CyberNews: Top headlines

Exposing North Korea’s Malicious Cyber Activity(February 14, 2020)
 The US Department of Homeland Security’s (DHS’s) Cybersecurity and Infrastructure Security Agency (CISA), the FBI, and the Department of Defense (DoD) have jointly disclosed a list of malware variants that are being used by hackers working on behalf of the North Korean government. Read more in:
– www.us-cert.gov: North Korean Malicious Cyber Activity

Iranian Hackers Infiltrating VPN Servers to Plant Backdoors

Researchers from ClearSky say that hackers working on behalf of Iran’s government have been exploiting vulnerabilities in VPN servers to install backdoors on networks at companies around the world. The hackers have targeted organizations in the IT, telecommunications, oil and gas, government, and security sectors.

Read more in:
– www.zdnet.com
: Iranian hackers have been hacking VPN servers to plant backdoors in companies around the world

Coronavirus: IBM Says No to RSA, Facebook Cancels Marketing Meeting, Black Hat Asia Postponed.
 IBM said it will not attend the RSA Conference in San Francisco next week due to concerns about the coronavirus. RSA Conference executives say the event will go on as planned, from February 23-28. In related stories, Facebook has cancelled a marketing summit that was to have taken place in San Francisco in early March, and the organizers of Black Hat Asia have postponed a conference that was scheduled to be held in late March in Singapore.

Read more in:
– www.scmagazine.com: IBM pulls out of RSA over coronavirus fears
– www.theregister.co.uk: Roses are red, IBM is Big Blue. It’s out of RSA Conference after coronavirus review: IBMers will not attend infosec event over ‘health concerns’

Corp.com Domain For Sale, Raises Specter of Namespace Collision(February 8 & 14, 2020)
 The corp.com domain is for sale. Administrators running Active Directory in their networks are urged to check their network configuration to ensure that the domain is not being used internally; some versions of Windows have used corp and corp.com as the default path for internal sites. If a user tries to access an internal site from outside the organization’s network, they could run into namespace collision, “a situation where domain names intended to be used exclusively on an internal company network end up overlapping with domains that can resolve normally on the open Internet.” The danger of exposing sensitive information through namespace collision is not theoretical.

Read more in:
– krebsonsecurity.com
: Dangerous Domain Corp.com Goes Up for Sale



Categories: Cyber news

Tags: ,

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.