Tag: vulnerabilities

Focusing on WannaCry, the ransomware delivered in last week's attacks, misses the point.

WannaCry: What’s in a name? Confusion | Digital Guardian

In-brief: focusing on WannaCry, the ransomware delivered in last week’s attacks, misses the point. Organizations weren’t done in by the shoddy malware, but by a class-A offensive cyber weapon known as EternalBlue. Editor’s Note: this blog is cross posted from Digital Guardian’s Data Insider blog.  

Recorded Future timeline of APT3 victims.

APT Inc.: Research Finds Ties Between Chinese Security Firm and Advanced Threat Group

In-brief: The hacking group known as APT 3 appears to be a commercial outfit working on behalf of the Chinese Ministry of State Security (MSS), the firm Recorded Future reported on Wednesday.

A visualization of infections linked to the WannaCry ransomware. (Image courtesy of MalwareTech.com)

Updated: Fatal Flaw Slows WannaCry Ransomware Spread, but Threats Remain

In-brief: A fatal flaw in its design slowed the spread of WannaCry, a virulent ransomware program that has infected more than 100,000 organizations and individuals globally.

Trend Micro said a newly discovered botnet phones home to servers in Iran and spreads using a known vulnerability in software run by thousands of IP camera models. (Image courtesy of Trend Micro.)

Persirai Botnet: 120,000 Hacked Cameras Phoning Home To Iran

In-brief: a botnet of 120,000 cameras that takes its orders from servers based in Iran uses a long-ago disclosed security vulnerability in camera software to spread. The flaw affects over 1,000 different models of cameras, Trend Micro reports. 

Trend said attackers could remotely or locally tamper with control parameters on industrial robots, which lack security features found in modern IT systems.

Report warns of Robot Hacks, Tampering

In-brief: Common industrial robots are susceptible to hacks and other forms of electronic hacking that could cause physical harm to workers or result in flawed and dangerous products.