Ninjastic
PostEdited versionsQuotes to this post
Post
Topic
Board Tokens (Altcoins)
Re: [ANN] [HACKEN] FIRST DECENTRALIZED MARKETPLACE FOR WHITE HAT HACKERS
by
coinswebid
on 12/06/2021, 16:36:47 UTC
Weekly News Digest #38

  • Critical Android RCE Bug patched by Google
    Google addresses more than 90 bugs in its June Security Bulletin including the critical remote code execution bug that could enable malicious actors to commandeer the targeted mobile device with vulnerabilities. The bug tracked CVE-2021-0507 is related to the Android OS system component and by exploiting this bug hackers could execute arbitrary code under a privileged process. Google also informed users about the second bug related to the OS system component tracked CVE-2021-0516 but has not provided any further details.
  • Nefilim, a ransomware group targeting $1bn+ revenue companies. Case Study
    The ransomware group is actively using the “double-extortion” tactics to make victim organizations pay the ransom. Ransomware is a form of malware that provides for encrypting the stolen files. Machines become infected with malware through phishing messages, stolen access credentials, system vulnerabilities, or other means. A decryption key is required to open the encrypted files. Hackers required the victim to pay ransom in exchange for decryption keys. Ransom demands may reach even a few millions USD when speaking about corporations that have fallen victim to ransomware attacks. However, hackers give no guarantees that the sent key will be technically suitable to open the encrypted files.
  • $265 billion – the predicted cost of ransomware attacks worldwide in the next decade
    By 2031, the global cost of ransomware attacks may dramatically increase and reach $265 billion. Malicious operators may not only steal information to require ransom but also threaten victims to publish the compromised files unless they pay the provided amount. As a result, the level of pressure on victims to pay up is doubling. The most popular ransomware groups as of today are Maze, Nefilim, DarkSide, and Clop. DarkSide left the scene upon extorting Colonial Pipeline. Ransomware attacks take place worldwide with a frequency of 1 attack per few seconds.
  • AU$26.5m in cryptocurrency spent by  Australians as payments to scammers in 2020
    The ACCC’s Scamwatch received 216,087 scams in the 2020 calendar year and AU$156 million were lost. Totally, Australians reported losing AU$851 million to scams. The business email compromise accounted for AU$128 million, remote access scams accounted for AU$8.4 million and identity theft accounted for AU$3.1 million. At the top of the list, there were investment scams making people lose AU$328 million. However, when excluding from the total figure the information from the top financial institutions of Australia, this figure is reduced to AU$156 million.
  • CMS Joomla dual vulnerability combo could lead to full system compromise
    Joomla is a popular content management system. Researchers have revealed 2 vulnerabilities the exploitation of which by hackers could lead to the full system compromise. The revealed vulnerabilities included a stored cross-site scripting flaw and the password reset issue. The security vulnerabilities have been revealed by Fortbridge security specialists and they informed the company Joomla on these issues at the beginning of this year.

More Information https://hacken.io/industry-news-and-insights/weekly-news-digest-38/