Ransomware Campaign April 2019

Posted by & filed under Security Alerts.

The National CSIRT-CY would like to inform you of a Ransomware attack that is currently in progress worldwide. After the analysis of the National CSIRT-CY, the following IOC’s (Hashes) were found.   FileDetails Type PE32 executable (GUI) Intel 80386, for MS Windows FileName sql.exe Size 94720 bytes MD5 5a9eb8d21148bc8b54460d03f4f7c3b6 SHA1 e2bf54f632b98b3f77d15794bf1251d1cf4e2974 SHA256 e83d9e54f12139150e2ba6ed2f6b119dcc593ea7dc3137cef8942674bf69490b SHA512 7f208bb599d571758cf575ca998ec06f5a5efc79a7763cccc6e884c72b85fd106cc3f3d8adbb153fec14523a94d6b00e8b4c93036553cd7c8fb92d33def7559c

Russian hackers are targeting European governments ahead of May election

Posted by & filed under Security Alerts.

Russian hackers have targeted European government systems ahead of the EU parliament election, cybersecurity firm FireEye said Thursday. The company found that two state-sponsored hacking groups, APT28 and Sandworm, used spear phishing — the practice of sending out emails designed to look like they’re from a trusted party — in an attempt to obtain government… Read more »

Operation ShadowHammer

Posted by & filed under Security Alerts.

In January 2019, it was discovered by Kaspersky Labs, a sophisticated supply chain attack involving the ASUS Live Update Utility. The attack took place between June and November 2018 and according to Kaspersky Labs, it affected a large number of users. ASUS Live Update is an utility that is pre-installed on most ASUS computers and is… Read more »