Eskenzi PR Eskenzi PR

Uncategorized

Belgium town

On Tuesday the internet service provider Belnet fell victim to a cyberattack. The attack took place at 11:00am CEST when the company experienced a distributed denial of service (DDoS) attack. This resulted in Belnet's servers being overloaded and preventing any availability of their online services. The attack affected any website with .be domains. As a number of Belgium's government agencies are customers of Belnet, they too were affected by the attack. The incident affected Belgium's...

Read more
Capcom streetfighter characters

Capcom has released the final update on their investigation into the major ransomware attack they suffered last year. The investigation has found that the attackers accessed the company through an outdated VPN device. Through this avenue, the attackers were able to access the companies network, as well as any compromised devices in the network. The attack took place in November 2020, when Capcom was targeted by the Ragnar Locker ransomware. The attack resulted in Capcom...

Read more
Chip

The FBI has been removing web shells from compromised Microsoft Exchange serves following court authorisation. However, owners of the Microsoft Exchange servers were never informed or able to approve of the FBI's actions. In February, the hacking group HAFIUM exploited several vulnerabilities in Microsoft Exchange's servers. The group installed web shells in compromised Exchange servers which allowed them to remotely access the servers. Following the attack, Microsoft released a security update that patched the exploited...

Read more
Nuclear facility

Iran's main nuclear facility suffered a cyberattack on Sunday, leading to a large scale blackout at Natanz, which Israel now appears to be taking responsibility for. Tehran's nuclear energy chief described the attack as an act of terrorism, and demands a response against the perpetrators. The incident occurred shortly after the official restarted spinning advanced centrifuges at the Natanz reactor. The goal was to speed up the production of enriched uranium, in an event that...

Read more
Covid-19 contact tracing application for iPhone asking for bluetooth permission

The new update to the NHS COVID-19 track and tracing app has been blocked by both Apple and Google, due to its failure to comply with the terms of a recent agreement. The new update would urge users to upload logs of venue check-ins via a barcode scan if they tested positive for COVID-19. The goal was to use this to warn other individuals in case of infection. However, both Apple and Google had banned...

Read more
Standford University

In February Accellion was the victim of a major security incident, and since then the number of Universities affected by the breach are growing by the day. The latest victims of the breach are the University of California and Stanford University. The university systems have been breached due to the Accellion incident, with an unknown number of files being affected by the hack. Stanford has said that their medical school was targeted, which resulted in...

Read more
Microsoft teams

Microsoft has recently started a brand new bug bounty program for their Teams desktop application. The bug bounty program is offering up to $30,000 as a reward for finding security vulnerabilities, with the highest payouts going to whoever has the ability to expose the most Teams user data. The program manager, Lynn Miyashita, said, “The Teams desktop client is the first in-scope application under the new Apps Bounty Program, we look forward to sharing updates...

Read more
Mamba snake

The U.S. Federal Bureau of Investigation (FBI) has issued a statement about the Mamba ransomware, also known as HDDCryptor, as a weakness has been found in the ransomware's encryption process. This weakness means that organisations targeted by the ransomware can recover from an attack without having to pay the ransom. The weakness has been found in the open-source software solution, called DiskCryptor, that Mamba uses to encrypt victim's computers using a key defined by the attacker....

Read more
Gmail inbox

The new attacks are part of an ongoing phishing operation, dubbed the "Compact" Campaign, which has been active since early 2020. The campaign, which has already stolen an estimated 400,000 OWA and Office 365 credentials has now begun abusing new legitimate services in an effort to bypass secure email gateways (SEGs). As a result, Microsoft security experts have issues a warning: "Phishers continue to find success in using compromised accounts on email marketing services to...

Read more
Catsle

The ransomware campaign, BlackKingdom, has been attacking Microsoft Exchange Server by exploiting ProxyLogon vulnerabilities in order to deploy ransomware on vulnerable servers. The attacks were discovered by Marcus Hutchins, a security researcher from MalwareTechBlog who revealed in a series of tweets on Sunday that he left honeypots on his Exchange servers which lured in attackers who were attempting to running a script on his server. The MalwareTechBlog tweeted, "Someone just ran this script on all...

Read more
Page 1 of 8 1 2 8