Vulnerability in time-syncing software puts a ton of corporate networks at risk
Security researchers have disclosed this week a vulnerability in the update mechanism of Domain Time II, one of the world’s most popular software packages, used for time management and time syncing operations inside some of the world’s largest corporations.
New Cring ransomware deployed via unpatched Fortinet VPNs
Unpatched Fortinet VPN devices are being hacked to deploy a new strain of ransomware inside corporate networks, Russian security firm Kaspersky said today.
Schools, hospitals face a surge in ransomware attacks
After experiencing a brief dip at the beginning of the year, ransomware attacks are showing signs of a resurgence with
Polish blogger sued after revealing security issue in encrypted messenger
The company behind the UseCrypt Messenger encrypted instant messaging application filed a lawsuit last month against a Polish security researcher for publishing an article that exposed a vulnerability in the app’s user invite mechanism.
Gigaset smartphones infected with malware due to compromised update server
Hackers have compromised at least one update server of German smartphone maker Gigaset and deployed malware to some of the company’s customers.
Man sentenced to prison after attempting to buy a neurotoxin on the dark web
A Missouri man was sentenced today to 12 years in prison after he attempted to buy a deadly poisonous chemical from the dark web during an undercover FBI operation. The suspect, a 46-year-old man named Jason William Siesser of Columbia, Missouri, was also denied parole due to the severity of his crime.
Facebook takes down troll farm linked to Iranian opposition group
Facebook on Tuesday announced it had removed 14 networks in 11 countries for using fake accounts to amplify deceptive campaigns, including one linked to an exiled militant Iranian group operating a troll farm out of Albania. The social media giant took down 1,167 Facebook accounts, 290 Instagram accounts, 255 Pages, and 34 Groups in the month of March for their connections to these “coordinated inauthentic behavior” campaigns, which targeted a range of countries including Israel, Mexico, Benin, and Georgia…
Academics: Russia deployed new technology to throttle Twitter’s traffic
The Russian government appears to be using new technology to censor internet traffic inside its borders, a group of academics studying internet censorship across the globe said in a report published today.
SAP systems usually come under attack 72 hours after a patch
Companies that run on-premises SAP systems usually come under attack 72 hours after security patches are released, SAP and enterprise security company Onapsis said in a joint security alert published today.
Dutch man gets two years in prison for hijacking 13,762 online store accounts
A Dutch man was sentenced last week to 27 months in prison and a €10,000 ($11,800) fine for breaking into 13,762 accounts at Dutch online stores. The man, a 27-year-old from the Dutch city of Arnhem, was found guilty of buying 3.7 million login credentials and using automated tools to test if the logins were still valid.