Emotet Malware Mass Attack Drops Nozelesn Ransomware on Enterprise Endpoint Systems Via Word Documents

A new wave of Emotet malware campaign distribute the Nozelesn ransomware that targets hospitality industries based endpoint systems via malicious word documents. Telemetry had over 14,000 detections via emotet spam emails that are distributed all over the world between January 9, 2019, and February 7, 2019. These mass infections mainly targeting specific countries including Great […]

The post Emotet Malware Mass Attack Drops Nozelesn Ransomware on Enterprise Endpoint Systems Via Word Documents appeared first on GBHackers On Security.

Source: GBHackers
Emotet Malware Mass Attack Drops Nozelesn Ransomware on Enterprise Endpoint Systems Via Word Documents

Annual Protest Raises $250K to Cure Krebs

For the second year in a row, denizens of a large German-language online forum have donated more than USD $250,000 to cancer research organizations in protest of a story KrebsOnSecurity published in 2018 that unmasked the creators of Coinhive, a now-defunct cryptocurrency mining service that was massively abused by cybercriminals. Krebs is translated as “cancer” in German.

Images posted to the decidedly not-safe-for-work German-language image forum pr0gramm[.]com. Members have posted thousands of thank you receipts from cancer research organizations that benefited from their fight cancer/krebs campaign.

On March 26, 2018, KrebsOnSecurity published Who and What is Coinhive, which showed the founder of Coinhive was the co-creator of the German image hosting and discussion forum pr0gramm[dot]com (not safe for work).  I undertook the research because Coinhive’s code at the time was found on tens of thousands of hacked Web sites, and Coinhive seemed uninterested in curbing widespread abuse of its platform.

Pr0gramm’s top members accused KrebsOnSecurity of violating their privacy, even though all of the research published about them was publicly available online. In protest, the forum’s leaders urged members to donate money to medical research in a bid to find a cure for Krebs (i.e. “cancer”).

All told, thousands of Pr0gramm’s members donated more than USD $250,000 to cancer cure efforts within days of that March 2018 story. This week, the Pr0gramm administrators rallied members to commemorate that successful fundraiser with yet another.

“As announced there will be a donation marathon at anniversary day of Krebsaction,” Pr0gramm’s administrators announced. “Today, March 27th, we’re firing the starting shot for the marathon. Please tag your donation bills properly if they shall be accounted. The official tag is ‘krebsspende.’

According to a running tally on Pr0gramm’s site, this year’s campaign has raised 252,000 euros for cancer research so far, or about USD $284,000. That brings the total that Pr0gramm members have donated to cancer research to more than a half-million dollars.

As a bonus, Coinhive announced last month that it was shutting down, citing a perfect storm of negative circumstances. Coinhive had made structural changes to its systems following my 2018 story so that it would no longer profit from accounts used on hacked Web sites. Perhaps more importantly, the value of the cryptocurrency Coinhive’s code helped to mine dropped precipitously over the past year.

Source: KB
Annual Protest Raises 0K to Cure Krebs

Debian Security Update – Fix for Vulnerabilities that Leads to DOS and Arbitrary Code

Debian Security Update

Debian released security updates that fix multiple vulnerabilities with Thunderbird mail client, twig and dovecot Packages. DSA-4420 thunderbird The security update covers multiple vulnerabilities with Thunderbird mail client that allows an attacker to execute an arbitrary code execution or denial of service. The vulnerabilities can be tracked as CVE-2018-18506, CVE-2019-9788, CVE-2019-9790, CVE-2019-9791, CVE-2019-9792, CVE-2019-9793, CVE-2019-9795, CVE-2019-9796 All the security issues addressed with […]

The post Debian Security Update – Fix for Vulnerabilities that Leads to DOS and Arbitrary Code appeared first on GBHackers On Security.

Source: GBHackers
Debian Security Update – Fix for Vulnerabilities that Leads to DOS and Arbitrary Code

Bithumb Hacked – Hackers Transferred $20 Million Worth Cryptocurrencies From Bithumb Wallet

Bithumb Hacked

Bithumb Hacked 3rd time, Yes, One of the worlds largest cryptocurrency exchange Bithumb Hacked by unknown cybercriminals and they have stolen nearly $20 million worth cryptocurrencies from its wallet. Bithumb is a South Korean cryptocurrency exchange allegedly facing continuous cyber attacks since 2017, and this is 3 rd time in past 2 years. Bithumb detected […]

The post Bithumb Hacked – Hackers Transferred $20 Million Worth Cryptocurrencies From Bithumb Wallet appeared first on GBHackers On Security.

Source: GBHackers
Bithumb Hacked – Hackers Transferred Million Worth Cryptocurrencies From Bithumb Wallet

What is Single Sign-on (SSO) ? – Solution to Ensure Your Company Data Security

Single Sign-on

Single Sign-on is a method of authentication process that helps to log in multiple application using single login credentials. Security is enhanced through Single Sign-on (SSO) in light of the fact that users are diminished of the various secret password trouble. Let be honest, users detest complex passwords; SSO Single Sign-on makes that agony more […]

The post What is Single Sign-on (SSO) ? – Solution to Ensure Your Company Data Security appeared first on GBHackers On Security.

Source: GBHackers
What is Single Sign-on (SSO) ? – Solution to Ensure Your Company Data Security

Hackers Distributing Malware Via Weaponized PDF & MS Word Version of New Zealand Terror Suspect’s Manifesto

Cyber Criminals launching a new malware via weaponized PDF & MS Word Version of New Zealand terror suspect’s manifesto. Researchers noticed 8chan, an imageboard website composed of user-created boards contains several posts that link to a manifesto, allegedly authored by the terror suspect of New Zealand terror attack. These Manifesto contain several version of PDF […]

The post Hackers Distributing Malware Via Weaponized PDF & MS Word Version of New Zealand Terror Suspect’s Manifesto appeared first on GBHackers On Security.

Source: GBHackers
Hackers Distributing Malware Via Weaponized PDF & MS Word Version of New Zealand Terror Suspect’s Manifesto

Unpatched Zero-Days in Microsoft Edge and IE Browsers Disclosed Publicly

A security researcher today publicly disclosed details and proof-of-concept exploits for two ‘unpatched’ zero-day vulnerabilities in Microsoft’s web browsers after the company allegedly failed to respond to his responsible private disclosure.

Both unpatched vulnerabilities—one of which affects the latest version of Microsoft Internet Explorer and another affects the latest Edge Browser—allow
Source: HN
Unpatched Zero-Days in Microsoft Edge and IE Browsers Disclosed Publicly

Hackers Steal $19 Million From Bithumb Cryptocurrency Exchange

Hackers yesterday stole nearly $19 million worth of cryptocurrency from Bithumb, the South Korea-based popular cryptocurrency exchange admitted today.

According to Primitive Ventures’ Dovey Wan, who first broke the information on social media, hackers managed to compromise a number of Bithumb’s hot EOS and XRP wallets and transferred around 3 million EOS (~ $13 million) and 20 million XRP (~
Source: HN
Hackers Steal Million From Bithumb Cryptocurrency Exchange

Osmedeus – Fully Automated Offensive Security Tool for Reconnaissance & Vulnerability Scanning

Osmedeus is a fully automated tool that allows you to run the collection of awesome tools to reconnaissance and vulnerability scanning against the target. How to use If you have no idea what are you doing just type the command below or check out the Advance Usage. Installation in detail For Kali Linux For *nix OS […]

The post Osmedeus – Fully Automated Offensive Security Tool for Reconnaissance & Vulnerability Scanning appeared first on GBHackers On Security.

Source: GBHackers
Osmedeus – Fully Automated Offensive Security Tool for Reconnaissance & Vulnerability Scanning