securityXspace: a blog about cyber-philosophy.

Enlarge / The Internet this week, more or less (credit: torange.biz (modified) ) Last week, Verizon caused a major BGP misroute that took large chunks of the Internet, including CDN company Cloudflare, partially down for a day. This week, the rest of the Internet has apparently asked Verizon to hold its beer. Source: The Internet…

When Sodin (also known as Sodinokibi and REvil) appeared in the first half of 2019, it immediately caught our attention for distributing itself through an Oracle Weblogic vulnerability and carrying out attacks on MSP providers . In a detailed analysis, we discovered that it also exploits the CVE-2018-8453 vulnerability to elevate privileges in Windows (rare…

This is a short placeholder blog and will be replaced with a full post-mortem and disclosure of what happened today. For about 30 minutes today, visitors to Cloudflare sites received 502 errors caused by a massive spike in CPU utilization on our network. Source: Cloudflare outage caused by bad software deploy (updated)

Simple DirectMedia Layer contains two vulnerabilities that could an attacker to remotely execute code on the victim’s machine. Both bugs are present in the SDL2_image library, which is used for loading images in different formats. Source: Vulnerability Spotlight: Remote code execution vulnerabilities in Simple DirectMedia Layer

The U.S. Cyber Command (USCYBERCOM) on Tuesday warned that it had spotted attacks exploiting a Microsoft Outlook vulnerability tracked as CVE-2017-11774 in an effort to deliver malware. read more Source: U.S. Cyber Command Warns of Outlook Flaw Exploited by Iranian Hackers

Unsurprisingly…. Source: Florida Employee Fired After Paying $460,000 Bitcoin Ransom

A new Ransomware appeared in the threat landscape, the malware began to threats the digital world. This time using a scary name: LooCipher . Introduction A new Ransomware began to threats the digital world. This time using a nice but scary name: LooCipher . Source: LooCipher: The New Infernal Ransomware

Google has started rolling out this month’s security updates for its mobile operating system platform to address a total of 33 new security vulnerabilities affecting Android devices, 9 of which have been rated critical in severity. Source: Android July 2019 Security Update Patches 33 New Vulnerabilities

BlackBerry Cylance security researchers have analyzed a suite of remote access Trojans (RATs) that the Vietnam-linked threat actor OceanLotus has been using in attacks for the past three years. read more Source: Researchers Analyze Vietnamese Hackers’ Suite of RATs

Researchers at Cisco Talos group have discovered a new exploit kit dubbed Spelevo that spreads via a compromised business-to-business website. Malware researchers at Cisco Talos have discovered a new exploit kit dubbed Spelevo that spreads via a compromised business-to-business website. Source: Talos discovered Spelevo EK, an exploit kit spreading via B2B Website