News

Latest news about B2B cyber security >>> PR agencies: add us to your mailing list - see contact! >>> Book an exclusive PartnerChannel for your news!

Microsoft forgets its own passwords on freely accessible servers 
B2B Cyber ​​Security ShortNews

Microsoft has fixed a major security error: despite an external warning, a large number of codes, scripts and configuration files with passwords, keys and login information for accessing services for the search engine Bing were lying on an unprotected server in Azure for weeks. As the technology portal TechCrunch reports, security researchers Can Yoleri, Murat Özfidan and Egemen Koçhisarlı from SOCRadar reported that they found internal information about Microsoft's Bing search engine on an open server in Azure. The specialists usually look for vulnerabilities that could be attacked. In this case there was no hurdle for immediate...

Read more

Without a forced break: Fast data migration to new systems
Without a forced break: Fast data migration to new systems

Data migration, i.e. moving data from an old system to a new one, is an important task in a company. Experience shows that data migration often takes a lot of time and is associated with a number of challenges. But it is also much faster, easier and safer! The average lifespan of IT hardware is five years. After this period, replacement is required, often due to performance limitations or security risks. Additionally, technological advances mean that companies need to update their data systems. Outdated systems pose a security risk. Migration…

Read more

Report: More Email Server Attacks and Evasive Malware
Report: More Email Server Attacks and Evasive Malware MS-AI

WatchGuard Internet Security Report documents a dramatic increase in so-called “evasive malware,” contributing to a significant increase in overall malware volume. Also noticeable are increased attacks on email servers. WatchGuard Technologies has released the latest Internet Security Report, in which WatchGuard Threat Lab experts highlight the top malware trends and threats to network and endpoint security. The findings show a dramatic increase in so-called “evasive malware,” contributing to a significant increase in the overall malware volume. Increased attacks on email servers are also noticeable. Furthermore, the results indicate a decreasing number…

Read more

Dell PowerEdge servers with a highly dangerous vulnerability
B2B Cyber ​​Security ShortNews

Dell warns users of PowerEdge servers: A highly dangerous vulnerability in the BIOS of PowerEdge servers could give a malicious user increased rights management and allow local attackers to access without authentication. Dell does not describe exactly how the attack can occur on the Dell PowerEdge servers. The list of affected devices suggests that the BIOS update must be very important - it is extremely long. The threat described is as follows: “The Dell PowerEdge Server BIOS and Dell Precision Rack BIOS contain a privilege management vulnerability. An unauthenticated local attacker could...

Read more

HeadCrab 2.0 discovered
B2B Cyber ​​Security ShortNews

The HeadCrab campaign against Redis servers, which has been active since 2021, continues to successfully infect targets with the new version. The criminals' mini-blog in the code provides clues and takes swipes at the defenders. Last year, the then new malware HeadCrab caused trouble. Cybercriminals used the cutting-edge malware, which remains undetectable by agentless and traditional antivirus solutions, to compromise Redis servers. The criminals' campaign has been active since September 2021 and by the beginning of 2023 had already compromised 1.200 servers worldwide in order to misuse them for cryptojacking. Now the security experts discovered...

Read more

SSH vulnerable: Millions of servers are no longer secure
B2B Cyber ​​Security ShortNews

The SSH protocol has been in use for almost 30 years. Now Bochum researchers have developed an attack that has the potential to undermine, if not even disable, cryptographic SSH protection measures. According to ShadowServer, there are over 1 million SSH servers active in Germany - several million worldwide. The Terrapin attack is a new attack technique on the SSH protocol discovered by researchers at Ruhr University Bochum. The attack can compromise the integrity of secure SSH connections by making targeted adjustments to sequence numbers during the handshake as part of the connection setup. This allows the attacker to remove some messages sent by the client or…

Read more

Raid on ALPHV or BlackCat group?
B2B Cyber ​​Security ShortNews

The ALPHV and BlackCat leak sites have been disrupted for days. Some of them cannot be accessed or do not show any content. In darknet forums, admins from other APT groups claim that the servers have been taken over by ALPHV. The Advanced Persistent Threat (APT) group ALPHV, also known as BlackCat, is a ransomware group that first emerged in November 2021. The group is known for carrying out sophisticated ransomware attacks on companies and organizations around the world. But for a few days now, the ransomware group's leak pages have either not been accessible or show no content. Darknet admins talk about…

Read more

Cyber ​​attack on German Energy Agency – dena
B2B Cyber ​​Security ShortNews

According to its own information, the German Energy Agency reported a cyber attack on the weekend of November 11th to 12th. The servers are currently all shut down and accessibility is only limited. At least the homepage still functions as a source of information. Almost nothing is going on at dena at the moment. After the cyber attack at the weekend, the entire IT infrastructure was shut down or damaged. There is no exact information available yet. It is not yet clear who attacked Dena. As a result of the attack, dena has been largely unable to work technically and neither by...

Read more

BSI: 10.0 Vulnerability in Atlassian Confluence Data Center
B2B Cyber ​​Security ShortNews

The BSI – Federal Office for Information Security – warns of a critical CVSS 10.0 vulnerability in Atlassian Confluence Data Center and servers. Companies should apply security patches immediately, otherwise attackers could create administrator accounts. Atlassian itself had issued an advisory about the critical vulnerability with CVSS value 10.0 (CVE-2023-22515), but the BSI has now also issued a warning about a 10.0 vulnerability. Companies should urgently patch Confluence Data Center and servers because the gap should make it possible to create admin accounts. Whether and how strong the…

Read more

Microsoft: Exchange server update paralyzes servers
B2B Cyber ​​Security ShortNews

Microsoft has released security updates for Exchange vulnerabilities affecting Exchange Server 2019 and 2016. However, these updates will cripple the server if it is not English-speaking. However, Microsoft now offers a workaround so that the servers can be patched. After all, it's about a vulnerability with a CVSS value of 9.8. Some administrators who implement necessary security updates immediately have experienced a bitter surprise. When installing the security updates Exchange Server 2019 and Exchange Server 2016, error messages rained down and some servers were paralyzed afterwards. The problem: As soon as the server was not operated in English, the…

Read more