Hackers ask 500 Bitcoin ransom from Tether

Priyanshu Vijayvargiya
Tether, the issuer of the USDT stablecoin, claims to have received a ransom note asking for 500 bitcoin (currently worth about USD $22 million), lest documents are made public that could “harm the bitcoin ecosystem.” Tether has revealed a ransomware demand in which threat actors are allegedly demanding 500 Bitcoin ($24 million).  Over the…
Continue Reading

Salt Project patched a privilege escalation bug impacting SaltStack Salt minions

Priyanshu Vijayvargiya
The Salt Project has patched a privilege escalation bug impacting SaltStack Salt minions that could be used during a wider exploit chain.  The vulnerability, CVE-2020-28243, is described as a privilege escalation bug impacting SaltStack Salt minions allowing “an unprivileged user to create files in any non-blacklisted directory via a command injection…
Continue Reading

Qualcomm has signed up Sophos to secure 5G Snapdragon PCs

Priyanshu Vijayvargiya
Qualcomm has signed Sophos to provide cybersecurity solutions for the next wave of 5G-enabled PCs. Announced on Tuesday, the American manufacturer said Sophos, a British security company, would provide Intercept X endpoint protection software for 5G PCs. Sophos will provide endpoint protection for always-on, always-connected PCs. “The combination of Sophos…
Continue Reading

Cyber Criminals Exploit zero-day vulnerability in FTA servers for Data Theft and Extortion

Priyanshu Vijayvargiya
Cybersecurity company FireEye said today cybercriminal gang known as FIN11 performed a zero-day attack on Accellion FTA servers that hit 100 companies worldwide in December 2020 and January 2021. During the attack, hackers used four security bugs to attack FTA servers, including a web shell called DEWMODE, which the attackers…
Continue Reading

SolarWinds hackers downloaded Azure, Exchange, and Intune source code says Microsoft

Priyanshu Vijayvargiya
Microsoft’s security team said today it had officially completed its SolarWinds-related criminal investigation and found no evidence that hackers were abusing its internal systems or legal products to assault and attack end-users and business customers. Microsoft says it has completed an investigation into its SolarWinds-related violations. The OS maker began…
Continue Reading

Centreon says only 15 organizations have been targeted in Russia’s latest hacking spree

Priyanshu Vijayvargiya
Today, French software company Centreon said that none of its paid customers were victims of a years-long hacking campaign that surfaced on Monday. Revealed in a report published by ANSSI, France’s cybersecurity agency, the hacking campaign continued between 2017 and 2020 and targeted companies using Centonon’s core product, a software…
Continue Reading
1 2 3 12