Global air transport data giant SITA has confirmed a data breach involving passenger data. The company said in a brief statement on Thursday that it had been the “victim of a cyberattack,” and that certain passenger data stored on its U.S. servers had been breached. The cyberattack was confirmed on February 24, after which the company contacted affected airlines.
Microsoft is working with partners and customers to expand its knowledge of the threat actor behind the nation-state cyberattacks that compromised the supply chain of SolarWinds and impacted multiple other organizations. Here they share their observations of the threat actor using both backdoor and other malware implants to establish sustained access to affected networks.
FireEye discovers a new backdoor uploaded by a U.S.-based entity to a public malware repository in August 2020 that they have named SUNSHUTTLE.
According to The Record, a fully weaponized exploit for the Spectre CPU vulnerability was uploaded on the malware-scanning website VirusTotal last month, marking the first time a working exploit capable of doing actual damage has entered the public domain. The exploit was discovered by French security researcher Julien Voisin. It targets Spectre, a major vulnerability that was disclosed in January 2018.
Intel is adding hardware-based ransomware detection to its 11th generation Core vPro processors, it announced at the CES Show this week. Intel says that “hardened PCs enable best practices for ransomware defense,” and is expecting this change to be a game changer in defending against ransomware.
HD Moore, famed developer of the wildly popular Metasploit penetration testing tool, is looking to launch a new project: Moore’s IT asset discovery tool. The goal? To solve one of the most basic yet confounding problems organizations face: getting a true inventory of all of the devices and services running in their increasingly diverse and growing networks.