Cyber Maze Pty Ltd

Cyber Maze Pty Ltd Providing Cyber Security Products and Consultancy Services

A recent study by IBM revealed that organizations with fewer than 500 employees had an average data breach cost of $2.98...
22/11/2021

A recent study by IBM revealed that organizations with fewer than 500 employees had an average data breach cost of $2.98 million per incident in 2021. As has been reported, approximately 60% of SMBs go out of business within six months of getting hacked.

Smaller companies are not exempt from cyberattacks; in fact, it’s quite the opposite. Yet many of the tools and resources that larger companies have at their disposal to protect them from cyberattacks are not befitting for smaller companies. There is a gap in the market.

The Conti ransomware group has suffered an embarrassing data breach after a security firm was able to identify the real ...
22/11/2021

The Conti ransomware group has suffered an embarrassing data breach after a security firm was able to identify the real IP address of one of its most sensitive servers and then gain console access to the affected system for more than a month.

The exposed server, called a payment portal or recovery site, is where the Conti gang tells victims to visit in order to negotiate ransom payments.

“Our team detected a vulnerability in the recovery servers that Conti uses, and leveraged that vulnerability to discover the real IP addresses of the hidden service hosting the group’s recovery website,” Swiss security firm Prodaft said in a 37-page report published on Thursday, identifying the server as hosted on 217.12.204.135, an IP address owned by Ukrainian web hosting company ITL LLC.

Bugcrowd released a report which provides CIOs and CISOs valuable insight on ethical hackers and the economics of securi...
22/11/2021

Bugcrowd released a report which provides CIOs and CISOs valuable insight on ethical hackers and the economics of security research. New findings indicate a startling shift in the threat landscape with 8 out of 10 ethical hackers recently having identified a vulnerability they had never seen before.

This comprehensive annual study offers an in-depth look at ethical hackers to reveal how they reduce risk, which industries leverage their expertise most, and what organizations are doing to attract high-performing security researchers to their programs. It also indicates the growing geographic disparity in crowdsourced cybersecurity investment, with continental Europe allocating 79% less budget to ethical hacking than North America.

The report analyzes survey responses and security research conducted on the Bugcrowd Platform from May 1, 2020, to August 31, 2021, in addition to millions of proprietary data points collected on vulnerabilities from 2,961 security programs.

The new visibility challenge, with so much core business depending on interconnecting processes and data via APIs, requi...
22/11/2021

The new visibility challenge, with so much core business depending on interconnecting processes and data via APIs, requires that companies need to know what APIs they expose externally and internally and how they should behave.

Most organizations are only aware of a portion of their APIs and typically grossly underestimate the actual number. Discovering all APIs eludes nearly all organizations. Most attempt to catalog their APIs and ideally append them with descriptions and details. Even from the onset this is a massive task that manages to identify only a portion of those in use, according to our audits of various enterprises.

The Magniber ransomware gang is now using two Internet Explorer vulnerabilities and malicious advertisements to infect u...
14/11/2021

The Magniber ransomware gang is now using two Internet Explorer vulnerabilities and malicious advertisements to infect users and encrypt their devices.

The two Internet Explorer vulnerabilities are tracked as CVE-2021-26411 and CVE-2021-40444, with both having a CVSS v3 severity score of 8.8.

The first one, CVE-2021-26411, was fixed in March 2021 and is a memory corruption flaw triggered by viewing a specially crafted website.

Sophisticated hackers used flaws in macOS and iOS to install malware on Apple devices that visited Hong Kong–based media...
14/11/2021

Sophisticated hackers used flaws in macOS and iOS to install malware on Apple devices that visited Hong Kong–based media and pro-democracy websites. The so-called watering hole attacks cast a wide net, indiscriminately placing a backdoor on any iPhone or Mac unfortunate enough to visit one of the affected pages.

Apple has patched the various bugs that allowed the campaign to unfold. But a report Thursday from Google's Threat Analysis Group shows how aggressive the hackers were and how broadly their reach extended. It's yet another case of previously undisclosed vulnerabilities, or zero-days, being exploited in the wild by attackers. Rather than a targeted attack that focuses on high-value targets like journalists and dissidents, though, the suspected state-backed group went for scale.

We found a suspicious GoELFsample, which is a downloder mainly to spread mining malwares. The interesting part is that w...
14/11/2021

We found a suspicious GoELFsample, which is a downloder mainly to spread mining malwares. The interesting part is that we noticed it using namesilo's Parking page and Google's user-defined page to spread the sample and configuration. Apparently this is yet another attempt to hide control channel to avoid being tracked|monitored|blocked from the malicious actor and it probably has served them well.

The exact sample had been reported by Tencent security team, but the analysis of the propagation is not quite accurate. It is often thought that during the domain parking period (Domain Parking), the content displayed on the page is managed by the domain parking provider, and the actual owner of the domain cannot modify its page content. However, in this case, the domain parking provider allows the domain owner to customize the parking page. The attacker took advantage of this, along with the custom pages provided by Google, to spread his malware.

The Pysa ransomware group dumped dozens of victims onto their leak site this week right after US law enforcement officia...
14/11/2021

The Pysa ransomware group dumped dozens of victims onto their leak site this week right after US law enforcement officials announced a range of actions taken against ransomware groups.

A few days back we saw the Groove gang urging all ransomware gangs to come together and target the U.S. public sector. N...
11/11/2021

A few days back we saw the Groove gang urging all ransomware gangs to come together and target the U.S. public sector. Now, a report found that Russian military hackers employed a particular technique to hide their activities while attacking high-level American targets.

The hackers—reportedly belonging to Russia’s Foreign Intelligence Service—leverage residential IP proxies to gain access and mask their activities. Residential proxies are IP addresses with a certain location and can be bought on the internet. These hackers are the same ones who conducted the infamous SolarWinds attack, dubbed Nobelium by Microsoft. The main targets of the campaign included government agencies and several industries that are related to Russian affairs.

Bait attacks are on the rise, and it appears that actors who distribute this special kind of phishing emails prefer to u...
11/11/2021

Bait attacks are on the rise, and it appears that actors who distribute this special kind of phishing emails prefer to use Gmail accounts to conduct their attacks.

According to a report by Barracuda, who surveyed 10,500 organizations, 35% of them received at least one bait attack email in September 2021 alone.
A "bait attack" is a sub-class of phishing where threat actors attempt to gather basic information about a specific target and use it for more targeted and effective attacks in the future.

US defense contractor Electronic Warfare Associates (EWA) has disclosed a data breach after threat actors hacked their e...
08/11/2021

US defense contractor Electronic Warfare Associates (EWA) has disclosed a data breach after threat actors hacked their email system and stole files containing personal information.

The company claims the breach's impact was limited but confirmed that the threat actor managed to exfiltrate files containing sensitive information.

As detailed in a notice to the Montana Attorney General's office, EWA discovered that a threat actor took over one of their email accounts on August 2, 2021.

The Australian Cyber Security Center (ACSC) is alerting web admins of the active exploitation of CVE-2021-42237, a remot...
08/11/2021

The Australian Cyber Security Center (ACSC) is alerting web admins of the active exploitation of CVE-2021-42237, a remote code ex*****on flaw in the Sitecore Experience Platform (Sitecore XP).

Sitecore XP is an enterprise-level content management system with data analytics (CMS) used by well-known companies, including American Express, IKEA, Carnival Cruise Lines, L'Oréal, and Volvo.

Address

Level 14, 3 Parramatta Square, 153 Macquarie Street
Parramatta, NSW
2150

Opening Hours

Monday 9am - 5pm
Tuesday 9am - 5pm
Wednesday 9am - 5pm
Thursday 9am - 5pm
Friday 9am - 5pm

Website

Alerts

Be the first to know and let us send you an email when Cyber Maze Pty Ltd posts news and promotions. Your email address will not be used for any other purpose, and you can unsubscribe at any time.

Shortcuts

Share

Category