Collaborate Disseminate
US Cyber Command has issued an alert about an unnamed foreign country’s attempt to spread malware through the exploitation of a vulnerability in Microsoft Outlook, as concerns are raised of a rise in an Iranian-backed hacking group’s activi… Continue reading US Cyber Command warns nation-state hackers are exploiting old Microsoft Outlook bug. Make sure you’re patched!
The Department of Homeland Security is warning that U.S. agencies are being targeted by Iranian-backed cyberattacks with destructive wiper malware. Continue reading Iran Targeting U.S. With Destructive Wipers, Warns DHS
Experts at Infosecurity Europe shed light on how IT and operational technology teams can better collaborate as industrial IoT takes hold. Continue reading Infosecurity Europe: Easing the Clash Between IT and OT
Shamoon is back… one of the most destructive malware families that caused damage to Saudi Arabia’s largest oil producer in 2012 and this time it has targeted energy sector organizations primarily operating in the Middle East.
Earlier this week, Italia… Continue reading New Shamoon Malware Variant Targets Italian Oil and Gas Company
Hackers hit the IT infrastructure of an Italian oil and gas company with a new version of a destructive malware program called Shamoon. Shamoon, also known as Disttrack, was first used in 2012 in attacks against Saudi Aramco, Saudi Arabia’s nati… Continue reading Destructive Shamoon Malware Hits Italian Oil and Gas Firm
Researchers are trying to make sense of an apparent reprisal of Shamoon, a piece of malware known for high profile attacks targeting oil and gas computer systems. Saipem, an Italian oil services company, confirmed Wednesday it was infected with a variant of the notorious virus, resulting in an outage. The attack shut down more than 300 of the company’s servers and 100 computers, Reuters reported, and Saipem says it’s working to restore operations affected by the attack from backups. Shamoon is best known for an attack in 2012 on Saudi Arabia-owned oil company Saudi Aramco, which experts have described as one of the most destructive cyberattacks in history. Saudi Aramco is Saipem’s largest customer, according to Reuters. Researchers have blamed Iranian hackers for the 2012 attack on Aramco. “The attack led to the cancellation of data and infrastructures, typical effects of malware,” the company said in a statement. “The restoration activities, in a gradual and […]
The post Shamoon resurfaces, targeting Italian oil company appeared first on CyberScoop.
Continue reading Shamoon resurfaces, targeting Italian oil company
One of the most destructive malware families ever seen is back, and researchers think its authors are gearing up to again take aim at the Middle East. Continue reading Shamoon Reappears, Poised for a New Wiper Attack
The actors behind this kind of code, whether they’re bent on sending a political message or simply wanting to cover their tracks after data exfiltration, have adopted various techniques to carry out those activities. Continue reading Secrets of the Wiper: Inside the World’s Most Destructive Malware
A new attack method takes advantage a feature in Intel’s Skylake microprocessor allowing for post-intrusion application hooking and stealth manipulation of applications. Continue reading BoundHook Attack Exploits Intel Skylake MPX Feature
New clues surface on Shamoon’s ability steal credentials ahead of attacks. Continue reading Shamoon Collaborator Greenbug Adopts New Communication Tool