Search This Blog

Powered by Blogger.

Blog Archive

Labels

Showing posts with label Kali. Show all posts

Global Ransomware Attack Targets VMware ESXi Servers



Cybersecurity firms around the world have recently warned of an increase in cyberattacks, particularly those targeting corporate banking clients and computer servers. The Italian National Cybersecurity Agency (ACN) recently reported a global ransomware hacking campaign that targeted VMware ESXi servers, urging organisations to take action to protect their systems.

In addition, Italian cybersecurity firm Cleafy researchers Federico Valentini and Alessandro Strino reported an ongoing financial fraud campaign since at least 2019 that leverages a new web-inject toolkit called drIBAN. The main goal of drIBAN fraud operations is to infect Windows workstations inside corporate environments, altering legitimate banking transfers performed by the victims and transferring money to an illegitimate bank account.

These accounts are either controlled by the threat actors or their affiliates, who are then tasked with laundering the stolen funds. The fraudulent transactions are often realized by means of a technique called Automated Transfer System (ATS) that's capable of bypassing anti-fraud systems put in place by banks and initiating unauthorized wire transfers from a victim's own computer.

The operators behind drIBAN have become more adept at avoiding detection and developing effective social engineering strategies, in addition to establishing a foothold for long periods in corporate bank networks. Furthermore, there are indications that the activity cluster overlaps with a 2018 campaign mounted by an actor tracked by Proofpoint as TA554 targeting users in Canada, Italy, and the U.K.

Organisations need to be aware of these threats and take immediate action to protect their systems from cyberattacks. The ACN has reported that dozens of Italian organisations have been likely affected by the global ransomware attack and many more have been warned to take action to avoid being locked out of their systems.


Kali Linux website hacked by The GreaT Team

When it comes to Security, No ONE is 100% Secure.  Even the world most popular Security-related Linux provider Kali is no exception to this fact.

Earlier Today, a Libyan Hackers group "The GreaT Team(TGT)" have breached the mailing list subdomain of Kali website(lists.kali.org).

The hacker managed to change the descriptions of two lists which was being shown in the front page of the subdomain. One of the description is "Hacked By The GreaT TeAm -TGT ", other one is "Libyan Hackers".

After became aware of the breach, Kali Team immediately take down the entire sub-domain to offline.  The team said it is an inactive sub-domain.

"Looks like our inactive, 3rd party, 0 volume mailing list was hacked. DNS entry removed - back to sleep, problem solved." Kali Team's response to the breach.

It is worth to note that Kali Team has already have a bug bounty program- Researchers who report security bugs in their website will get reward.  But, Security researcher Rafay Baloch who discovered few security bugs in kali website highlighted the fact the "Bug Bounty" didn't help much.

The mirror of the defacement is here: http://www.zone-h.org/mirror/id/22278878

Kali pentesting Linux 1.0.6 is here with Self Destruction feature


Offensive security Team, the creator of the famous Penetration testing Distro "Backtrack", has released updated version of Kali Linux.  The team has added an interesting feature to the update.

A self destruction feature has been introduced to the latest version 1.0.6.  The Kali Linux already provides disk encryption to protect the data from being accessed by thief, if it is stolen.

However, the team came with up a new idea to provide more security to the data stored in the distro, a "nuke" option.  By just entering a nuke password, you can make the data on the drive inaccessible.

Before implementing the feature, the team asked the users to vote in a poll whether to add this feature or not.  95% people(3700+) including me voted to add this feature, only 4%(140+) voted against it.

So, finally they have implemented the "nuke" option in the latest version of Kali.  How many of you think this is useful feature for you?!

Besides the nuke feature, there are 'Kali ARM Build script', 'Kali AMAZON AMI and Google Compute image generation scripts' and have added a number of tools and upgraded the existing tools.