09-04-2020, 01:33 AM
Elon Musk confirms that attempted Russian ransomware attack was aimed at Tesla
https://www.cyberscoop.com/tesla-ransomw...sk-russia/
Last month, the weird Musk accepted that Tesla, located in Sparks, Nevada, was attacked by hackers, kind of. He thanked the FBI for stopping them.
CyberScoop Wrote:The U.S. Department of Justice on Wednesday announced that police had arrested a Russian man accused of offering $1 million to an unnamed person to hack their employer. The plan was to infect the company’s factory, based in Sparks, Nevada, with malware, then direct a distributed denial-of-service attack against its services, knocking it offline. When the victim ultimately paid an extortion fee, attackers’ logic went, hackers would split the proceeds with the inside source.
They fooled the guy by asking him to meet in Los Angeles where he was arrested.
TikTok scrubs ads promoting diet pills, fake apps after Tenable report
https://www.cyberscoop.com/tiktok-securi...le-report/
CyberScoop Wrote:The video-sharing app, which claims some 49 million daily active users in the U.S., said Thursday it removed an array of advertisements from its central #ForYou page that marketed suspicious diet pills, fake mobile apps and other inauthentic services.
Do you still think TikTok is secure?
CyberScoop Wrote:TikTok classifies more than a third of its 49 million daily users in the U.S. as 14 years old or younger, raising questions about whether the company is doing enough to safeguard their data, according to the New York Times. Without years of experience navigating digital services for common fraud tactics like phishing or suspicious ads, children may be more susceptible to social media scams.
Tenable researchers suggested that the number of malicious advertisements on TikTok’s #ForYou section, a main page where users discover new content, indicates weaknesses in the moderation process.
The recommended app, Super Expense, actually is called iMoney, researchers found.
The iMoney app urges users to provide a picture of their driver’s license, a move that would expose their name, home address, driver’s license number and other personal details.
Meanwhile they get their money "indirectly".
Norway and Hackers
https://www.cyberscoop.com/norway-parlia...berattack/
Some unnamed actor hit their parliament and stole some of their records by taking control over their mail accounts. The attackers managed to download it.
Could they be Russians? Curiously Norwegians are getting used to foreign cyber attacks.
Unknown Router vendor has patched some zero-days, but leaves others wide open
https://www.cyberscoop.com/mofi-networks...cal-start/
It's a Canadian company called MoFi Network. A cyber security expert found 10 previously undisclosed vulnerabilities in the device that, if exploited, could allow attackers to steal passwords and data from networks running the vulnerable routers, including VPN credentials and API keys.
CyberScoop Wrote:In MoFi’s case, the remediation process is not yet complete, according to Mirch. The company initially fixed some of the vulnerabilities, but it also introduced new bugs when it updated the firmware, he said. Those includes a vulnerability that could allow an attacker to remotely inject code on a device. In correspondence with Mirch reviewed by CyberScoop, a MoFi engineer argued that the remote access features the company introduced were necessary for customer support.Silly, be careful!
By the way, Cisco is also running like a mad man as of late.
Cisco says it will issue patch ‘as soon as possible’ for bugs hackers are trying to exploit
https://www.cyberscoop.com/cisco-ios-xr-...ies-patch/CyberScoop Wrote:Unidentified hackers are trying to exploit critical vulnerabilities in router software made by Cisco.
The bugs could allow an attacker to remotely deny service to a device running the software or exhaust the memory on the device. That could destabilize interior and exterior routing protocols on an affected network.
Justin Elze, a principal security consultant at security company TrustedSec, pointed out that in order for the vulnerability to be exploited, a protocol known as IGMP needs to be enabled. That protocol is less common in enterprise networks and tends to be used by cable TV networks to do video streaming, he said.
So this isn't just about routers but cable TV networks as well.
"For God has not destined us for wrath, but for obtaining salvation through our Lord Jesus Christ," 1 Thessalonians 5:9
Maranatha!
The Internet might be either your friend or enemy. It just depends on whether or not she has a bad hair day.
My Original Stories (available in English and Spanish)
List of Compiled Binary Executables I have published...
HiddenChest & Roole
Give me a free copy of your completed game if you include at least 3 of my scripts!
Just some scripts I've already published on the board...
KyoGemBoost XP VX & ACE, RandomEnkounters XP, KSkillShop XP, Kolloseum States XP, KEvents XP, KScenario XP & Gosu, KyoPrizeShop XP Mangostan, Kuests XP, KyoDiscounts XP VX, ACE & MV, KChest XP VX & ACE 2016, KTelePort XP, KSkillMax XP & VX & ACE, Gem Roulette XP VX & VX Ace, KRespawnPoint XP, VX & VX Ace, GiveAway XP VX & ACE, Klearance XP VX & ACE, KUnits XP VX, ACE & Gosu 2017, KLevel XP, KRumors XP & ACE, KMonsterPals XP VX & ACE, KStatsRefill XP VX & ACE, KLotto XP VX & ACE, KItemDesc XP & VX, KPocket XP & VX, OpenChest XP VX & ACE
Maranatha!
The Internet might be either your friend or enemy. It just depends on whether or not she has a bad hair day.
My Original Stories (available in English and Spanish)
List of Compiled Binary Executables I have published...
HiddenChest & Roole
Give me a free copy of your completed game if you include at least 3 of my scripts!
Just some scripts I've already published on the board...
KyoGemBoost XP VX & ACE, RandomEnkounters XP, KSkillShop XP, Kolloseum States XP, KEvents XP, KScenario XP & Gosu, KyoPrizeShop XP Mangostan, Kuests XP, KyoDiscounts XP VX, ACE & MV, KChest XP VX & ACE 2016, KTelePort XP, KSkillMax XP & VX & ACE, Gem Roulette XP VX & VX Ace, KRespawnPoint XP, VX & VX Ace, GiveAway XP VX & ACE, Klearance XP VX & ACE, KUnits XP VX, ACE & Gosu 2017, KLevel XP, KRumors XP & ACE, KMonsterPals XP VX & ACE, KStatsRefill XP VX & ACE, KLotto XP VX & ACE, KItemDesc XP & VX, KPocket XP & VX, OpenChest XP VX & ACE