Security News

The infrastructure and websites for the REvil ransomware operation have mysteriously gone offline as of last night. The REvil ransomware operation, aka Sodinokibi, operates through numerous clear web and dark web sites used as ransom negotiation sites, ransomware data leak sites, and backend infrastructure.

ZeroFox announced it has joined forces with Vigilante, a globally recognized expert in Dark Web Threat Intelligence, adding to its intelligence portfolio. ZeroFox's now-enhanced platform delivers the ability to understand public attack surface exposure and protect organizations from dark web activity at an even greater scale.

Using what is known as a single page app framework, these apps represent the next generation of modern software design, offering a faster and cleaner user experience than traditional multi-page websites. Each page generally interacts directly with the server and back-end databases for each individual page load. This framework now represents a legacy approach to building web applications.

Researchers added the attack also included public and private keys of LimeVPN users. "The hacker informed us that they have the private keys of every user, which is a serious security issue as it means they can easily decrypt every LimeVPN user's traffic," the firm said in a posting.

There is no chance to rest, since attack groups are constantly looking for more effective means of infiltrating and infecting systems. Today, there are hundreds of groups devoted to infiltrating almost every industry, constantly devising more sophisticated methods to attack organizations.

Akamai announces platform security enhancements to strengthen protection for web applications, APIs, and user accounts. Akamai's machine learning derives insight on malicious activity from more than 1.3 billion daily client interactions to intelligently automate threat detections, time-consuming tasks, and security logic to help professionals make faster, more trustworthy decisions regarding cyberthreats.

Existing investors, Access Venture Partners and Grotech Ventures, also participated in the round, providing ThreatX with capital to continue strengthening its dominant position in the next-generation web application security market. Strengthen its fully-managed WAAP services team to offer clients the application security expertise necessary to combat adversaries.

The pushers behind the SolarMarker backdoor malware are flooding the web with PDFs stuffed with keywords and links that redirect to the password-stealing, credential-snarfing malware. The attackers have expanded their range, according to Microsoft Security Intelligence, whose researchers have seen them shift from originally using Google Sites to now primarily using Amazon Web Services and the Strikingly free website builder service.

Amazon Web Services announced AWS App Runner, a fully managed container application service that makes it easier and faster for customers to build, deploy, and run containerized web applications and APIs with just a few clicks. Customers simply provide their source code, container image, or deployment pipeline and AWS App Runner builds and deploys the web application or API, load balances network traffic, scales capacity up or down based on demand, monitors application health, and encrypts traffic by default.

Bogus COVID-19 test results, fraudulent vaccination cards, and questionable vaccines are emerging a hot commodity on the dark web in what's the latest in a long list of cybercrimes capitalizing on the coronavirus pandemic. "As a result, illegal COVID-19 vaccines and vaccination records are in high demand on darknet marketplaces."