Security Leftovers
-
Introducing PCVARK and their malicious ad blockers
It isn’t news that the overwhelming majority of ad blockers in Chrome Web Store is either outright malicious or waiting to accumulate users before turning malicious. So it wasn’t a surprise that the very first ad blocker I chose semi-randomly (Adblock Web with 700,000 users) turned out malicious. Starting from it, I found another malicious extension (Ad-Blocker, 700,000 users) and two more that have been removed from Chrome Web Store a year ago (BitSafe Adblocker and Adblocker Unlimited).
-
Fortra Completes Postmortem Of GoAnywhere Vulnerability
Security firm Fortra recently published an analysis of the zero-day vulnerability that impacted its GoAnywhere MFT customers earlier this year and committed itself to “continuous improvement.” Meanwhile, an analysis shows that dozens of organizations continue to run unpatched and exposed versions of GoAnywhere months after the flaw was discovered and patches became available.
Fortra (formerly HelpSystems) first became aware of the remote code injection exploit vulnerability in its GoAnywhere managed file transfer (MFT) product on January 30, as we previously reported, and quietly alerted customers on February 1.
-
Cl0p ransomware group uses zero-day in file transfer app to steal data
Data theft using a zero-day in the secure managed file transfer software MOVEit Transfer has been claimed to be carried out by the Cl0p ransomware group, with the incidents starting on 27 May.
The vulnerability was announced by the company that makes the software, Progress Software Corporation on 31 May, according to a post from the Google-owned Mandiant security firm.
-
First in space: SpaceX and NASA launch satellite that hackers will attempt to infiltrate during DEF CON
For the first time ever, researchers will be able to test the security of a satellite on-orbit at this year's Hack-A-Sat contest at DEF CON.