9 matches found
Russian Federal Agencies Were Attacked With Chinese Webdav-O Virus
An amalgam of multiple state-sponsored threat groups from China may have been behind a string of targeted attacks against Russian federal executive authorities in 2020. The latest research, published by Singapore-headquartered company Group-IB, delves into a piece of computer virus called...
Anonymous Stole and Leaked a Megatrove of Police Documents
The so-called BlueLeaks collection includes internal memos, financial records, and more from over 200 state, local, and federal agencies...
This Week in Security News: How a Partnership can Advance DevSecOps and Cybersecurity Issues in the Midwest and South U.S.
Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, learn about how Trend Micro’s partnership with Snyk will advance DevSecOps. Also, read about cyber attacks affecting hospitals in Alabama an...
OpenPGP、S/MIME information disclosure (CVE-2017-17688,CVE-2017-17689)
EFAIL describes vulnerabilities in the end-to-end encryption technologies OpenPGP and S/MIME that leak the plaintext of encrypted emails. Email is a plaintext communication medium whose communication paths are partly protected by TLS TLS. For people in hostile environments journalists, political...
MarsJoke Ransomware Targets .EDU, .GOV Agencies
New ransomware has surfaced that targets state and local government agencies, and educational institutions that are less likely to have big budgets to ward off or mitigate threats, according to researchers. The ransomware, called MarsJoke, was detected in a large-scale email campaign last week th...
South Carolina Data Breach Casts Spotlight on Lack of Encryption, Stolen Credentials
South Carolina governor Nikki Haley said a mouthful this week when she spilled a dirty industry secret that Social Security numbers are generally not encrypted by state agencies. Reeling from a Department of Revenue data breach that leaked 3.6 million Social Security and credit card numbers as we...
Texas Comptroller Exposes Personal Data on Millions
The Texas Comptroller’s Office is issuing letters Wednesday to some 3.5 million citizens after personally identifiable data was left exposed to the public on a state server for more than a year, according to a published statement. The exposed data included the names, addresses and Social Security...
AVCON Buffer Overflow
Exploit for windows platform in category local exploits ===================== AVCON Buffer Overflow ===================== !/usr/bin/perl Exploit Title: AVCON Buffer Overflow Date: 5/7/10 Author: Dillon Beresford URL: http://www.avcon.com.cn/ Version: 4.6.8.7 Tested on: XP SP2 and SP3 CVE : NONE...
Why Bob Maley's Firing is Bad for All of Us
The news that Pennsylvania CISO Bob Maley lost his job for publicly discussing a security incident at last week’s RSA Conference really shouldn’t come as a surprise, but it does. Even for a government agency, this kind of lack of understanding of what actually matters is appalling and it is a...