Uncategorized

Federal agencies reportedly had improper access to Social Security data belonging to 3,200 license holders. Source: Dark Reading

New malware created by Chinese-backed Winnti Group has been discovered by researchers at ESET while being used to gain persistence on Microsoft SQL Server (MSSQL) systems. The new malicious tool dubbed skip-2.0 can be used by the attackers to backdoor MSSQL Server 11 and 12 servers, enabling them to connect to any account on the server using a so-called "magic password" and hide their activity from the security logs. Source: Bleeping Computer

A malware infection has taken down the worldwide operations of an accounting software provider, with the company adamant that no client information has been breached. “On Monday, May 6, we started seeing technical anomalies in a number of our platforms and applications. We immediately started investigating and discovered the installation of malware,” an official statement from Wolters Kluwer said. Source: Accountants Daily

Avast (LSE:AVST), the global leader in digital security products, today announced that it discovered 50 adware apps on the Google Play Store using Avast’s mobile threat intelligence platform, apklab.io. The installations of the apps, which Avast is referring to as TsSdk, range from 5K to 5M installations. The adware persistently displays full screen ads, and in some cases, tries to convince the user to install further apps. The adware applications are linked together by the...

A group of hackers is using a previously undocumented backdoor program designed to interact with attackers over Slack. While abusing legitimate services for malware command-and-control purposes is not a new development, this is the first time researchers have seen Slack, a popular enterprise collaboration tool, being used in this way. The backdoor was detected by security firm Trend Micro in a targeted attack launched from the compromised website of an organization called the Korean American...