Security Alerts & News
by Tymoteusz A. Góral

History
#1177 Wave of business websites hijacked to deliver crypto-ransomware
If you've visited the do-it-yourself project site of Dunlop Adhesives, the official tourism site for Guatemala, or a number of other legitimate (or in some cases, marginally legitimate) websites, you may have gotten more than the information you were looking for. These sites are redirecting visitors to a malicious website that attempts to install CryptXXX—a strain of cryptographic ransomware first discovered in April.

The sites were most likely exploited by a botnet called SoakSoak or a similar automated attack looking for vulnerable WordPress plugins and other unpatched content management tools, according to a report from researchers at the endpoint security software vendor Invincea. SoakSoak, named for the Russian domain it originally launched from, has been around for some time and has exploited thousands of websites. In December of 2014, Google was forced to blacklist over 11,000 domains in a single day after the botnet compromised their associated websites by going after the WordPress RevSlider plugin.
Read more
#1183 Internet of Things security is dreadful: Here's what to do to protect yourself
#1182 ARM, Symantec build security standard for Internet of Things
#1181 Oracle patches record 276 vulnerabilities with July critical patch update
#1180 SoakSoak botnet pushing neutrino exploit kit and CryptXXX ransomware
#1179 Firefox to block non-essential Flash content In August 2016, require click-to-activate In 2017
#1178 Attackers launch multi-vector DDoS attacks that use DNSSEC amplification
#1177 Wave of business websites hijacked to deliver crypto-ransomware
#1176 Library of Congress hit with a denial-of-service attack
#1175 Software flaw puts mobile phones and networks at risk of complete takeover
History
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12