Exploit Archives - Elteni

Phantom Extortion Phishing Targeting Financial Services Firms!

Elteni — Wed, 22 Mar 2023 22:35:36 +0000

Recently a few of our clients were recipients of phishing email leveraging scare tactics, also known as the Phantom Extortion Scam. This scam involves cyber criminals sending fake emails or messages to individuals or businesses, claiming that there has been a security breach or incident involving sensitive client or organization data. The cyber criminals then

The post Phantom Extortion Phishing Targeting Financial Services Firms! appeared first on Elteni.

Apache Log4j 2 Vulnerability

Elteni — Mon, 13 Dec 2021 13:08:37 +0000

You probably heard the news this weekend about the new critical remote code execution vulnerability affecting Apache log4j 2. A remote code execution vulnerability is an attack that can be launched from anywhere in the world, as long as an affected system is available remotely. Why is important? The vulnerability affects millions of devices, including

The post Apache Log4j 2 Vulnerability appeared first on Elteni.

Next Generation Ransomware Attacks

Elteni — Sat, 09 Oct 2021 10:09:49 +0000

Ransomware, the word alone evokes fear into many companies. How did this form of crime actually start? In 1989, Dr. Joseph L. Popp created the first ransomware called the "AIDS Trojan." This trojan virus encrypted files on a computer after rebooting a number of times. Fast forward to 2006, Archiveus, a computer virus that affected

The post Next Generation Ransomware Attacks appeared first on Elteni.

Critical Apple vulnerability exploited to eavesdrop!

Elteni — Tue, 14 Sep 2021 22:12:31 +0000

Apple has released an emergency security update to address vulnerabilities in iOS and iPadOS for a zero-click zero day exploit that allows the installation of malware on a device. An attacker could exploit these vulnerabilities to take control of an affected device if they are unpatched. "Attacks like the ones described are highly sophisticated, cost

The post Critical Apple vulnerability exploited to eavesdrop! appeared first on Elteni.

What is Ethical Hacking? Everything You Need to Know About Ethical Hacking—With Examples

Elteni — Tue, 13 Apr 2021 14:33:35 +0000

Our founder Anand Mohabir was interviewed by Kindra Cooper, from Springboard, on the topic of Ethical hacking. “There’s a lot that comes into play when you’re trying to become an ethical hacker. You have to know how a network is designed and operated, how servers interact, how virtual machines, storage and firewalls work,” said Mohabir.

The post What is Ethical Hacking? Everything You Need to Know About Ethical Hacking—With Examples appeared first on Elteni.

2021 SEC OCIE Cybersecurity Exam Priorities

Elteni — Thu, 04 Mar 2021 05:36:42 +0000

Yesterday the U.S. Securities and Exchange Commission (SEC) Office of Compliance Inspections and Examinations (OCIE) released its 2021 exam priorities. In the letter the SEC highlighted that their focus remains the same from prior years with a slight shift in priorities and adjustment of focus. The SEC stated that they will review whether firms have

The post 2021 SEC OCIE Cybersecurity Exam Priorities appeared first on Elteni.

Solarwinds ORION delivers backdoor Trojan to worldwide networks

Elteni LLC — Mon, 14 Dec 2020 15:03:35 +0000

Fireye detected that Solarwinds Orion is being used by attackers to steal sensitive company data. Fireye’s threat research division found that a highly sophisticated and evasive attacker compromised the Solarwind’s Orion IT monitoring and management platform to deliver a backdoor trojan. It is suspected that the campaign has started as early as April 2020 and

The post Solarwinds ORION delivers backdoor Trojan to worldwide networks appeared first on Elteni.

Major service provider to the financial services industry was breached

Elteni LLC — Wed, 29 Jul 2020 21:55:00 +0000

A service provider of SEI Investments Co., affected by a ransomware attack. SEI Investments Co., a fund administrator for several high-profile asset management firms experienced a breach, exposing the personal information of investors for approximately 100 clients. SEI stated that the breach occurred through one of their service providers that faced a ransomware attack. M.J.

The post Major service provider to the financial services industry was breached appeared first on Elteni.

Critical Wormable Vulnerability Affecting Windows DNS Servers

Elteni LLC — Wed, 15 Jul 2020 17:36:42 +0000

Critical Wormable Vulnerability Affecting Windows DNS Servers On July 14, 2020 Microsoft publicly disclosed a critical vulnerability affecting Windows DNS Server. https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1350 As a reminder DNS (Domain Naming System) servers are used primarily to resolve IP addresses. DNS is used for locating and identifying computer services and devices on the internet, such as email servers,

The post Critical Wormable Vulnerability Affecting Windows DNS Servers appeared first on Elteni.

OCIE issues a new Cybersecurity: Ransomware Alert

Elteni LLC — Fri, 10 Jul 2020 22:36:20 +0000

Today the OCIE issued a Ransomware Alert, highlighting an uptick in sophisticated social engineering and other cyber campaigns, designed to infiltrate the networks of financial institutions to access sensitive information and/or to deploy ransomware. As a reminder, ransomware actors typically demand monetary payment for the return of data. We can spend time regurgitating what was

The post OCIE issues a new Cybersecurity: Ransomware Alert appeared first on Elteni.