Michael Mimoso – Page 26 – WindowsTechs.com

Malware Scanning Services Containers for Sensitive Business Information

Posted on April 5, 2017 by Michael Mimoso

At the Kaspersky Lab Security Analyst Summit, one researcher shared how he was able to find corporate emails, confidential business plans and classified FBI flash alerts. Continue reading Malware Scanning Services Containers for Sensitive Business Information→

Lessons From Top-to-Bottom Compromise of Brazilian Bank

Posted on April 4, 2017 by Michael Mimoso

Hackers pulled off a stunning compromise of a Brazilian bank’s operations, gaining control of each of the bank’s 36 domains, corporate email and DNS. Continue reading Lessons From Top-to-Bottom Compromise of Brazilian Bank→

Lazarus APT Spinoff Linked to Banking Hacks

Posted on April 3, 2017 by Michael Mimoso

The Lazarus Group has splintered off a group whose mission is to attack banks and steal money in order to fund its operations. Continue reading Lazarus APT Spinoff Linked to Banking Hacks→

Lazarus APT Spinoff Linked to Banking Hacks

Posted on April 3, 2017 by Michael Mimoso

The Lazarus Group has splintered off a group whose mission is to attack banks and steal money in order to fund its operations. Continue reading Lazarus APT Spinoff Linked to Banking Hacks→

Memory Corruption Mitigations Doing Their Job

Posted on April 3, 2017 by Michael Mimoso

At the Security Analyst Summit, Mark Dowd described how memory corruption mitigations are successfully driving up exploit development costs. Continue reading Memory Corruption Mitigations Doing Their Job→

Russian-Speaking Turla Joins APT Elite

Posted on April 3, 2017 by Michael Mimoso

Researchers may have found a link between Moonlight Maze of the late ’90s and the Turla APT, which would elevate Turla to the ranks of the Equation Group as an elite nation-state attacker. Continue reading Russian-Speaking Turla Joins APT Elite→

Github Repository Owners Targeted by Data-Stealing Malware

Posted on March 30, 2017 by Michael Mimoso

Owners of Github repositories were the focus of a phishing campaign spreading the Dimnie information-stealing malware. Continue reading Github Repository Owners Targeted by Data-Stealing Malware→

Publicly Attacked Microsoft IIS Zero Day Unlikely to be Patched

Posted on March 29, 2017 by Michael Mimoso

Researchers have disclosed a zero-day vulnerability and proof-of-concept exploit for a flaw in Microsoft IIS 6.0. The zero-day has been under attack since last July, the researchers said. Continue reading Publicly Attacked Microsoft IIS Zero Day Unlikely to be Patched→

Workarounds Available for Flaws in Siemens RUGGEDCOM Gear

Posted on March 29, 2017 by Michael Mimoso

Five vulnerabilities exist in Siemens RUGGEDCOM gear; the vendor has made a number of workarounds available, but it’s unknown whether patches will be made available. Continue reading Workarounds Available for Flaws in Siemens RUGGEDCOM Gear→

‘Anonymous’ FTP Servers Leaving Healthcare Data Exposed

Posted on March 29, 2017 by Michael Mimoso

The FBI warned medical and dental offices running FTP servers in anonymous mode that criminals are targeting these installations and stealing personal healthcare information. Continue reading ‘Anonymous’ FTP Servers Leaving Healthcare Data Exposed→