Skip navigation

Category Archives: Community

VPN brute force attacks: Your logs are full of them (guaranteed)

https://www.bleepingcomputer.com/news/security/cisco-warns-of-large-scale-brute-force-attacks-against-vpn-services

Make sure you are using MFA for every account that has remote access and check all remote access points; not just VPNs.

U.S. Federal Agencies and other countries release advisory that Russian Foreign Intelligence Service (SVR) is exploiting vulnerability in Jetbrains TeamCity globally

According to CISA, FBI, NSA, Polish Military Counterintelligence, CERT Polska, and UK’s National Cyber Security Centre, Russian actors known by names including APT 29 are and have been exploiting servers hosting JetBrains TeamCity software since at least September, 2023. This software is used for software compilations, including building, testing and releasing software. The potential impact is pretty large, including supply chain operations (think Solarwinds). The article details IOCs

https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-347a

Click to access aa23-347a-russian-foreign-intelligence-service-svr-exploiting-jetbrains-teamcity-cve-globally_0.pdf

Joint advisory

https://nvd.nist.gov/vuln/detail/cve-2023-42793

Twitter bug (now fixed) allowed “legacy” Blue Checkmark users to get them back for free.

https://www.bleepingcomputer.com/news/technology/twitter-bug-lets-legacy-verified-accounts-get-the-blue-check-back/

CISA releases an alert to warn consumers about scams to acquire money or personal data

https://www.cisa.gov/news-events/alerts/2023/03/15/beware-bank-related-scams

Bad actors taking advantage of SVB collapse for social engineering attacks as suspicious domains are being registered

https://www.bleepingcomputer.com/news/security/cybercriminals-exploit-svb-collapse-to-steal-money-and-data/

https://isc.sans.edu/diary/Incoming+Silicon+Valley+Bank+Related+Scams/29630/

Photo by Sora Shimazaki on Pexels.com

Bank failure fraud: Be wary of communications (emails, links, advertisements, SMS messages, etc.) that may be coming concerning bank failures

As with any other high profile event, bad actors are expected to prey on the fears of consumers concerning Silicon Valley Bank and Signature Bank. The most convenient will be the registration of bogus domains for data or credential theft. A whole gambit of attacks are expected to businesses and consumers. Be VERY cautious, but there is no reason to panic. Here are some things to keep in mind:

  • Your bank is not going to call you. Don’t give out ANY personal information or even confirm the existence of your account with any particular bank.
  • You will likely get an email from your financial institution as an FYI, but there should not be a call to action. If there is, call your bank using the number you know; not one on the email.
  • Mind family members. Elderly family members may be good targets for fraud.
  • Your financial institution will not text you about this. There should be no action needed via text. If you have any questions about a text you or a family member has received, call your bank using the number you know. Do not reply to the text of take call claiming to be your bank.
  • Businesses may be impacted by the failures. You may have a vendor that used that bank. Contact the vendor using the contact information you know.

More information from the FDIC:

    Article from ABC News (tips on how to keep your money safe)

    New NVIDIA drivers causing BSOD for Windows and high CPU. Fix should be available today (3/7/2023)

    https://www.bleepingcomputer.com/news/technology/nvidia-working-on-driver-fix-for-windows-bsod-high-cpu-usage/

    Accounts for 71k Chick-fil-A customers breached over multiple months in credential stuffing attack

    https://www.bleepingcomputer.com/news/security/chick-fil-a-confirms-accounts-hacked-in-months-long-automated-attack//

    Binary code on a laptop by Markus Spiske is licensed under CC-CC0 1.0

    The City of Oakland, California, suffers a ransomware attack and declares State of Emergency. 911/Emergency services unaffected.

    https://www.secureworld.io/industry-news/oakland-state-of-emergency-ransomware

    Most states and territories applied for $1 billion in U.S. federal cyber grants to address cybersecurity issues.

    https://therecord.media/all-but-florida-south-dakota-apply-for-federal-cyber-grants-allocated-by-infrastructure-bill/