Daily Cybersecurity Roundup, March 15, 2022
Top 10 hacking news
Hackers’ new goal: Render a system useless by destroying all user data! Along similar lines, another wiper attack recently targeted Ukrainian infrastructure. In other news, government sites in Israel suffered a major jolt by DDoS attacks. That’s not all. Security experts have predicted threats to Samsung systems and services, owing to the leak of thousands of secret keys. On that note, let’s scroll down for the top events from the last 24 hours.
A significant DDoS attack crippled the networks of multiple Israeli government websites, knocking them offline. Iran’s Islamic Revolutionary Guard Corps could be involved in this.
ESET spotted CaddyWiper, the fourth wiper malware in use against Ukrainian organizations, which destroys user data and partition information from attached drives. HermeticWiper and IsaacWiper were two previously reported wipers.
Ukraine CERT warned of phishing attacks impersonating Ukrainian government agencies to offer rogue Windows antivirus updates to deploy Cobalt Strike and malware payloads.
GitGuardian announced that the Samsung source code leak may have exposed nearly 6,600 secret keys, including private keys, usernames and passwords, AWS keys, Google keys, and GitHub keys.
CrowdStrike unearthed an ongoing attack campaign that mislead victims into downloading malicious payloads alongside legitimate software installers, such as Zoom, Atera, Brave Browser, NetSupport, JavaPlugin, and TeamViewer.
Taiwanese hardware vendor QNAP urged customers to stay vigilant of Dirty Pipe, a critical Linux bug impacting most of its NAS devices. It can let a hacker gain root privileges and inject malicious codes.
According to Zimperium, roughly 30% of the known vulnerabilities and zero-days reported in 2021 targeted mobile devices, while approximately two million new malware samples surfaced that year.
In the wake of threats made by Russia against the EU, NATO, and Germany, Germany's officials cautioned against organizations using Kaspersky antivirus products and advised them to replace those.
Cowbell Cyber, a cyber insurance provider, secured $100 million in its Series B round led by Anthemis Group, with all the previous investors as participants.
Autonomous cybersecurity platform provider SentinelOne announced to acquire Attivo Networks, an identity security and lateral movement protection company, in a cash and stock deal valued at $616.5 million.