It is a while since I have written about the issue of compromising code in software repositories being an attack vestor for threat actor bit it has not gone away. Malicious Microsoft VSCode extensions steal passwords, open remote shells (bleepingcomputer.com) Software and web developers everywhere will access code from these …
Hive ransomware gang targets Romanian oil
Rompetrol operators of Romania’s largest oil refinery and Fill&Go petrol stations has suffered a serious cyber attack which has also hit their websites. Hive ransomware gang targets Romanian oil firm in its latest cyberattack – The Record by Recorded Future Ransomware recovery without paying – Smart Thinking Solutions
Amplification of DDoS attacks – bad news day
With the current conflict between Russia and Ukraine taking up bandwidth on the internet this new technique for exponentially expanding the effectiveness of a distributed denial of service attack against website is not good news. New method that amplifies DDoSes by 4 billion-fold. What could go wrong? | Ars Technica …
Continue reading “Amplification of DDoS attacks – bad news day”
Log4j exploits and behind the scenes with the Apache patching team
Here is an interesting article from the team at Apache dealing with patching the Log4j problem: The Apache Log4j team talks about the Log4Shell patching process – The Record by Recorded Future But the exploits in the wild are still happening: Threat actor target Ubiquiti network appliances using Log4Shell exploits …
Continue reading “Log4j exploits and behind the scenes with the Apache patching team”
Log4j and open source software security – Google Cloud report
If you are involved in software development or use open source software, this article from the Google Cloud team, makes for interesting reading and can add some clarity to using this type of resource. Cloud CISO Perspectives: December 2021 | Google Cloud Blog
