Cyware Hacker News
New “WildPressure” APT Group Targets Industries in the Middle East
/https://cyware-ent.s3.amazonaws.com/image_bank/cd41_shutterstock_654956419.jpg "New “WildPressure” APT Group Targets Industries in the Middle East - Cybersecurity news")
The WildPressure APT group was spotted delivering a new piece of C++ backdoor named Milum.
Hackers Use Fake “Corona Antivirus” Software to Distribute Malware Backdoor
/https://cyware-ent.s3.amazonaws.com/image_bank/98a4_shutterstock_510793918.jpg "Hackers Use Fake “Corona Antivirus” Software to Distribute Malware Backdoor - Cybersecurity news")
Hackers were found promoting a fake antivirus software to distribute a malware payload which could infect the systems with the BlackNET RAT, while also adding it to a botnet.
FBI Issues Alert on Phishing Email Scams Related to COVID-19
/https://cyware-ent.s3.amazonaws.com/image_bank/ac84_shutterstock_1654957318.jpg "FBI Issues Alert on Phishing Email Scams Related to COVID-19 - Cybersecurity news")
The FBI IC3 has asked people to be cautious of emails that claim to be from the Centers for Disease Control and Prevention (CDC) or other healthcare organizations.
UK National Gallery Witnessed Nearly Two Million Cyberattacks in 2019
/https://cyware-ent.s3.amazonaws.com/image_bank/68cc_shutterstock_1668624973.jpg "UK National Gallery Witnessed Nearly Two Million Cyberattacks in 2019 - Cybersecurity news")
The gallery had witnessed a total of 1,875,250 email-based attacks in 2019.
COVID-19 Cyberattacks Roundup From the Past Week
/https://cyware-ent.s3.amazonaws.com/image_bank/77de_shutterstock_1666334176.jpg "COVID-19 Cyberattacks Roundup From the Past Week - Cybersecurity news")
Researchers found hackers creating thousands of fake websites to exploit the COVID-19 scare, while also targeting a hospital in the Czech Republic and the US Dept. of Health and Human Services.
Technical Details on KrØØk WiFi Vulnerability Exploit Released
/https://cyware-ent.s3.amazonaws.com/image_bank/shutterstock_520996051.jpg "Technical Details on KrØØk WiFi Vulnerability Exploit Released - Cybersecurity news")
Tracked as CVE-2019-15126, this serious flaw affects both WPA2-Personal and WPA2-Enterprise protocols, with AES-CCMP encryption.
Attackers Exploit LILIN DVR Zero-Day Vulnerabilities to Spread Three Different Botnets
/https://cyware-ent.s3.amazonaws.com/image_bank/shutterstock_541381777.jpg "Attackers Exploit LILIN DVR Zero-Day Vulnerabilities to Spread Three Different Botnets - Cybersecurity news")
Chalubo was the first botnet to abuse the NTPUpdate vulnerability to take over LILIN DVRs starting late August last year.
Russian State-Sponsored APT28 Conducting Cyber Espionage on Middle East Defence Firms
/https://cyware-ent.s3.amazonaws.com/image_bank/shutterstock_197900651.jpg "Russian State-Sponsored APT28 Conducting Cyber Espionage on Middle East Defence Firms - Cybersecurity news")
Researchers found that the threat group was port-scanning mail servers such as Microsoft Exchange, via TCP ports 443 and 1433.
Pysa Operators Join ‘Big-Game Hunting’ by Releasing New Version of Ransomware
/https://cyware-ent.s3.amazonaws.com/image_bank/bb7f_shutterstock_660345646.jpg "Pysa Operators Join ‘Big-Game Hunting’ by Releasing New Version of Ransomware - Cybersecurity news")
CERT France has issued an alert about a new version of the Pysa ransomware that has targeted several local governments.
All-in-one CrazyCoin Worm Leverages EternalBlue Exploit Kit to Spread Across Target Systems
/https://cyware-ent.s3.amazonaws.com/image_bank/shutterstock_372948544.jpg "All-in-one CrazyCoin Worm Leverages EternalBlue Exploit Kit to Spread Across Target Systems - Cybersecurity news")
Researchers came across the new CrazyCoin virus that integrates cryptomining, hacking, and backdoor capabilities in its arsenal. It spreads via the NSA leaked EternalBlue exploit kit.
