Protecting Your Cyber World With Real World Solutions

GoScanSSH Malware Targets Linux Servers

This entry was posted in SecurityNews on March 28, 2018 by

A recently discovered malware family written using the Golang (Go) programming language is targeting Linux servers and using a different binary for each attack, Talos warns.

Dubbed GoScanSSH because it compromises SSH servers exposed to the Internet, the malware’s command and control (C&C) infrastructure leverages the Tor2Web proxy service to prevent tracking and takedowns.

The malware operators, Talos …read more

Via:: Security Week

Trending
Current
CSO
Did you Know?

More MOVEit mitigations: new patches published for further protection

Good news... more patches, this time available proactively [...]

Thoughts on scheduled password changes (don’t call them rotations!)

Does swapping your password regularly make it a better password? [...]

S3 Ep138: I like to MOVEit, MOVEit

Backdoors, exploits, and Little Bobby Tables. Listen now! (Full transcript available...) [...]

Firefox 114 is out: No 0-days, but one fascinating “teachable moment” bug

With the right (or wrong, if you're on the right side of the fence) timing... [...]

Chrome and Edge zero-day: “This exploit is in the wild”, so check your versions now

Chrome and Edge 0-days patched. [...]

MOVEit zero-day exploit used by data breach gangs: The how, the why, and what to do…

Little Bobby Tables is back! [...]

Student Loan Breach Exposes 2.5M Records

2.5 million people were affected, in a breach that could spell more trouble down the line. [...]

Watering Hole Attacks Push ScanBox Keylogger

Researchers uncover a watering hole attack likely carried out by APT TA423, which attempts to plant the ScanBox JavaScript-based reconnaissance tool. [...]

Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms

Over 130 companies tangled in sprawling phishing campaign that spoofed a multi-factor authentication system. [...]

Ransomware Attacks are on the Rise

Lockbit is by far this summer’s most prolific ransomware group, trailed by two offshoots of the Conti group. [...]

Cybercriminals Are Selling Access to Chinese Surveillance Cameras

Tens of thousands of cameras have failed to patch a critical, 11-month-old CVE, leaving thousands of organizations exposed. [...]

Twitter Whistleblower Complaint: The TL;DR Version

Twitter is blasted for security and privacy lapses by the company’s former head of security who alleges the social media giant’s actions amount to a national security risk. [...]

Google launches Secure AI Framework to help secure AI technology

Google has announced the launch of the Secure AI Framework (SAIF), a conceptual framework for securing AI systems. Google, owner of the generative AI chatbot Bard and parent company of AI research lab DeepMind, said a framework across the public and private sectors is essential for making sure that responsible actors safeguard the technology that supports AI advancements so that when AI models are implemented, they’re secure-by-default. Its new framework concept is an important step in that direction, the tech giant claimed.The SAIF is designed to help mitigate risks specific to AI systems like model theft, poisoning of training data,… [...]

Cybersecurity startups to watch for in 2023

The problems cybersecurity startups attempt to solve are often a bit ahead of the mainstream. They can move faster than most established companies to fill gaps or emerging needs. Startups can often innovative faster because they are unfettered by an installed base.The downside, of course, is that startups often lack resources and maturity. It’s a risk for a company to commit to a startup’s product or platform, and it requires a different kind of customer/vendor relationship. The rewards, however, can be huge if it gives that company a competitive advantage or reduces stress on security resources.To read this article in full,… [...]

ACT government falls victim to Barracuda’s ESG vulnerability

The Australian Capital Territory government is one of the victims of a vulnerability found in Barracuda’s email security gateway (ESG). In a press conference on 8 June, ACT government chief digital officer Bettina Konti said there is a likelihood that some personal information is involved but the harms assessment needs to completed for that to be clear.Barracuda had first identified the CVE-2023-2838 vulnerability on 19 May issuing a patch worldwide on 20 May followed by a second patch on 21 May. A few days later, on 30 May, the vendor revealed the earliest identified evidence of exploitation took place in… [...]

North Korean APT group targets email credentials in social engineering campaign

Researchers warn of a social engineering campaign by the North Korean APT group known as Kimsuky that attempts to steal email credentials and plant malware. The campaign, focused on experts in North Korean affairs, is part of this group's larger intelligence gathering operations that target research centers, think tanks, academic institutions, and news outlets globally."Kimsuky, a suspected North Korean advanced persistent threat (APT) group whose activities align with the interests of the North Korean government, is known for its global targeting of organizations and individuals," researchers from security firm SentinelOne said in a report. "Operating since at least 2012, the… [...]

BrandPost: Make your employees your best asset in combating cybercrime

As cyber risks intensify and the threat landscape grows, there's no better time to reassess your organization's security posture. Having the right people, processes, and technologies in place is a vital component of any effective risk management strategy, including employees who play a crucial role in helping to secure the business.While attackers are constantly finding new, creative ways to infiltrate organizations, the reality is that it's typically employees—not just your security team—who are on the front lines when it comes to halting these cybercriminals in their tracks. Your workforce has the potential to be one of your best defenses against… [...]

BrandPost: Finding harmony with innovation, ChatGPT, and security

By now, you are familiar with ChatGPT. It became one of the fastest-growing consumer applications the world had seen just two months after its release.Due to the attention, every organization has drawn a different conclusion concerning the use of large language models in advanced chatbots–both the quotidian use of the technology at work and even the larger societal questions they raise.For many organizations, these tools have generated considerable interest as they look to harness them to spark productivity. However, it has also drawn the attention of the authorities, given how it collects and produces data. Apart from data compliance questions… [...]

They Plugged GPT-4 Into Minecraft—and Unearthed New Potential for AI

They Plugged GPT-4 Into Minecraft—and Unearthed New Potential for AI l33tdawg Wed, 06/07/2023 - 01:38 [...]

Inside 4chan’s top-secret moderation machine

Inside 4chan’s top-secret moderation machine l33tdawg Wed, 06/07/2023 - 01:38 [...]

SEC sues Coinbase, continues major crackdown on cryptocurrency exchanges

SEC sues Coinbase, continues major crackdown on cryptocurrency exchanges l33tdawg Wed, 06/07/2023 - 01:38 [...]

Hands-on with Apple Vision Pro: This is not a VR headset

Hands-on with Apple Vision Pro: This is not a VR headset l33tdawg Wed, 06/07/2023 - 01:38 [...]

New DarkBert AI was trained using dark web data from hackers and cybercriminals

New DarkBert AI was trained using dark web data from hackers and cybercriminals l33tdawg Wed, 05/17/2023 - 22:59 [...]

Belkin smart plug plagued by security flaw, with no fix in sight

Belkin smart plug plagued by security flaw, with no fix in sight l33tdawg Wed, 05/17/2023 - 22:59 [...]