backdoor Archives - Help Net Security

backdoor

It takes less than one hour to exploit vulnerable container infrastructure

June 24, 2021

Aqua Security published a research revealing a continued rise in cyberattacks targeting container infrastructure and supply chains, and showing that it can now take less than …

How data manipulation could be used to trick fraud detection algorithms on e-commerce sites

May 24, 2021

As the marketing of almost every advanced cybersecurity product will tell you, artificial intelligence is already being used in many products and services that secure …

Encryption is either secure or it’s not – there is no middle ground

April 5, 2021

The principle of end-to-end encryption underpins a system of communication where only the communicating users can read the messages. To this end, it exists to prevent any …

Attackers tried to insert backdoor into PHP source code

March 29, 2021

The PHP development team has averted an attempted supply chain compromise that could have opened a backdoor into many web servers. What happened? “[On Sunday, March 28] …

iOS app developers targeted with trojanized Xcode project

March 19, 2021

“We recently became aware of a trojanized Xcode project in the wild targeting iOS developers thanks to a tip from an anonymous researcher. The malicious project is a …

Hackers exploited Centreon monitoring software to compromise IT providers

February 16, 2021

Unknown hackers – possibly the Sandworm APT – have been compromising enterprise servers running the Centreon monitoring software for over three years, the French …

Linux malware backdoors supercomputers

February 2, 2021

ESET researchers discovered Kobalos, a malware that has been attacking supercomputers – high performance computer (HPC) clusters – as well as other targets such as a …

SolarWinds hack investigation reveals new Sunspot malware

January 12, 2021

Crowdstrike researchers have documented Sunspot, a piece of malware used by the SolarWinds attackers to insert the Sunburst malware into the company’s Orion software. …

SolarWinds hackers’ capabilities include bypassing MFA

December 16, 2020

As the list of known organizations compromised by way of the SolarWinds supply chain attack is slowly growing – according to Reuters, the attackers also breached U.S. …

Hackers breached U.S. government agencies via compromised SolarWinds Orion software

December 14, 2020

A “highly sophisticated” hacking group has breached the U.S. Treasury Department, the U.S. Department of Commerce’s National Telecommunications and …

Researchers discover POS backdoor targeting the hospitality industry

November 12, 2020

ESET researchers have discovered ModPipe, a modular backdoor that gives its operators access to sensitive information stored in devices running ORACLE MICROS Restaurant …

Windows backdoor masquerading as VPN app installer

September 22, 2020

Windows users looking to install a VPN app are in danger of downloading one that’s been bundled with a backdoor, Trend Micro researchers warn. The trojanized package in …

backdoor

It takes less than one hour to exploit vulnerable container infrastructure

How data manipulation could be used to trick fraud detection algorithms on e-commerce sites

Encryption is either secure or it’s not – there is no middle ground

Attackers tried to insert backdoor into PHP source code

iOS app developers targeted with trojanized Xcode project

Hackers exploited Centreon monitoring software to compromise IT providers

Linux malware backdoors supercomputers

SolarWinds hack investigation reveals new Sunspot malware

SolarWinds hackers’ capabilities include bypassing MFA

Hackers breached U.S. government agencies via compromised SolarWinds Orion software

Researchers discover POS backdoor targeting the hospitality industry

Windows backdoor masquerading as VPN app installer

Don't miss

US agricultural co-op hit by ransomware, expects food supply chain disruption

Microsoft Power Apps data exposure: Prioritizing sensitive data with secure configuration settings

The complexities of vulnerability remediation and proactive patching

How to retain the best talent in a competitive cybersecurity market

Securing Kubernetes as it becomes mainstream