In The News

• Tue Nov 9, 2021 - TeamTNT hackers target your poorly configured Docker servers

Poorly configured Docker servers and being actively targeted by the TeamTNT hacking group in an ongoing campaign started last month.

According to a report by researchers at TrendMicro, the actors have three distinct goals: to install Monero cryptominers, scan for other vulnerable Internet-exposed Docker instances, and perform container-to-host escapes to access the main network.

• Tue Nov 9, 2021 - Robinhood Data Breach Nightmare Hinged on Customer Service Slip

Robinhood Markets Inc. caught criticism last year for its shortcomings in customer support. After racing to staff up, the company has a new problem: a customer service representative mishap allowed a hacker to steal the personal information of about 7 million users.

• Mon Nov 8, 2021 - Haven’t switched from CentOS 8 yet? Here are your options

Nobody likes it when Big Tech changes its mind. It’s particularly frustrating when it involves a major course change on something so essential to technology infrastructure as a server operating system. But that’s exactly what happened in 2020 when Red Hat stopped supporting CentOS as a stable release.

• Mon Nov 8, 2021 - U.S. charges two suspected major ransomware operators

Two suspected criminal hackers have been charged in the United States in connection with a wave of ransomware attacks, including one that led to the temporary shutdown of the world’s largest meat processor and another that snarled businesses around the globe on the Fourth of July weekend, U.S. officials said Monday.

• Fri Nov 5, 2021 - FBI: Ransomware gangs hit several tribal-owned casinos in the last year

The FBI's Cyber Division said in a private industry notification issued earlier this week that ransomware gangs have hit several tribal-owned casinos, taking down their systems and disabling connected systems.

• Fri Nov 5, 2021 - Iranian Hacking Group Leaks Patient and LGBTQ Info

An Iranian hacking group has released highly sensitive personal information on hundreds of thousands of Israeli medical patients and members of an LGBTQ site, in a purported ransom attack.

• Fri Nov 5, 2021 - Reward! Uncle Sam promises $10m for info about DarkSide ransomware gang chiefs

US authorities are dangling a $10m reward for information on the DarkSide gang, while Interpol says half a dozen people were arrested in Ukraine on suspicion of being part of the Cl0p extortionist crew.

• Fri Nov 5, 2021 - NASA advised to study up on what open-source, free software, and permissive licenses actually mean

Houston, we've had a problem: our rocket scientists don't entirely understand the nuances of software licensing.

NASA, of course, is more than just rocket scientists. It's home to software engineers and other technical types, as well as those inclined to maintenance, management, and administration, and other less storied roles.

OSI: The Open Source Definition FSF: Free Software Definition. Wikipedia: Open Source Initiative

History of the Open-Source Initiative

• Fri Nov 5, 2021 - Amazon hasn't launched one internet satellite yet, but it's now planning a fleet of 7,774

Low Earth orbit is going to be chockablock with broadband-beaming birds

Amazon wants to launch another 4,538 satellites to provide wireless broadband internet under Project Kuiper, according to a fresh filing to America's communications watchdog.

• Thur Nov 4, 2021 - The FBI Warns of Fraudulent Schemes Leveraging Cryptocurrency ATMs and QR Codes to Facilitate Payment

The FBI warns the public of fraudulent schemes leveraging cryptocurrency ATMs and Quick Response (QR) codes to facilitate payment. The FBI has seen an increase in scammers directing victims to use physical cryptocurrency ATMs and digital QR codes to complete payment transactions.

• Thur Nov 4, 2021 - DATA BREACH: US Defense Contractor Electronic Warfare Hit

US defense contractor Electronic Warfare Associates (EWA) has disclosed a data breach after threat actors hacked their email system and stole files containing personal information.

Data Breach Notification. Corelis (electronic testing and analysis) Blackhawk (debugging tools)

• Thur Nov 4, 2021 - Popular 'coa' NPM library hijacked to steal user passwords

Popular npm library 'coa' was hijacked today with malicious code injected into it, ephemerally impacting React pipelines around the world.

The 'coa' library, short for Command-Option-Argument, receives about 9 million weekly downloads on npm, and is used by almost 5 million open source repositories on GitHub.

• Thur Nov 4, 2021 - Expired cert breaks Windows 11 snipping tool, emoji panel, S Mode features, other stuff

It has proved an unfortunate Halloween for Microsoft, with the ghost of an expired certificate haunting Windows 11 users. The upshot is: various built-in programs may stop working properly or cannot be opened at all.

• Tue Nov 2, 2021 - FBI: Ransomware targets companies during mergers and acquisitions

The Federal Bureau of Investigation (FBI) warns that ransomware gangs are targeting companies involved in "time-sensitive financial events" such as corporate mergers and acquisitions to make it easier to extort their victims..

• Mon Nov 1, 2021 - FBI: Ransomware targets companies during mergers and acquisitions

Academic researchers have released details about a new attack method they call “Trojan Source” that allows injecting vulnerabilities into the source code of a software project in a way that human reviewers can’t detect.

Trojan Source relies on a simple trick that does not require modifying the compiler to create vulnerable binaries.

CVE-2021-42574