Daily Cyber Threats for Businesses and You
Safe Harbor on Cyber Daily News: A Must Read on Cybersecurity to meet your needs.
Welcome to the and enjoy reading our amazing and comprehensive Safe Harbor on the
Cyber news alert RSS feeds for your reading and gain the latest insight
Collection of Cyber News Alert Feeds
Click title link below for rendering original Articles on:
Microsoft Buys Corp.com So Bad Guys Can’t In February, KrebsOnSecurity told the story of a private citizen auctioning off the dangerous domain corp.com for the starting price of $1.7 million. Domain experts called corp.com dangerous because years of testing have shown whoever wields it would have access to an unending stream of passwords, email and other sensitive data from hundreds of thousands…
‘War Dialing’ Tool Exposes Zoom’s Password ProblemsAs the Coronavirus pandemic continues to force people to work from home, countless companies are now holding daily meetings using videoconferencing services from Zoom. But without the protection of a password, there's a decent chance your next Zoom meeting could be "Zoom bombed" -- attended or disrupted by someone who doesn't belong. And according to…
Phish of GoDaddy Employee Jeopardized Escrow.com, Among OthersA spear-phishing attack this week hooked a customer service employee at GoDaddy.com, the world's largest domain name registrar, KrebsOnSecurity has learned. The incident gave the phisher the ability to view and modify key customer records, access that was used to briefly hijack domains for a half-dozen GoDaddy customers, including transaction brokering site escrow.com.
Annual Protest to ‘Fight Krebs’ Raises €150K+In 2018, KrebsOnSecurity unmasked the creators of Coinhive -- a now-defunct cryptocurrency mining service that was being massively abused by cybercriminals -- as the administrators of a popular German language image-hosting forum. In protest of that story, forum members donated hundreds of thousands of euros to nonprofits that combat cancer (Krebs means "cancer" in German).…
Travelex paid $2.3 Million ransom to restore after a ransomware attack Travelex reportedly paid a $2.3 million ransom to decrypt its files after being encrypted by the infamous Sodinokibi ransomware. The UK-based currency exchange Travelex currency exchange has been forced offline following a malware attack launched on New Year’s Eve. The London-based company, which operates more than 1,500 stores globally, suffered the attack on December 31, 2019,…
Google and Mozilla address serious flaws in Firefox and Chrome browsers Google and Mozilla released new versions of Chrome and Firefox browsers to addressed several high-severity vulnerabilities. Mozilla has released Firefox version 75 that includes six security patches for the desktop, and two patches targeting to address vulnerabilities in the Android app. “With today’s release, a number of improvements will help you search smarter, faster.” reads the…
Phishers prefer Tesla, top 3 malware strains in Coronavirus phishing campaigns Group-IB’s CERT-GIB analyzed hundreds of coronavirus-related phishing emails and discovered top malware strains in COVID-19 campaigns Group-IB’s Computer Emergency Response Team (CERT-GIB) analyzed hundreds of coronavirus-related phishing emails between February 13 and April 1, 2020. Spyware turned out to be the most common malware class hiding in fraudulent COVID-19 emails, with AgentTesla topping the list of phishers’ favorite strains. Group-IB researchers also discovered that coronavirus…
German foreign ministry limits the use of Zoom over security concerns The German foreign ministry has restricted the use of the video conferencing service Zoom due to concerns about security vulnerabilities recently discovered. During Coronavirus pandemic video conferencing services have become a precious instrument for the people that worked or studied from home. Zoom is one of the most popular video conferencing platforms, but recently privacy…
Less than 2% of all daily malspam are Coronavirus-themed attacks, Microsoft reports Microsoft shares new threat intelligence, the IT giant pointed out that malspam activities have not increased due to Coronavirus outbreak. In recent weeks, security firms and experts reported numerous Coronavirus-themed attacks, now Microsoft shares new threat intelligence on malicious activities during the pandemic. Despite threat actors are exploiting the current coronavirus pandemic to target users,…
Australian Signals Directorate (ASD) is hacking crooks behind Coronavirus-themed attacks The Australian government will use any means to crack down on cybercriminals exploiting the coronavirus outbreak, including hacking back. While the number of Coronavirus-themed attacks continues to increase, law enforcement agencies are spending a significant effort to detect and neutralize them. The Australian Signals Directorate (ASD) announced it will employ its offensive cyber capabilities against…
NASA warns of a significant increase in cyber attacks during Coronavirus outbreak This week, NASA sent out a memo to its personnel warning of a significant increase in the cyberattacks during the Coronavirus outbreak. NASA sent out a memo to its personnel warning of a significant increase in cyberattacks on the agency while its employees are in smart-working due to the Coronavirus outbreak. According to the Agency, roughly…
NSO CEO claims Facebook wanted NSO surveillance tool to spy on users A new shocking revelation comes from the disputed from NSO Group and Facebook, NSO CEO claims Facebook tried to buy an Apple spying software in 2017. Reading this post you could have a better idea of the value of your privacy. In October 2019, WhatsApp sued the Israeli surveillance firm NSO Group accusing it of carrying out malicious attacks…
Dark Nexus, a new IoT botnet that targets a broad range of devices Cybersecurity researchers discovered a new IoT botnet, tracked as Dark Nexux, that is used to launch distributed denial-of-service (DDoS) attacks. Dark Nexux is the name of a new emerging IoT botnet discovered by Bitdefender that is used to launch DDoS attacks. The botnet spreads using exploits and launching credential stuffing attacks against a broad range…
WhatsApp new policy limits forwarding of viral messages WhatsApp implements limitations on message forwarding to curb the spread of misinformation about the Coronavirus pandemic. WhatsApp implements a new policy on message forwarding to curb the spread of misinformation about the Coronavirus pandemic. With COVID19 outbreak the number of fake news that is spreading through social networks and instant messaging apps is growing exponentially.…
Maze ransomware gang discloses data from drug testing firm HMR The drug testing firm Hammersmith Medicines Research LTD (HMR), which performs live trials of Coronavirus vaccines, discloses a data breach. Hammersmith Medicines Research LTD (HMR), a London-based company that carries out clinical trials for new medicines and that is on standby to perform live trials of Coronavirus vaccines, has suffered a data breach. On March 21, the…
xHelper, the Unkillable Android malware that re-Installs after factory reset xHelper, a new strain of Android malware is able to re-install itself on infected devices even after victims delete it or force a factory reset. xHelper is a piece of malware that was first spotted in October 2019 by experts from security firm Symantec, it is a persistent Android dropper app that is able to reinstall itself even…
Coronavirus: Europol arrests man behind €6M face masks and hand sanitisers scam While crooks continue to exploit the Coronavirus outbreak, the Europol announced to have arrested a man involved in COVID19 business scams. The Europol announced the arrest of a 39-year old man that is allegedly involved in Business email scam (BEC) connected to the current Coronavirus outbreak. The man has been arrested early this week in…
Updated: Italian email provider Email.it hacked, data of 600k users available for sale A database stolen from the Italian email provider Email.it containing more than 600,000 users is available for sale on the dark web. The Italian email provider Email.it has been hacked, the company admitted the incident while a hacker group named NN Hacking Group is offering the stolen data for sale on the dark web. The group…
Interpol warns that crooks are increasingly targeting hospitals While the Coronavirus outbreak is threatening the world, the INTERPOL warns that crooks are increasingly targeting hospitals with ransomware. The INTERPOL (International Criminal Police Organisation) is warning of ransomware attacks against hospitals despite the currently ongoing Coronavirus outbreak. Attackers are targeting organizations in the healthcare industry via malspam campaigns using malicious attachments. The attachments used…
Over 3.5 Million iPhone & iPad Users Installed Malicious Fleeceware from Apple’s App Store More than 30 malicious fleeceware apps found in Apple’s official App Store. These apps are aimed to make financial frauds. Apple allows apps to offer a trial period and these app developers taking it as an advantage. If the users install the app and don’t cancel the subscription they use to charge an excessive amount.…
5 APT Hacker Groups Attack Linux Servers, Windows and Android Platform Using RAT’s For Past 10 Years Researchers uncovered a new cross-platform attack from 5 different APT groups that work for the Chinese Government targets the Linux servers, Windows and Android systems deployed in an organization around the globe using Remote Access Trojan’s, and the campaign remains undetected nearly a decade. Threat APT groups are comprised of civilian contractors working in the…
Zoom, Microsoft & NTT Data Leaders Share Work-from-Home Security Tips Tech leaders encourage organizations to maintain security awareness training and offer advice on how to protect their information.
New Version of Privacy and Anonymous Operating System Tails 4.5 Released with Fix for Security Issues Tails is a security-focused Debian based live operating system, no installation required. You can use the live operating system on any computer from a USB stick or a DVD. The operating system aimed to provide privacy and anonymity, all its communications are forced through the TOR network. It leaves no traces on the computer and…
“Asigra” Ranked Number One Cloud Backup Enabler for Managed Service Providers Leading cloud backup, recovery and restore software provider Asigra Inc., today announced that in a recent feature by Storage Newsletter, the company has ranked number one in a list of the Top 25 Cloud Backup Enablers. Storage Newsletter highlights the best cloud backup service providers and technology enablers in what has become recognized as the…
After Adopting COVID-19 Lures, Sophisticated Groups Target Remote Workers While coronavirus-themed emails and files have been used as a lure for weeks, attackers now are searching for ways to actively target VPNs and remote workers to take advantage of weaker security.
Researchers Fool Biometric Scanners with 3D-Printed Fingerprints Tests on the fingerprint scanners of Apple, Microsoft, and Samsung devices reveal it's possible to bypass authentication with a cheap 3D printer.
Why Threat Hunting with XDR Matters Extended detection response technology assumes a breach across all your endpoints, networks, SaaS applications, cloud infrastructure, and any network-addressable resource.
Unkillable Android XHelper Malware Reinstall Itself Again After Factory Reset The Android XHelper malware was first identified in October 2019, it is known for its persistent capabilities. Once it gets installed to the device, the malware remains active even after the user deletes it and restore the factory settings. Android XHelper Malware The malware distributed by threat actors as a popular cleaner and speed-up app…
Cybercriminals Hide Malware & Phishing Sites Under SSL Certificates More than half of the top 1 million websites use HTTPS, researchers report, but not all encrypted traffic is safe.
71% of Security Pros See Threats Jump Since COVID-19 Outbreak Phishing is the top threat, followed by websites offering false information about the pandemic, malware, and ransomware attacks.
9 Security Podcasts Worth Tuning In To Recommendations for podcasts discussing news, trends, guidance, and stories across the cybersecurity industry.
80% of Exchange Servers Still Unpatched to Critical Remote Code Execution Vulnerability Microsoft recently patched a remote code execution vulnerability with Microsoft Exchange Server that allows an attacker to use an Exchange user account to compromise the system completely. The bug resides in the Exchange Control Panel (ECP) component, which can be used to manage mailboxes, Distribution Groups, Contacts at the mailbox level and several other objects…
Facebook Secretly Tried to Buy Pegasus Spyware From NSO Group to Monitor Apple Users Activities & Access Data NSO Group CEO Shalev Hulio Claim that Facebook tried to buy a Pegasus Spyware to monitor better their users especially access to the Apple user’s data and their activities. Pegasus is a powerful commercial spyware developed by Israel based spyware maker NSO group, also known as Q cyber technologies. The company claimed that they sell…
Misconfigured Containers Again Targeted by Cryptominer MalwareAn attack group is searching for insecure containers exposing the Docker API and then installing a program that attempts to mine cryptocurrency. It's not the first time.
- Travelex paid $2.3 Million ransom to restore after a ransomware attack Travelex reportedly paid a $2.3 million ransom to decrypt its files after being encrypted by the infamous Sodinokibi ransomware. The UK-based currency exchange Travelex currency exchange has been forced offline following a malware attack launched on New Year’s Eve. The London-based company, which operates more than 1,500 stores globally, suffered the attack on December 31, 2019,…
- Google and Mozilla address serious flaws in Firefox and Chrome browsers Google and Mozilla released new versions of Chrome and Firefox browsers to addressed several high-severity vulnerabilities. Mozilla has released Firefox version 75 that includes six security patches for the desktop, and two patches targeting to address vulnerabilities in the Android app. “With today’s release, a number of improvements will help you search smarter, faster.” reads the…
- Phishers prefer Tesla, top 3 malware strains in Coronavirus phishing campaigns Group-IB’s CERT-GIB analyzed hundreds of coronavirus-related phishing emails and discovered top malware strains in COVID-19 campaigns Group-IB’s Computer Emergency Response Team (CERT-GIB) analyzed hundreds of coronavirus-related phishing emails between February 13 and April 1, 2020. Spyware turned out to be the most common malware class hiding in fraudulent COVID-19 emails, with AgentTesla topping the list of phishers’ favorite strains. Group-IB researchers also discovered that coronavirus…
- German foreign ministry limits the use of Zoom over security concerns The German foreign ministry has restricted the use of the video conferencing service Zoom due to concerns about security vulnerabilities recently discovered. During Coronavirus pandemic video conferencing services have become a precious instrument for the people that worked or studied from home. Zoom is one of the most popular video conferencing platforms, but recently privacy…
- Less than 2% of all daily malspam are Coronavirus-themed attacks, Microsoft reports Microsoft shares new threat intelligence, the IT giant pointed out that malspam activities have not increased due to Coronavirus outbreak. In recent weeks, security firms and experts reported numerous Coronavirus-themed attacks, now Microsoft shares new threat intelligence on malicious activities during the pandemic. Despite threat actors are exploiting the current coronavirus pandemic to target users,…
- Australian Signals Directorate (ASD) is hacking crooks behind Coronavirus-themed attacks The Australian government will use any means to crack down on cybercriminals exploiting the coronavirus outbreak, including hacking back. While the number of Coronavirus-themed attacks continues to increase, law enforcement agencies are spending a significant effort to detect and neutralize them. The Australian Signals Directorate (ASD) announced it will employ its offensive cyber capabilities against…
- NASA warns of a significant increase in cyber attacks during Coronavirus outbreak This week, NASA sent out a memo to its personnel warning of a significant increase in the cyberattacks during the Coronavirus outbreak. NASA sent out a memo to its personnel warning of a significant increase in cyberattacks on the agency while its employees are in smart-working due to the Coronavirus outbreak. According to the Agency, roughly…
- NSO CEO claims Facebook wanted NSO surveillance tool to spy on users A new shocking revelation comes from the disputed from NSO Group and Facebook, NSO CEO claims Facebook tried to buy an Apple spying software in 2017. Reading this post you could have a better idea of the value of your privacy. In October 2019, WhatsApp sued the Israeli surveillance firm NSO Group accusing it of carrying out malicious attacks…
- Dark Nexus, a new IoT botnet that targets a broad range of devices Cybersecurity researchers discovered a new IoT botnet, tracked as Dark Nexux, that is used to launch distributed denial-of-service (DDoS) attacks. Dark Nexux is the name of a new emerging IoT botnet discovered by Bitdefender that is used to launch DDoS attacks. The botnet spreads using exploits and launching credential stuffing attacks against a broad range…
- WhatsApp new policy limits forwarding of viral messages WhatsApp implements limitations on message forwarding to curb the spread of misinformation about the Coronavirus pandemic. WhatsApp implements a new policy on message forwarding to curb the spread of misinformation about the Coronavirus pandemic. With COVID19 outbreak the number of fake news that is spreading through social networks and instant messaging apps is growing exponentially.…
- Maze ransomware gang discloses data from drug testing firm HMR The drug testing firm Hammersmith Medicines Research LTD (HMR), which performs live trials of Coronavirus vaccines, discloses a data breach. Hammersmith Medicines Research LTD (HMR), a London-based company that carries out clinical trials for new medicines and that is on standby to perform live trials of Coronavirus vaccines, has suffered a data breach. On March 21, the…
- xHelper, the Unkillable Android malware that re-Installs after factory reset xHelper, a new strain of Android malware is able to re-install itself on infected devices even after victims delete it or force a factory reset. xHelper is a piece of malware that was first spotted in October 2019 by experts from security firm Symantec, it is a persistent Android dropper app that is able to reinstall itself even…
- Coronavirus: Europol arrests man behind €6M face masks and hand sanitisers scam While crooks continue to exploit the Coronavirus outbreak, the Europol announced to have arrested a man involved in COVID19 business scams. The Europol announced the arrest of a 39-year old man that is allegedly involved in Business email scam (BEC) connected to the current Coronavirus outbreak. The man has been arrested early this week in…
- Updated: Italian email provider Email.it hacked, data of 600k users available for sale A database stolen from the Italian email provider Email.it containing more than 600,000 users is available for sale on the dark web. The Italian email provider Email.it has been hacked, the company admitted the incident while a hacker group named NN Hacking Group is offering the stolen data for sale on the dark web. The group…
- Interpol warns that crooks are increasingly targeting hospitals While the Coronavirus outbreak is threatening the world, the INTERPOL warns that crooks are increasingly targeting hospitals with ransomware. The INTERPOL (International Criminal Police Organisation) is warning of ransomware attacks against hospitals despite the currently ongoing Coronavirus outbreak. Attackers are targeting organizations in the healthcare industry via malspam campaigns using malicious attachments. The attachments used…
Safe Harbor on Cyber is a ‘safe harbor’ blog site on cyber security for families and small businesses with news on cyber threats, risk, data breach, identity thefts, ransomware, cryptocurrency, and vulnerabilities items.
This website offers valuable information and cyber threat incident alerts to protect, prevent, mitigate, respond, recover, and learn about Cybersecurity threats to your business and family. We provide
- Curated Cyber Security Information and News Feeds and Articles on Targeted Alerting
- Hints and Best Practices
- How To’s and DIYs
- Secure, Trusted Collaboration
- Cyber Threat and Defense News
- Cyber Resource Links for further learning experiences.
So that we the greater community to be better protected for you, your family, and business.
Under CyberWisdom, we deliver value curated new commentaties for your awareness in prevention and protection in cybersecurity, identity thefts, and cyber threats
:
- A consolidated, edited view of the latest cyber developments in order to help you perform your professional responsibilities (in the form of personalized dashboards and alerts).
- Valuable, unique physical + logical security advice, trends, and incidents.
- A rich library of personal cybersecurity best practices. Open source data feeds top cyber blogs and news.
- Relevant information feeds from US Federal agencies, leading security vendors and authentic cybersecurity experts.
- The ability to automatically report critical cyber incidents to the right corporate groups or government agency.
- Ability to integrate with corporate compliance and governance initiatives to help ensure incidents are appropriately managed and documented.
- Provide news feed commentaries to our sister sites cyberexpertize and wetalkeng.
- And much, much more…
Like this:
Like Loading...