Cybercrime/malcode – Lifeboat News: The Blog

Nov 29
2020

Elon Musk’s Starlink May Potentially Revolutionize Healthcare

Global #connectivity lets for #digitalidentity for billions of people worldwide, giving them access to #telehealth, #education, #careers, #entertainment and #finance services, as well as raising #cybersecurity and #dataprivacy concernsRe-sharing. Starlink can help telemedicine become more reliable and available to people in need. Especially those in rurual or far flung locations.

Video Source/Credit: SpaceX Youtube Channel

One interesting sub-division of SpaceX is Starlink, which is Musk’s venture into increasing global connectivity. Starlink’s mission is to use a global network of low Earth orbit satellites to eventually “deliver high speed broadband internet to locations where access has been unreliable, expensive, or completely unavailable.” While satellite internet itself is not a novel concept, most of the traditional systems use dated technology that have far less capabilities with regards to internet speed, connectivity, and sustainability. Starlink’s goal is to provide high-speed broadband internet, using cutting-edge satellite systems that will also not add to the space pollution created by traditional systems. As of now, the company states that it “is targeting service in the Northern U.S. and Canada in 2020, rapidly expanding to near global coverage of the populated world by 2021.”

Nov 26
2020

US Fertility says patient data was stolen in a ransomware attack

The company has 55 fertility clinics across the U.S.

Nov 24
2020

China’s State-Sponsored Hacking Hits Companies Around the World

The group uses tools outside of the country for this attack campaign, as well as custom malware, including custom malware – including backdoor. Hartip – that Symantec has never used. Compromised computers at the time of the attack included domain controllers and file servers, and there is evidence that files are being filtered by some compromised computers. Attackers frequently used DLL side loading in this campaign and took advantage of the patched Zerologon vulnerability in August 2020.

Symantec first addressed this campaign when suspicious DLL-side loading activity on one the customers networks triggered a warning from Cloud Analytics technology available in Symantec Endpoint Security Complete (SESC).

The campaign is spread across the world, with a large number of regions detected as the victims of the attack. The common link between all the organisations that were attacked were their links to japan or japan based organisations. In the map you can clearly see that there was a reportedly Chinese-government-linked group attacking companies within China’s borders but, like many of the companies targeted in this campaign, the target in that instance is a subsidiary of a Japanese organization.

Nov 24
2020

Coronavirus: North Korea and Russia hackers ‘targeting vaccine’

Tech giant Microsoft says it has detected cyber-attacks aimed at vaccine researchers.

Nov 23
2020

Gene editing technologies and applications for insects

Initially discovered in bacteria, CRISPR-based genome editing endonucleases have proven remarkably amenable for adaptation to insects. To date, these endonucleases have been utilized in a plethora of both model and non-model insects including diverse flies, bees, beetles, butterflies, moths, and grasshoppers, to name a few, thereby revolutionizing functional genomics of insects. In addition to basic genome editing, they have also been invaluable for advanced genome engineering and synthetic biology applications. Here we explore the recent genome editing advancements in insects for generating site-specific genomic mutations, insertions, deletions, as well as more advanced applications such as Homology Assisted Genome Knock-in (HACK), potential to utilize DNA base editing, generating predictable reciprocal chromosomal translocations, and development gene drives to control the fate of wild populations.

Nov 23
2020

GoDaddy Employees Used in Attacks on Multiple Cryptocurrency Services

Fraudsters redirected email and web traffic destined for several cryptocurrency trading platforms over the past week. The attacks were facilitated by scams targeting employees at GoDaddy, the world’s largest domain name registrar, KrebsOnSecurity has learned.

The incident is the latest incursion at GoDaddy that relied on tricking employees into transferring ownership and/or control over targeted domains to fraudsters. In March, a voice phishing scam targeting GoDaddy support employees allowed attackers to assume control over at least a half-dozen domain names, including transaction brokering site escrow.com.

Nov 21
2020

Botnets have been silently mass-scanning the internet for unsecured ENV files

Threat actors are looking for API tokens, passwords, and database logins usually stored in ENV files.

Nov 19
2020

Ransomware attack brings Columbus County’s website down

WILMINGTON, N.C. (WECT) — What was initially reported as a website ‘outage’ by Columbus County turns out to be something more sinister, a directed attack at the county’s web hosting service.

Nov 18
2020

Ransomware attack forces web hosting provider Managed.com to take servers offline

Ransomware attack on Managed.com appears to have taken place on Monday, November 16.

Nov 18
2020

Majority of APAC firms pay up in ransomware attacks

Despite expert advice against paying up, most victims of ransomware attacks in the region, including 88% in Australia and 78% in Singapore, have paid the ransom in full or in part, and the number of such attacks is only going to keep climbing amidst accelerated digital transformation efforts and remote work.