-
A Benevolent Hacker Is Warning Owners of Unsecured Cassandra Databases
An unknown hacker is accessing public and unsecured Apache Cassandra databases and adding an extra table through which it warns server owners that their DB was left exposed to online attacks.
- January 24, 2017
- 08:00 PM
1
-
MongoDB Hijackers Move on to ElasticSearch Servers
After days of wreaking havoc among MongoDB servers, a group of crooks has moved on to hijacking ElasticSearch servers and asking for similar ransoms.
- January 13, 2017
- 04:25 AM
0
-
New Webinar: Choose Your Own Investigation — Browser Attack Edition
Modern attacks have shifted focus to the browser, yet detection tools remain largely blind to the crucial activity happening there.
Join Push Security on February 11th for an interactive "choose-your-own-adventure" webinar on ClickFix, credential phishing, and other in-browser attacks we've observed in the wild.
-
Kraken Group Puts MongoDB Hijacking Script Up for Sale
Almost nine days after attacks on MongoDB servers have ramped up, the number of ransacked databases has reached 32,380 hosts, and the number of groups involved in these attacks has grown to 21, after initially just one group had been involved.
- January 11, 2017
- 04:20 PM
- 0
-
MongoDB Apocalypse: Professional Ransomware Group Gets Involved, Infections Reach 28K Servers
The number of hijacked MongoDB servers held for ransom has skyrocketed in the past two days from 10,500 to over 28,200, thanks in large part to the involvement of a professional ransomware group known as Kraken.
- January 09, 2017
- 11:18 AM
- 3
-
2016's Most Popular Web Technologies
The world of web technology changes at a rapid pace. New projects appear daily, and old tools retire to make room for new arrivals. During 2016, the web technology landscape has changed dramatically, with the arrival of AngularJS 2.0, the proliferation of React.js and maturation of several open-source CMS projects.
- January 08, 2017
- 08:20 AM
- 1
-
MongoDB Apocalypse Is Here as Ransom Attacks Hit 10,000 Servers
What started as isolated incidents on Monday has transformed into an all out destruction of thousands of MongoDB servers by the end of the week.
- January 07, 2017
- 08:00 AM
- 2
-
Number of Hijacked MongoDB Databases Is Going Up as More Hackers Are Flocking In
MongoDB administrators are about to be tought a hard lesson in database management practices, as the number of hackers that are now involved with DB hijacking attempts has gone from one to three, and more are expected to join in the upcoming days.
- January 05, 2017
- 04:50 PM
- 1
-
Pseudo-Darkleech Actors Behind a Large Chunk of Ransomware Attacks in 2016
A cyber-crime infrastructure known in infosec circles as pseudo-Darkleech has been the source of many ransomware infections during the past year, either by malicious spam attachments or via automated attacks carried out via exploit kits.
- January 04, 2017
- 10:15 AM
- 0
-
MongoDB Databases Held for Ransom by Mysterious Attacker
An attacker going by the name of Harak1r1 is hijacking unprotected MongoDB databases, stealing and replacing their content, and asking for a Bitcoin ransom to return the data.
- January 03, 2017
- 06:11 AM
- 0
-
Unpatched Vulnerability Affecting PHP 7 Servers
PHP 7 is affected by an unpatched vulnerability that opens servers running the latest branch of the PHP programming language to attacks.
- December 30, 2016
- 04:30 AM
- 0
-
Meet "Hailstorm," the Latest Email Spamming Technique
A new technique for sending email spam has become very popular with cyber-criminals, said Cisco this week, following an investigation from its Talos and OpenDNS Umbrella security teams.
- December 22, 2016
- 05:30 AM
- 3
-
Ukrainian ISP Behind Over 1.65Mil Daily Brute-Force Attacks on WordPress Sites
Over the past three weeks, the number of brute-force attacks against WordPress sites has almost doubled, according to WordPress security firm WordFence.
- December 19, 2016
- 06:57 AM
- 4
-
Heimdall Open-Source PHP Ransomware Targets Web Servers
A Brazilian developer named Lenon Leite has released proof-of-concept code for a ransomware family coded in PHP that will allow an attacker to encrypt the contents of web servers.
- November 09, 2016
- 11:33 AM
- 9
-
MySQL Databases Need Urgent Updates to Address Three Critical Security Bugs
System administrators should be patching their MySQL installations if they haven't in the last three weeks, to safeguard their database servers against three critical security flaws discovered by Polish security researcher Dawid Golunski.
- November 07, 2016
- 03:12 PM
- 0
