Threat Spotlight: Sodinokibi ransomware attempts to fill GandCrab void

July 18, 2019 LifetimeComputerSolutionsBlog

There’s a new ransomware-as-a-service (RaaS) in town, and it can twist tongues for giggles as much as twist organizations’ arms for cash. Get to know the Sodinokibi ransomware, including how to protect against this fledgling threat.

Categories:

Threat spotlight

Tags: 177a571d7c6a6e4592c60a78b574fe0e bf9359046c4f5c24de0a9de28bbabd14 caas Cisco Talos crime-as-a-service CVE-2018-8453 CVE-2019-2725 e713658b666ff04c9863ebecb458f174 FruitArmor APT gandcrab Heaven’s Gate malvertising managed service providers msp hack Oracle WebLogic vulnerability raas Ransom.Sodinokibi ransomware Ransomware as a Service revil salsa20 shadow copy sodin Sodinokibi volume snapshot service vss Win32k vulnerability zero-day vulnerability

No man’s land: How a Magecart group is running a web skimming operation from a war zone

July 18, 2019 LifetimeComputerSolutionsBlog

We take a look into a Magecart group’s web skimming activities, which are relying on a bulletproof-friendly host in battle-scarred Luhansk, Ukraine to provide cover for their activities, safe from the reach of law enforcement and the security community.

Categories:

Cybercrime

Tags: bulletproof exfiltration gate hosting IDN luhansk Magecart magento skimmers sniffers swipers ukraine

Compromising vital infrastructure: problems in education security continue

July 17, 2019 LifetimeComputerSolutionsBlog

While educational organizations lack funding they are high on the target lists of cybercriminals. Does one fact lead to another?

Categories:

Vital infrastructure

Tags: education funding malware vital infrastructure

Hi, honey. It’s mom. My phone is acting funny again.

July 16, 2019July 16, 2019 LifetimeComputerSolutionsBlog

Often, older generations must turn to their progenitors for help with technology. What are their frustrations and concerns, and how can younger generations better help?

Categories:

Awareness

Tags: Baby Boomers ease-of-use family IT guy generation X intuitive tech older users smart phones smart TV technology

Meet Extenbro, a new DNS-changer Trojan protecting adware

July 15, 2019 LifetimeComputerSolutionsBlog

We found a new Trojan that uses aggressive techniques, including blocking access to security sites, to deliver an adware bundler. Read up on what Extenbro can do and how to get this pest off your system.

Categories:

Trojans

Tags: adware bundler bundleware dns DNS servers DNS-changer Extenbro malware removal Root certificate scheduled tasks trojan Trojans

A week in security (July 8 – 14)

July 15, 2019 LifetimeComputerSolutionsBlog

A roundup of cybersecurity news from July 8–14, including secure data sending, federal data privacy law, the Soft Cell attack, and more.

Categories:

A week in security

Tags: agent smith amazon amazon prime amazon prime day 2019 amazon prime phishing Android android malware facial recognition google home audio mac malware pale moon phishing privacy roundup targeted spear phishing trickbot week in security whaling zoom zero-day

(Read more…)

The post A week in security (July 8 – 14) appeared first on Malwarebytes Labs.

Cellular networks under fire from Soft Cell attacks

July 12, 2019 LifetimeComputerSolutionsBlog

We break down the recently revealed attacks on telco operators around the globe, targeting specific high-value individuals.

Categories:

Hacking

Tags: call detail records cellular China Chopper compromise domain controller hack hacking malware Mobile nation-state attack operation soft cell Poison Ivy RATs VPN servers

Caution: Misuse of security tools can turn against you

July 11, 2019 LifetimeComputerSolutionsBlog

If not implemented correctly, the very security tools we use to keep our information private may actually cause data leaks themselves. We outline a few cases and provide suggestions for researchers and security admins.

Categories:

Researcher’s corner

Tags: automation Carbon Black data leaks EDR platforms exes infosec opsec plugins remediation and prevention rules-based segmentation security solutions security tools virustotal VT

What should a US federal data privacy law ideally include?

July 10, 2019 LifetimeComputerSolutionsBlog

What do small, privacy-protective companies think about a federal data privacy law for the US? It turns out, they’re all for it. Here are some of their ideas for US data privacy legislation.

Categories:

Privacy

Tags: AB 846 AB 873 Brave Brave browser California Consumer Privacy Act data broker Data privacy data privacy laws data privacy legislation digital bill of rights Disconnect DuckDuckGo European Union federal data privacy law federal data privacy legislation gdpr General Data Protection Regulation Ghostery internet service provider Lavabit Maine preempt preemption protonmail Purism right to access social purpose company US data privacy laws US data privacy legislation US Senate Judiciary Committee Vermont Vivaldi

Enterprise incident response: getting ahead of the wave

July 10, 2019 LifetimeComputerSolutionsBlog

As with traditional warfare, beating back attacks and winning depends on having a plan. Here are several incident respond models security researchers have developed for responding to threats.

Categories:

Business

Tags: enterprise Incident Response kill chain threat intelligence

Lifetime Computer Solutions Blog

Author: LifetimeComputerSolutionsBlog

Threat Spotlight: Sodinokibi ransomware attempts to fill GandCrab void

No man’s land: How a Magecart group is running a web skimming operation from a war zone

Compromising vital infrastructure: problems in education security continue

Hi, honey. It’s mom. My phone is acting funny again.

Meet Extenbro, a new DNS-changer Trojan protecting adware

A week in security (July 8 – 14)

Cellular networks under fire from Soft Cell attacks

Caution: Misuse of security tools can turn against you

Enterprise incident response: getting ahead of the wave