. LockerGoga infected companies include Altran Technologies, Norsk Hydro, Hexion, and Momentive. ...
Read More »Monthly Archives: May 2019
Ad Server Patched to Stop Possible Malware Distribution
Revive Adserver patches two vulnerability, one of which may have been used to allow hackers to deliver malware to third-party websites. UPDATE The open-source advertising platform Revive Adserver is urging customers to patch two vulnerabilities, one of which is critical and may have been exploited to allow hackers to deliver malware to third-party websites. Revive Adserver, formerly known as OpenX ...
Read More »Cisco warns of a critical vulnerability in Nexus data-center switches
The security flaw could allow attackers to surreptitiously access system resources of data centers. Designated as CVE-2019-1804, the flaw was given a severity rating of 9.8 out of 10. A severe vulnerability in Nexus switches has been uncovered by the Cisco team. The flaw was disclosed by the networking company in its security advisories released this week. Secure Shell (SSH ...
Read More »Wipro phishing attack was conducted using ScreenConnect and Powerkatz tools, indicates new intel
ScreenConnect is a remote access tool (RAT) used for remote meetings. Powerkatz is a PowerShell version of Mimikatz. New intelligence about the actors behind the attack on India’s largest IT outsourcing and consulting organization Wipro has emerged lately. It is found that the attack on Wipro was conducted using ScreenConnect and Powerkatz. What does the new update say? Researchers from ...
Read More »Extortionist hacks IT provider used by the stars of tech and big biz, leaks customer info after ransom goes unpaid
‘Many companies pay us for our work, and we do not publish data and help them to eliminate vulnerabilities’ A service provider hired by the likes of Oracle, SAP, BT, and many others, to manage their IT systems has been hacked – and its client data held to ransom. At the turn of this month, Germany-based CityComp was broken into ...
Read More »Windows Server hosting provider still down a week after ransomware attack
A ransomware infection has crippled the operations of a US-based web hosting provider for almost eight days now, several of the company’s disgruntled customers have told ZDNet today. Impacted are all Windows-based servers owned by A2 Hosting, a provider of virtual private servers (VPS) and WordPress hosting services. CUSTOMERS LOSING MONEY The infection, which took place last week on April ...
Read More »Malvertising campaign targeting accountants distributes six different malware families
This malvertising campaign targeted Russian organizations with an aim to compromise accountants’ computers. The six different malware families such include Buhtrap banking trojan, RTM banking trojan, Clipbanker trojan, VegaLocker ransomware, and cryptocurrency miners. ESET researchers have observed a new malvertising campaign that leverages Yandex.Direct network to distribute malware onto victims’ computers and steal cryptocurrency. Yandex.Direct is an online advertising network ...
Read More »