Threat Intelligence, Critical Infrastructure Security

Switzerland subjected to NoName DDoS attacks

SC StaffJanuary 18, 2024

Security Affairs reports that Switzerland had some of its government websites temporarily disrupted by a wave of distributed denial-of-service attacks by the pro-Russian hacktivist operation NoName, which noted that the intrusions were in response to the attendance of Ukrainian President Vladimir Zelensky at the Word Economic Forum in Davos. While the Swiss government's primary portal was not impacted by the DDoS attacks, threat actors were able to compromise access to the websites of the Swiss Ministry of the Interior, the Swiss cable car network's POOL-ALPIN service provider, and the Rhaetian railway to Davos, as well as the Davos-Klosters ski resort website, according to the country's National Cyber Security Centre, which noted that efforts to restore the impacted sites have been expedited. Such an incident comes after Switzerland had several of its government, municipality, airport, and association websites previously compromised by DDoS attacks deployed by the NoName hacktivist group in June.

SC Staff

Related

CISA warns buggy Sophos, Oracle, Microsoft apps join Known Exploited Vulnerabilities list

Vulnerability Management

Updated CISA exploited vulnerabilties catalog includes Windows print spooler bug

SC StaffApril 26, 2024

Attacks by Russian threat operation APT28, also known as Fancy Bear, Strontium, and Forest Blizzard, using the GooseEgg malware to exploit the Windows print spooler flaw, tracked as CVE-2022-38028, have prompted the security issue's inclusion to the Cybersecurity and Infrastructure Security Agency's Known Exploited Vulnerabilities catalog, Security Affairs reports.

North Korea flag with circuitry and fingerprint

Network Security

Novel Kaolin RAT malware distributed in Lazarus Group attacks

SC StaffApril 26, 2024

Attacks leveraging fraudulent job lures to distribute the new Kaolin RAT malware have been launched by North Korean hacking collective Lazarus Group against individuals across Asia last summer, reports The Hacker News.

Computer Hacked, System Error, Virus, Cyber attack, Malware Concept. Danger Symbol. 3d rendering.

Network Security

Infections with abandoned PlugX USB worm continue to be prevalent

SC StaffApril 26, 2024

Millions of devices could still be compromised by the abandoned PlugX USB worm with self-replicating functionality, with infections logged from almost 2.5 million IP addresses over a six-month period beginning September 2023, according to Ars Technica.

Related Events

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news