Daily Cyber Threats for Businesses and You
Safe Harbor on Cyber Daily News: A Must Read on Cybersecurity to meet your needs.
Welcome to the and enjoy reading our amazing and comprehensive Safe Harbor on the
Cyber news alert RSS feeds for your reading and gain the latest insight
Collection of Cyber News Alert Feeds
Click title link below for rendering original Articles on:
DDoS-Guard To Forfeit Internet Space Occupied by Parler Parler, the beleaguered social network advertised as a "free speech" alternative to Facebook and Twitter, has had a tough month. Apple and Google removed the Parler app from its stores, and Amazon blocked the platform from using its hosting services. Parler has since found a home in DDoS-Guard, a Russian digital infrastructure company. But now…
New Charges Derail COVID Release for Hacker Who Aided ISIS A hacker serving a 20-year sentence for stealing personal data on 1,300 U.S. military and government employees and giving it to an Islamic State hacker group in 2015 has been charged once again with fraud and identity theft. The new charges have derailed plans to deport him under compassionate release because of the COVID-19 pandemic.
Joker’s Stash Carding Market to Call it QuitsJoker's Stash, by some accounts the largest underground shop for selling stolen credit card and identity data, says it's closing up shop effective mid-February 2021. The announcement came on the heels of a turbulent year for the major cybercrime store, and just weeks after U.S. and European authorities seized a number of its servers.
Microsoft Patch Tuesday, January 2021 EditionMicrosoft today released updates to plug more than 80 security holes in its Windows operating systems and other software, including one that is actively being exploited and another which was disclosed prior to today. Ten of the flaws earned Microsoft's most-dire "critical" rating, meaning they could be exploited by malware or miscreants to seize remote…
SolarWinds: What Hit Us Could Hit OthersNew research into the malware that set the stage for the megabreach at IT vendor SolarWinds shows the perpetrators spent months inside the company's software development labs honing their attack before inserting malicious code into updates that SolarWinds then shipped to thousands of customers. More worrisome, the research suggests the insidious methods used by the…
Ubiquiti: Change Your Password, Enable 2FAUbiquiti, a major vendor of cloud-enabled Internet of Things (IoT) devices such as routers, network video recorders, security cameras and access control systems, is urging customers to change their passwords and enable multi-factor authentication. The company says an incident at a third-party cloud provider may have exposed customer account information and credentials used to remotely…
Dovecat crypto-miner is targeting QNAP NAS devices QNAP is warning customers of a new piece of malware dubbed Dovecat that is targeting NAS devices to mine cryptocurrency. Taiwanese vendor QNAP has published a security advisory to warn customers of a new piece of malware named Dovecat that is targeting NAS devices. The malware was designed to abuse NAS resources and mine cryptocurrency. The malware…
Passwords stolen via phishing campaign available through Google search Bad ops of operators of a phishing campaign exposed credentials stolen in attacks and made them publicly available through Google queries. Check Point Research along with experts from cybersecurity firm Otorio shared details on their investigation into a large-scale phishing campaign that targeted thousands of global organizations. The campaign has been active since August, the attackers…
Experts warn of scanning activity for critical SAP SolMan flaw after the release of exploit Experts warn of automated scanning activity for servers affected by a critical SAP SolMan flaw after the release of an exploit code. Experts warn of an automated scanning activity for servers affected by vulnerabilities in SAP software, attackers started probing the systems after the release of an exploit for the critical CVE-2020-6207 flaw in SAP Solution Manager…
SolarWinds Attack: Microsoft sheds lights into Solorigate second-stage activation Microsoft’s report provides details of the entire SolarWinds attack chain with a deep dive in the second-stage activation of malware and tools. Microsoft published a new report that includes additional details of the SolarWinds supply chain attack. The new analysis shad lights on the handover from the Solorigate DLL backdoor to the Cobalt Strike loader.…
Cisco fixed multiple flaws in Cisco SD-WAN products and Smart Software Manager Satellite Web UI Cisco fixed multiple flaws in Cisco SD-WAN products that could allow an unauthenticated, remote attacker to execute attacks against its devices. Cisco released security updates to address multiple flaws in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute attacks against vulnerable devices. These vulnerabilities impact devices running the following Cisco SD-WAN Software: IOS XE SD-WAN…
Logic bugs found in popular apps, including Signal and FB Messenger Flaws in popular messaging apps, such as Signal and FB Messenger allowed to force a target device to transmit audio to an attacker device. Google Project Zero security researcher Natalie Silvanovich found multiple flaws in popular video conferencing apps such as Signal and FB Messenger, that allowed to force a target device to transmit audio…
Livecoin halted operations after the December attack The Russian cryptocurrency exchange Livecoin has announced it is terminating its operation following the December cyberattack. The Russian cryptocurrency exchange was hacked on Christmas Eve, it published a message on its website warning customers to stop using its services. “Dear clients, we ask you to stop using our service in all meanings: don’t deposit funds,…
FireEye releases an auditing tool to detect SolarWinds hackers’ activity Cybersecurity firm FireEye has released a report that sheds the light on the SolarWinds attack and the way hackers breached its networks. Cybersecurity firm FireEye has released a report that sheds the light on the SolarWinds attack and the way hackers breached its networks. The experts explained how the UNC2452 and other threat actors breached…
Malwarebytes ‘s email systems hacked by SolarWinds attackers Cyber security firm Malwarebytes announced that threat actor behind the SolarWinds attack also breached its network last year. Malwarebytes revealed today that SolarWinds hackers also breached its systems and gained access to its email. Malwarebytes joins the club of security firms that were hit by Solarwinds attackers, after FireEye, Microsoft, and CrowdStrike. The intrusion took…
Raindrop, a fourth malware employed in SolarWinds attacks The threat actors behind the SolarWinds attack used malware dubbed Raindrop for lateral movement and deploying additional payloads. Security experts from Symantec revealed that threat actors behind the SolarWinds supply chain attack leveraged a malware named Raindrop for lateral movement and deploying additional payloads. Raindrop is the fourth malware that was discovered investigating the SolarWinds…
FreakOut botnet target 3 recent flaws to compromise Linux devices Security researchers uncovered a series of attacks conducted by the FreakOut botnet that leveraged recently discovered vulnerabilities. Security researchers from Check Point have uncovered a series of attacks associated with the FreakOut botnet that is targeting multiple unpatched flaws in applications running on top of Linux systems. The botnet appeared in the threat landscape in…
Vishing attacks conducted to steal corporate accounts, FBI warns The Federal Bureau of Investigation (FBI) has issued a notification warning of ongoing vishing attacks attempting to steal corporate accounts. The Federal Bureau of Investigation (FBI) published a Private Industry Notification (PIN) that warns of ongoing vishing attacks aimed at stealing corporate accounts and credentials from US and international-based employees. Vishing (also known as voice phishing) is a social engineering…
OpenWRT forum hacked, intruders stole user dataThe OpenWRT forum, the community behind the open-source project for embedded operating systems based on Linux, disclosed a data breach. OpenWrt is an open-source project for embedded operating systems based on Linux, primarily used on embedded devices to route network traffic. The main components are Linux, util-linux, musl, and BusyBox. All components have been optimized…
500K+ records of C-level people from Capital Economics leaked onlineExperts from Cyble recently found a leak of 500K+ records of C-level people from Capital Economics on a Russian-speaking forum. During a routine Darkweb monitoring, researchers from Cyble found a leak of 500K+ records of C-level people from Capital Economics on a Russian-speaking forum. CapitalEconomics.com is one of the leading independent economic research companies in the world that provides macroeconomic, financial market and sectoral forecasts and consultancy.…
Apple paid a $50,000 bounty to two bug bounty hunters for hacking its hostsA duo of white hat hackers claims to have earned $50,000 from Apple for reporting serious flaws that allowed them to company’s servers. The Indian white hat hackers Harsh Jaiswal and Rahul Maini claim to have discovered multiple flaws that allowed them to access Apple servers. The duo started focusing on Apple’s infrastructure in an…
Attackers Leave Stolen Credentials Searchable on Google Operators behind a global phishing campaign inadvertently left thousands of stolen credentials accessible via Google Search.
7 Steps to Secure a WordPress Site Many companies operate under the assumption that their WordPress sites are secure -- and that couldn't be anything further from the truth.
FreakOut Malware that Exploits Critical Vulnerabilities in Linux Devices Check Point Research (CPR) encountered that ongoing attacks involve a new malware variant, called ‘FreakOut.’ The purpose behind these attacks is to create an IRC botnet. An IRC botnet is a collection of machines infected with malware that can be controlled remotely via an IRC channel to execute malicious commands. It is used for malicious…
How to Create an Effective Cybersecurity Solution Stack that can Secure Banking and Financial Operations in These Transformative Times Banking and financial institutions sit on large amounts of personal identification information and financial portfolios of their customers. This makes them over 300 times more vulnerable to cyberattacks. With the increased digitalization of financial institutions, an effective cybersecurity solution is one of the most contextual pieces in the security jigsaw of financial services. Information breaches in banks lead to…
New Malware Discovered in SolarWinds Attack that Used 7-Zip Code to Hide An additional piece of malware used in the SolarWinds attacks has been uncovered by researchers at Symantec, a division of Broadcom. Raindrop (Backdoor.Raindrop) is a loader that delivers a payload of Cobalt Strike. Raindrop, though similar to Teardrop has some very significant differences. Teardrop was delivered by the Sunburst backdoor, whereas Raindrop is used for…
Livecoin has Announced Shutdown of Services after Being Hacked Livecoin Exchange announces closure following an alleged breach in December. The trading platform declares it will close and repay users any remaining funds. Livecoin servers were compromised last month, and the exchange lost control over its infrastructure. The attacker first modified the crypto exchange rates, inflating them to unrealistic figures. The attack stands out because…
Microsoft to Launch 'Enforcement Mode' for Zerologon Flaw Enforcement mode for the Netlogon Domain Controller will be enabled by default with the Feb. 9 security update.
SolarWinds Attack Underscores 'New Dimension' in Cyber-Espionage Tactics Meanwhile, Malwarebytes is the latest victim, Symantec discovers a fourth piece of malware used in the massive attack campaign, and FireEye Mandiant releases a free tool to help spot signs of the attack.
Microsoft will Enable Domain Controller Enforcement Mode to Address Zerologon Flaw In a post on 14th January 2021, Microsoft’s Aanchal Gupta, VP Engineering, published a post alerting network admins that an upcoming Windows Security Update will ensure that the Domain Controller enforcement mode will be enabled by default. Vulnerability that was found It was earlier identified that a malicious attacker by using the Netlogon Remote Protocol…
Facebook Sued two Chrome Developers for Scraping Profile Data Facebook Inc. and Facebook Ireland have filed a legal action in Portugal against two people for scraping user-profiles and other data from Facebook’s website, in violation of its Terms of Service and Portugal’s Database Protection Law. Malicious Chrome Extensions Target Facebook Users The defendants developed browser extensions and made them available on the Chrome store…
WhatsApp Delays New Privacy Policy Update by Three MonthsLast week an announcement by WhatsApp caused an outcry among people. Whatsapp had announced that it would be updating its policies from February 8th and people would have no choice but to accept it, else relinquish their right to use the instant messaging service. Several tech moguls, including Tesla’s CEO Elon Musk, Twitter’s CEO Jack…
Hackers Using 4 Zero-day Vulnerabilities to Attack Windows and Android Devices RemotelyDuring a regular investigation, the security experts at Google have detected a major hacking campaign in early 2020. The experts have uncovered a series of complicated attacks by using the zero-day flaws upon Windows and Android platforms. Google announced a six-part report recently and detailed the flaws, and they have also mentioned all the attacks…
All You Need to Know About Continuous Security ValidationTraditional security validation is a complex task that involves a series of tests to determine if controls are working as they are meant to do. It is a meticulous process that can serve the intended purposes. However, at the rate cyber attacks are increasing and evolving, organizations cannot afford to settle with what is traditional…
Most Important Web Application Penetration Testing Tools & Resources for Hackers and Security ProfessionalsWeb Application Pentesting Tools are more often used by security industries to test the vulnerabilities of web-based applications. Here you can find the Comprehensive Web Application Pentesting ToolsWeb Application Penetration Testing list that covers Performing Penetration testing Operation in all the Corporate Environments. You can learn best Master level Web Hacking and Penetration Testing Complete…
NSA Appoints Rob Joyce as Cyber DirectorJoyce has long worked in US cybersecurity leadership, most recently serving as the NSA's top representative in the UK.
- Dovecat crypto-miner is targeting QNAP NAS devices QNAP is warning customers of a new piece of malware dubbed Dovecat that is targeting NAS devices to mine cryptocurrency. Taiwanese vendor QNAP has published a security advisory to warn customers of a new piece of malware named Dovecat that is targeting NAS devices. The malware was designed to abuse NAS resources and mine cryptocurrency. The malware…
- Passwords stolen via phishing campaign available through Google search Bad ops of operators of a phishing campaign exposed credentials stolen in attacks and made them publicly available through Google queries. Check Point Research along with experts from cybersecurity firm Otorio shared details on their investigation into a large-scale phishing campaign that targeted thousands of global organizations. The campaign has been active since August, the attackers…
- Experts warn of scanning activity for critical SAP SolMan flaw after the release of exploit Experts warn of automated scanning activity for servers affected by a critical SAP SolMan flaw after the release of an exploit code. Experts warn of an automated scanning activity for servers affected by vulnerabilities in SAP software, attackers started probing the systems after the release of an exploit for the critical CVE-2020-6207 flaw in SAP Solution Manager…
- SolarWinds Attack: Microsoft sheds lights into Solorigate second-stage activation Microsoft’s report provides details of the entire SolarWinds attack chain with a deep dive in the second-stage activation of malware and tools. Microsoft published a new report that includes additional details of the SolarWinds supply chain attack. The new analysis shad lights on the handover from the Solorigate DLL backdoor to the Cobalt Strike loader.…
- Cisco fixed multiple flaws in Cisco SD-WAN products and Smart Software Manager Satellite Web UI Cisco fixed multiple flaws in Cisco SD-WAN products that could allow an unauthenticated, remote attacker to execute attacks against its devices. Cisco released security updates to address multiple flaws in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute attacks against vulnerable devices. These vulnerabilities impact devices running the following Cisco SD-WAN Software: IOS XE SD-WAN…
- Logic bugs found in popular apps, including Signal and FB Messenger Flaws in popular messaging apps, such as Signal and FB Messenger allowed to force a target device to transmit audio to an attacker device. Google Project Zero security researcher Natalie Silvanovich found multiple flaws in popular video conferencing apps such as Signal and FB Messenger, that allowed to force a target device to transmit audio…
- Livecoin halted operations after the December attack The Russian cryptocurrency exchange Livecoin has announced it is terminating its operation following the December cyberattack. The Russian cryptocurrency exchange was hacked on Christmas Eve, it published a message on its website warning customers to stop using its services. “Dear clients, we ask you to stop using our service in all meanings: don’t deposit funds,…
- FireEye releases an auditing tool to detect SolarWinds hackers’ activity Cybersecurity firm FireEye has released a report that sheds the light on the SolarWinds attack and the way hackers breached its networks. Cybersecurity firm FireEye has released a report that sheds the light on the SolarWinds attack and the way hackers breached its networks. The experts explained how the UNC2452 and other threat actors breached…
- Malwarebytes ‘s email systems hacked by SolarWinds attackers Cyber security firm Malwarebytes announced that threat actor behind the SolarWinds attack also breached its network last year. Malwarebytes revealed today that SolarWinds hackers also breached its systems and gained access to its email. Malwarebytes joins the club of security firms that were hit by Solarwinds attackers, after FireEye, Microsoft, and CrowdStrike. The intrusion took…
- Raindrop, a fourth malware employed in SolarWinds attacks The threat actors behind the SolarWinds attack used malware dubbed Raindrop for lateral movement and deploying additional payloads. Security experts from Symantec revealed that threat actors behind the SolarWinds supply chain attack leveraged a malware named Raindrop for lateral movement and deploying additional payloads. Raindrop is the fourth malware that was discovered investigating the SolarWinds…
- FreakOut botnet target 3 recent flaws to compromise Linux devices Security researchers uncovered a series of attacks conducted by the FreakOut botnet that leveraged recently discovered vulnerabilities. Security researchers from Check Point have uncovered a series of attacks associated with the FreakOut botnet that is targeting multiple unpatched flaws in applications running on top of Linux systems. The botnet appeared in the threat landscape in…
- Vishing attacks conducted to steal corporate accounts, FBI warns The Federal Bureau of Investigation (FBI) has issued a notification warning of ongoing vishing attacks attempting to steal corporate accounts. The Federal Bureau of Investigation (FBI) published a Private Industry Notification (PIN) that warns of ongoing vishing attacks aimed at stealing corporate accounts and credentials from US and international-based employees. Vishing (also known as voice phishing) is a social engineering…
- OpenWRT forum hacked, intruders stole user dataThe OpenWRT forum, the community behind the open-source project for embedded operating systems based on Linux, disclosed a data breach. OpenWrt is an open-source project for embedded operating systems based on Linux, primarily used on embedded devices to route network traffic. The main components are Linux, util-linux, musl, and BusyBox. All components have been optimized…
- 500K+ records of C-level people from Capital Economics leaked onlineExperts from Cyble recently found a leak of 500K+ records of C-level people from Capital Economics on a Russian-speaking forum. During a routine Darkweb monitoring, researchers from Cyble found a leak of 500K+ records of C-level people from Capital Economics on a Russian-speaking forum. CapitalEconomics.com is one of the leading independent economic research companies in the world that provides macroeconomic, financial market and sectoral forecasts and consultancy.…
- Apple paid a $50,000 bounty to two bug bounty hunters for hacking its hostsA duo of white hat hackers claims to have earned $50,000 from Apple for reporting serious flaws that allowed them to company’s servers. The Indian white hat hackers Harsh Jaiswal and Rahul Maini claim to have discovered multiple flaws that allowed them to access Apple servers. The duo started focusing on Apple’s infrastructure in an…
Safe Harbor on Cyber is a ‘safe harbor’ blog site on cyber security for families and small businesses with news on cyber threats, risk, data breach, identity thefts, ransomware, cryptocurrency, and vulnerabilities items.
This website offers valuable information and cyber threat incident alerts to protect, prevent, mitigate, respond, recover, and learn about Cybersecurity threats to your business and family. We provide
- Curated Cyber Security Information and News Feeds and Articles on Targeted Alerting
- Hints and Best Practices
- How To’s and DIYs
- Secure, Trusted Collaboration
- Cyber Threat and Defense News
- Cyber Resource Links for further learning experiences.
So that we the greater community to be better protected for you, your family, and business.
Under CyberWisdom, we deliver value curated new commentaties for your awareness in prevention and protection in cybersecurity, identity thefts, and cyber threats
:
- A consolidated, edited view of the latest cyber developments in order to help you perform your professional responsibilities (in the form of personalized dashboards and alerts).
- Valuable, unique physical + logical security advice, trends, and incidents.
- A rich library of personal cybersecurity best practices. Open source data feeds top cyber blogs and news.
- Relevant information feeds from US Federal agencies, leading security vendors and authentic cybersecurity experts.
- The ability to automatically report critical cyber incidents to the right corporate groups or government agency.
- Ability to integrate with corporate compliance and governance initiatives to help ensure incidents are appropriately managed and documented.
- Provide news feed commentaries to our sister sites cyberexpertize and wetalkeng.
- And much, much more…
Like this:
Like Loading...