Search Results for “Register”


March 30, 2020
Ravie Lakshmanan / The Hacker News

Ravie Lakshmanan / The Hacker News  
Hackers Are Registering Domains With ‘Zoom’ in the Name to Lure Victims Into Downloading Malware

Researchers at Check Point recently discovered a technique that could have allowed a threat actor to identify and join increasingly ubiquitous active Zoom meetings. Since the beginning of the year, more than 1700 new domains were registered with the name Zoom in them, and 25% were registered in the past week. Out of these registered domains, 4% have been found to contain suspicious characteristics indicating that hackers see the rise of Zoom as an opportunity to deceive, lure, and exploit. Some of the domains lead to the downloading of malicious files that, when executed, installed potentially unwanted programs (PUPs) such as InstallCore, a bundleware application that’s known to install other kinds of malware. The CheckPoint researchers said they also discovered phishing sites masquerading as the legitimate Google Classroom website, another distance communication application that is soaring in the time of coronavirus, to trick unwitting users into downloading malware.

April 20, 2020
Ian Barker / BetaNews

Ian Barker / BetaNews  
COVID-19 Cyberattacks Soar to 14,000 Per Day, Hundreds of Malicious or Suspicious New Domains Registered Related to Stimulus Checks

COVID-19 related cyberattacks rise to an average of 14,000 a day this month, which is six times the average number of daily attacks compared to March, researchers at Check Point Security report. Between April 7 and 14, the average number of daily attacks increased sharply to 20,000, 94 percent of which were phishing. The researchers further found that in March, a total of 2,081 new domains were registered related to stimulus relief packages, with 38 being malicious and 583 suspicious. In the first week of April, 473 were registered, 18 malicious, 73 suspicious.

June 1, 2020
Catalin Cimpanu / ZDNet

Catalin Cimpanu / ZDNet  
Joomla Announces Security Breach, Unencrypted Backup File Left on Amazon S3 Bucket Exposing Details on 2,700 Registered Users

The team behind the Joomla open source content management system (CMS) announced a security breach that took place after a member of the Joomla Resources Directory (JRD) team left a full backup of the JRD site (resources.joomla.org) on an Amazon Web Services S3 bucket the company owned. The backup file was not encrypted and contained details for around 2,700 users who registered and created profiles on the JRD website, a portal where professionals advertise their Joomla site-making skills. Among the data that could have been exposed were names, addresses, email addresses, phone numbers, company URLs, encrypted passwords (hashed), and more. The Joomla team said that once it learned of this accidental leak of the JRD site backup, they carried out a full security audit of the JRD portal.

May 27, 2020
Shaun Nichols / The Register

Shaun Nichols / The Register  
Microsoft Bans Trend Micro Driver After Code Appears to Cheat Its QA Tests

Microsoft blocked a Trend Micro driver from running on Windows 10, and Trend Micro has withdrawn downloads of its rootkit detector called Rootkit Buster that uses the driver after the code appeared to cheat Redmond’s QA tests, Windows internals guru Alex Ionescu discovered. Ionescu discovered the blockade while investigating research by 18-year-old computer security undergrad Bill Demirkapi that revealed not only shortcomings in the driver’s code but also an effort to detect Microsoft’s QA test suite. The kernel at the heart of Rootkit Buster, tmcomm.sys, alters the way it allocates memory to pass Microsoft’s Windows Hardware Quality Labs (WHQL) certification tests, Demirkapi found. The Register verified Demirkapi’s findings, but Trend Micro has ignored repeated requests for an explanation, although it denied trying to cheat quality assurance tests. Trend Micro did say it has removed Rootkit Buster for another unknown vulnerability.

Related: IT Pro, Bill Demirkapi’s Blog

Tweets:@GossiTheDog @aionescu


March 5, 2020
Shaun Nichols / The Register

Shaun Nichols / The Register  
New Wave of Impersonating Homoglyph or Look-Alike Domains Were Enabled by Flaw in Verisign Domain Registrations

A fresh wave of homoglyph or non-Latin characters that look like Latin letters are being used to lure victims to malicious fake websites, researchers at Soluble report. The Soluble researchers worked with Verisign to thwart the registration of domain names that use homoglyphs to masquerade as legit domains. Between 2017 and today, more than a dozen homograph domains have had active HTTPS certificates, according to Soluble researcher Matt Hamilton. Although Verisign put into place protections against this kind of impersonation, they did not extend to Unicode Latin IPA, although Verisign has updated its filters to fix this flaw.

April 24, 2020
Gareth Corfield / The Register

Gareth Corfield / The Register  
UK Hardware Store Robert Dyas Was Hit By Credit Card-Stealing Malware For Twenty-Four Days

Between March 7 and March 30, British hardware chain Robert Dyas’ website got hit by credit card-stealing malware that siphoned off customers’ payment details, the company said in an email sent to affected customers. Personal and credit/debit card details, including the long card number, expiry date, and security (CVV) code, along with names and addresses of customers, were among the data stolen by the malware. The company said that it took swift action once it discovered the malware, and it is confident the issue has been fully resolved, and the website has been safe for use since March 31.

April 22, 2020
Robert McMillan / Wall Street Journal

Robert McMillan / Wall Street Journal  
iPhone Zero-Day Flaw That Requires Only Specially Crafted Messages to Gain Phone Access Has Been Exploited for Two Years by Sophisticated Attackers, Researchers

In attacks that go back two years, iPhones have been exploited by sophisticated hackers who leveraged a zero-day flaw in the smartphone’s email software, according to digital security firm ZecOps. The hackers gained access to the phones by merely sending a specially crafted message, which triggers the attack when the phone’s email reader downloads the message. ZecOps wasn’t able to obtain the malware itself but based it determinations on the digital clues left after the attacks. The attacks were virtually undetectable due to the sophistication of the attackers and Apple’s efforts to make investigating the device difficult. The researchers were able to identify six targets of these attacks including employees of a telecommunications company in Japan, a large North American firm, technology companies in Saudi Arabia, and Israel, a European journalist and an individual in Germany. Apple has patched the mail bug in a test version of its iPhone operating system, but the fix hasn’t yet been widely released through an official IOS update.

Related: Motherboard, iMore, Security Affairs, The Hacker News, ZDNet Security, AppleInsider, iPhone Hacks, Cult of Mac, Reuters: Top News, Tech Insider, Cybersecurity Insiders, Inc.com, Engadget, The Register – Security, MobileSyrup.com, Tenable Blog, Cyber Kendra, MacRumors, CNET, PhoneArena, Security News | Tech Times, HotHardware.com, TechCrunch, Apple InsideriMore, iPhone Hacks, Threatpost, iDownloadblog, PYMNTS.com, Fortune, 9to5Mac, Malwarebytes Unpacked, Malwarebytes Unpacked, SiliconANGLE, MacDailyNews, ZDNet Security, Law & Disorder – Ars Technica, The Hill: Cybersecurity, The Inquisitr News, Mashable, Reuters, iTnews – Security, Patently Apple, Japan Today, Wall Street Journal, ARN, The Verge, VentureBeat, Japan Times, Fortune, Motley Fool, The Hacker News, MobileSyrup.com, Security Affairs, Jerusalem Post

Tweets:@ZecOps @kennwhite @AntivirusLV

Motherboard: Researchers Say They Caught an iPhone Zero-Day Hack in the Wild
iMore: An iOS vulnerability may have been exploited to spy on Uyghur population
Security Affairs: A new Insomnia iOS exploit used to spy on China’s Uyghur minority
The Hacker News: New iPhone Hack is Being Exploited to Spy Uyghurs Muslims in China
ZDNet Security: Apple investigating report of a new iOS exploit being used in the wild
AppleInsider: Two Apple Mail vulnerabilities being used to target iPhone, iPad users
iPhone Hacks: Apple Patches Mail App Related Security Vulnerabilities in Latest iOS 13.4.5 Beta
Cult of Mac: iPhone vulnerability let hackers attack devices through Mail app
Reuters: Top News: Flaw in iPhone, iPads may have allowed hackers to steal data for years
Tech Insider: Hackers may be attacking iPhones by sending emails that can infect phones without you even opening the email (AAPL)
Cybersecurity Insiders: Apple iPhones are vulnerable to Email hacks
Inc.com: Apple Mail Bug Lets Hackers Control Your iPhone
Engadget: Apple Mail for iPhone may be vulnerable to malware attacks
The Register – Security: Zero-click, zero-day flaws in iOS Mail ‘exploited to hijack’ VIP smartphones. Apple rushes out beta patch
MobileSyrup.com: Security researchers uncovered vulnerabilities in Apple’s default Mail app on iOS
Tenable Blog: Multiple Zero-Day Vulnerabilities in iOS Mail App Exploited in the Wild
Cyber Kendra: Hack iPhone With Just a Single Mail—Zero-day Bug
MacRumors: Apple Patches Two Security Vulnerabilities Impacting Mail App in iOS 13.4.5 Beta
CNET: Mail app on iPhone may be vulnerable to email hack, report says
PhoneArena: “Scary” vulnerability found in the iPhone/iPad Mail app; Apple says patch is coming soon
Security News | Tech Times: Disable iPhone Mail App Now! Security Alerts Users on New Apple Scam That Steals Data
HotHardware.com: Apple iPhone Mail App Zero-Day Security Exploit Potentially Exposed Private Data Of Millions
TechCrunch: A new iPhone email security bug may let hackers steal private data
Apple Insider : Two Apple Mail vulnerabilities being used to target iPhone, iPad users
iMore: A new security vulnerability has been discovered in the default Mail app
iPhone Hacks: Apple Patches Mail App Related Security Vulnerabilities in Latest iOS 13.4.5 Beta
Threatpost : Apple Patches Two iOS Zero-Days Abused for Years
iDownloadblog : Researchers discover a pair of security vulnerabilities in the iOS Mail app, Apple is working on a patch
PYMNTS.com: Apple iOS May Be Vulnerable To Zero-Click Email Hack
Fortune: Apple iPhones, iPads are vulnerable to hackers through flaws in email app
9to5Mac : Report: iPhone Mail app zero-day exploits found in the wild, Apple has fix coming in next public iOS release
Malwarebytes Unpacked: iOS Mail bug allows remote zero-click attacks
SiliconANGLE: Hackers spotted using new iPhone vulnerability in email-borne cyberattacks
MacDailyNews: Apple investigating report of a new iOS email exploit being used in the wild
ZDNet Security: Apple investigating report of a new iOS exploit being used in the wild
Law & Disorder – Ars Technica: A critical iPhone and iPad bug that lurked for 8 years may be under active attack
The Hill: Cybersecurity: Vulnerabilities on iPhones, iPads allowed hackers to access data for years: report
The Inquisitr News: Flaws In iPhone Design Have Allowed Hackers To Steal Information For Years
Mashable: Newly disclosed iPhone vulnerability means emails are an even bigger risk
Reuters: Flaw in iPhone, iPads may have allowed hackers to steal data for years
iTnews – Security: Flaw in iPhone, iPads may have allowed hackers to steal data for years
Patently Apple: Apple is planning to fix a Security Flaw that was first discovered by a former Israeli Defense Force security researcher
Japan Today: Flaw in iPhone, iPads may have allowed hackers to steal data for years
Wall Street Journal: Apple iPhone May Be Vulnerable to Email Hack
ARN: Apple moves to fix flaw affecting up to 500M iPhones
The Verge: Apple’s default Mail app for the iPhone has a severe security flaw, researchers claim
VentureBeat: Researchers find actively exploited iOS flaws that were open for years
Japan Times: Apple iPhones and iPads vulnerable to hackers by flaws in mail app
Fortune: Apple iPhones, iPads are vulnerable to hackers through flaws in email app
Motley Fool: iPhone Flaw Allowed Hackers to Steal Data for Years
The Hacker News: Zero-Day Warning: It’s Possible to Hack iPhones Just by Sending Emails
MobileSyrup.com: Security researchers uncovered vulnerabilities in Apple’s default Mail app on iOS
Security Affairs: Hacking Apple iPhones and iPads by sending emails to the victims
Jerusalem Post: Israeli security company finds vulnerable flaw in iPhones, iPads

@ZecOps: Hackers may be attacking iPhones by exploiting a previously unknown flaw in the smartphone’s email software, according to digital-security company @ZecOps https://wsj.com/articles/apple-iphone-may-be-vulnerable-to-email-hack-11587556802 via @WSJ
@kennwhite: MacRumors Apple Patches Two Security Vulnerabilities Impacting Mail App in iOS 13.4.5 Beta San Francisco-based cybersecurity company ZecOps today announced that it has uncovered two zero-day security vulnerabilities affecting Apple's stock Mail app on iOS devices, as noted by Motherbo + Related: CERT-EU , CERT-EU , The Register - Security, The Register - Security, Techmeme Chatter (@TechmemeChatter) | Twitter, Techmeme Chatter (@TechmemeChatter) | Twitter, MobileSyrup.com, Tenable Blog, Cyber Kendra, Techmeme Chatter (@TechmemeChatter) | Twitter, GeekWire, GeekWire, CERT-EU , MacRumors, CERT-EU , CNET, CERT-EU , CERT-EU , CERT-EU , CERT-EU , CERT-EU , PhoneArena, PhoneArena, Security News | Tech Times, Security News | Tech Times, HotHardware.com, HotHardware.com, CERT-EU , TechCrunch, TechCrunch, CERT-EU , iMore, CERT-EU , iMore, CERT-EU , CERT-EU , iPhone Hacks, iPhone Hacks, iPhone Hacks, iPhone Hacks, CERT-EU , CERT-EU , CERT-EU , CERT-EU , CERT-EU , CERT-EU , PYMNTS.com, Fortune, GeekWire, CERT-EU , CERT-EU , CERT-EU , CERT-EU , PYMNTS.com, Malwarebytes Unpacked, Malwarebytes Unpacked, Malwarebytes Unpacked, Malwarebytes Unpacked Related: CERT-EU : Zero-click, zero-day flaw in iOS Mail ‘exploited to hijack’ VIP smartphones. Apple rushes out beta patch CERT-EU : Zero-click, zero-day flaw in iOS Mail 'exploited to hijack' VIP smartphones. Apple rushes out beta patch The Register - Security: Zero-click, zero-day flaws in iOS Mail 'exploited to hijack' VIP smartphones. Apple rushes out beta patch The Register - Security: Zero-click, zero-day flaws in iOS Mail 'exploited to hijack' VIP smartphones. Apple rushes out beta patch Techmeme Chatter (@TechmemeChatter) | Twitter: @kennwhite: - beta patch released by Apple- attack is fairly advanced, but actual exploit appears to be POC-grade - multiple delivery methods including large mail but also multi-part & rich text format hacks- full report, with IOCs and FAQ from @ZecOps:ht Techmeme Chatter (@TechmemeChatter) | Twitter: @kennwhite: - beta patch released by Apple- attack is fairly advanced, but actual exploit appears to be POC-grade - multiple delivery methods including large mail but also multi-part & rich text format hacks- full report, with IOCs and FAQ from @ZecOps:ht MobileSyrup.com: Security researchers uncovered vulnerabilities in Apple’s default Mail app on iOS Tenable Blog: Multiple Zero-Day Vulnerabilities in iOS Mail App Exploited in the Wild Cyber Kendra: Hack iPhone With Just a Single Mail—Zero-day Bug Techmeme Chatter (@TechmemeChatter) | Twitter: @TheRegister: Zero-click, zero-day flaw in iOS Mail exploited to hijack VIP smartphones. Apple rushes out beta patch https://t.co/r7OWryABPq GeekWire: Zero-click, zero-day flaws in iOS Mail ‘exploited to hijack’ VIP smartphones. Apple rushes out beta patch GeekWire: Zero-click, zero-day flaw in iOS Mail ‘exploited to hijack’ VIP smartphones. Apple rushes out beta patch CERT-EU : Apple Patches Two Security Vulnerabilities Impacting Mail App in iOS 13.4.5 Beta MacRumors: Apple Patches Two Security Vulnerabilities Impacting Mail App in iOS 13.4.5 Beta CERT-EU : Apple Patches Two Security Vulnerabilities Impacting Mail App in iOS 13.4.5 Beta CNET: Mail app on iPhone may be vulnerable to email hack, report says CERT-EU : Apple iPhones are vulnerable to Email hacks CERT-EU : Apple iPhones are vulnerable to Email hacks CERT-EU : Apple iPhones are vulnerable to Email hacks CERT-EU : Apple iPhones are vulnerable to Email hacks CERT-EU : Two Apple Mail vulnerabilities being used to target iPhone, iPad users PhoneArena: "Scary" vulnerability found in the iPhone/iPad Mail app; Apple says patch is coming soon PhoneArena: "Scary" vulnerability found in the iPhone/iPad Mail app; Apple says patch is coming soon Security News | Tech Times: Disable iPhone Mail App Now! Security Alerts Users on New Apple Scam That Steals Data Security News | Tech Times: Disable iPhone Mail App Now! Security Alerts Users on New Apple Scam That Steals Data HotHardware.com: Apple iPhone Mail App Zero-Day Security Exploit Potentially Exposed Private Data Of Millions HotHardware.com: Apple iPhone Mail App Zero-Day Security Exploit Potentially Exposed Private Data Of Millions CERT-EU : iPhone's Mail app has two severe "zero-click" vulnerabilities that have existed for 8 years TechCrunch: A new iPhone email security bug may let hackers steal private data TechCrunch: A new iPhone email security bug may let hackers steal private data CERT-EU : Two Apple Mail vulnerabilities being used to target iPhone, iPad users iMore: A new security vulnerability has been discovered in the default Mail app CERT-EU : A new security vulnerability has been discovered in the default Mail app iMore: A new security vulnerability has been discovered in the default Mail app CERT-EU : Session hijacking & malware injection vulnerabilities found in Apple Mail app and AirShare affecting iPhone, iPad & Mac CERT-EU : Session hijacking & malware injection vulnerabilities found in Apple Mail app and AirShare affecting iPhone, iPad & Mac iPhone Hacks: Apple Patches Mail App Related Security Vulnerabilities in Latest iOS 13.4.5 Beta iPhone Hacks: Apple Patches Mail App Related Security Vulnerabilities in Latest iOS 13.4.5 Beta iPhone Hacks: Apple Patches Mail App Related Security Vulnerabilities in Latest iOS 13.4.5 Beta iPhone Hacks: Apple Patches Mail App Related Security Vulnerabilities in Latest iOS 13.4.5 Beta CERT-EU : Apple Patches Two iOS Zero-Days Abused for Years CERT-EU : Researchers discover a pair of security vulnerabilities in the iOS Mail app, Apple is working on a patch CERT-EU : Researchers discover a pair of security vulnerabilities in the iOS Mail app, Apple is working on a patch CERT-EU : Two Apple Mail vulnerabilities being used to target iPhone, iPad users CERT-EU : Apple Mail Vulnerabilities Found Could Lead To Attacks On iPhone Users CERT-EU : Apple Mail Vulnerabilities Found Could Lead To Attacks On iPhone Users PYMNTS.com: Apple iOS May Be Vulnerable To Zero-Click Email Hack Fortune: Apple iPhones, iPads are vulnerable to hackers through flaws in email app GeekWire: iOS Mail bug allows remote zero-click attacks CERT-EU : Report: iPhone Mail app zero-day exploits found in the wild, Apple has fix coming in next public iOS release CERT-EU : Report: iPhone Mail app zero-day exploits found in the wild, Apple has fix coming in next public iOS release CERT-EU : Hack iPhone With Just a Single Mail—Zero-day Bug CERT-EU : Hack iPhone With Just a Single Mail—Zero-day Bug PYMNTS.com: Apple iOS May Be Vulnerable To Zero-Click Email Hack Malwarebytes Unpacked: iOS Mail bug allows remote zero-click attacks Malwarebytes Unpacked: iOS Mail bug allows remote zero-click attacks Malwarebytes Unpacked: iOS Mail bug allows remote zero-click attacks Malwarebytes Unpacked: iOS Mail bug allows remote zero-click attacks
@AntivirusLV: Researchers are reporting two Apple #iOS 0-day security #vulnerabilities affecting its Mail app on iPhones and iPads. Impacted are iOS 6 and iOS 13.4.1. Apple patched both vulnerabilities in iOS 13.4.5 beta. A final release of iOS 13.4.5 is expected soon.


April 7, 2020
Shaun Nichols / The Register

Shaun Nichols / The Register  
Chinese State Hacking Crews That Target Mostly Linux Servers Stayed Undetected for More Than a Decade

A collection of five small crews of hackers thought to be state-sponsored operating as an offshoot of China’s Winnti group managed to stay undetected for more than a decade by going open source, according to a report by Blackberry Cylance. The group assembled in the wake of Winnti and exploited Linux servers, plus the occasional Windows Server box and mobile device, for years. The researchers believe the hackers use three different backdoors, two rootkits, and two other build tools that can be used to construct additional rootkits on a per-target basis for open-source servers.

Related: LinuxSecurity – Security Articles, Verdict, BetaNews, Forbes, Cylance, MobileSyrup.com, ZDNet


May 4, 2020
Shaun Nichols / The Register

Shaun Nichols / The Register  
The UK’s NCSC Will Stop Using Terms Whitelisting and Blacklisting Due to Racist Connotations, Small Gesture in Larger Effort to Drive Prejudice From Cybersecurity

To “stamp out” racism in the cybersecurity industry, the National Cyber Security Centre (NCSC), part of GCHQ, said it would stop using the terms whitelisting and blacklisting due to their racial connotations. NCSC said it was following a request from a customer and will eliminate the terms when describing, including and excluding specific applications, websites, weak or leaked passwords, and so on. It will instead use the terms “allow list” and “deny list” in material published on its website. NCSC said the policy change was only a small gesture in a much larger effort to drive prejudice from technology and cybersecurity industries.