The United States Cyber Command has publicly recognized the use of offensive actions (cyberattacks) in order to neutralize cybercriminal groups that attacked American companies using ransomware programs. The Head of Cyber Command and director of the National Security Agency Paul Nakasone, in an interview with the New York Times, declined to elaborate on exactly what… Continue reading US Cyber Command confirms cyberattacks against ransomware
Tag: NSA
NSA warns of ALPACA attacks that use wildcard certificates
The US National Security Agency issued a security bulletin warning companies not to use wildcard TLS certificates due to their insecurity and the ALPACA TLS attacks. Let me remind you that wildcard certificates are TLS certificates that are provided by certification authorities and can be used simultaneously for a domain and for all its subdomains… Continue reading NSA warns of ALPACA attacks that use wildcard certificates
US and UK accused China for attacks on Microsoft Exchange servers
The United States and a coalition of its allies, including the EU, Britain and NATO, have formally accused China and its authorities of a large-scale hacking campaign to break into Microsoft Exchange servers. Let me remind you that these attacks have been going on since the beginning of 2021 and are targeted tens of thousands… Continue reading US and UK accused China for attacks on Microsoft Exchange servers
FBI and NSA release a statement about attacks by Russian hackers
The FBI and NSA claim that a group of Russian government hackers are brute-forcing companies and organizations around the world. The NSA, the Department of Homeland Security (DHS CISA), Cybersecurity and Infrastructure Protection Agency, the FBI and the UK National Cybersecurity Center (NCSC) issued a joint statement warning that the Russian “government hack group from… Continue reading FBI and NSA release a statement about attacks by Russian hackers
IS specialist introduced a PoC exploit for one of the most dangerous vulnerabilities in Windows
The day after the release of the fix for one of the most dangerous vulnerabilities in the history of Windows, security researcher Saleem Rashid demonstrated how it can be used to present a malicious site as any site on the Internet in terms of cryptography. The talk is about the vulnerability CVE-2020-0601 in the cryptographic… Continue reading IS specialist introduced a PoC exploit for one of the most dangerous vulnerabilities in Windows