/ 05.15.19 / Alan Hernandez

Weekly Cybersecurity Review - Attackers Delete GitHub, GitLab, and Bitbucket repositories

Share This Post:

Weekly Cybersecurity Review - Attackers Delete GitHub, GitLab, and Bitbucket repositories

Russian Hacking Collective Claims Breach of Anti-Virus

securityweek.com - Author: Ionut Arghire - Date: May 10th, 2019 

A Russian hacking collective, known by its alias "Fxsmp", has claimed that they have breached three leading anti-virus companies. The hacking group has been operating in English and Russian-speaking underground communities since 2017. According to the hacking collective, they have broken their backs within the first quarter of 2019 to breach these companies. To make matters worse, they are offering network access for over $300,000 to anyone who is willing to pay.


Cyberattack Cripples Baltimore’s government Computer Servers

fifthdomain.com - Author: David McFadden - Date: May 8th, 2019 

Baltimore's government had to shut down most of its computer servers after their network was hit with a nasty ransomware virus. Since ransomware holds the files in a system ransom, the best thing that federal officials can do to move forward is to determine the origin of where the ransomware virus came from. It is currently not clear on how far spread the virus is in Baltimore's other systems.


Jenkins Vulnerability Exploited to Deliver 'Kerberods' Malware

securityweek.com - Author: Kacy Zurkus - Date: May 8th, 2019 

Late last year a vulnerability was was exploited by bad actors to deliver malware that deploys a Monero cryptocurrency miner and then search for additional victims to attach itself to. The vulnerability affects systems that use the Stapler HTTP request handling engine in Jenkins. A proof of concept of the vulnerability was released in early March and later was confirmed to be seen in the wild. The malware essentially attempts to gain root access privileges on the server, which it then uses to hide and ensure persistence. It then loads a Kerberods library into the operating system which hooks into other functions of Glibc, which acts like a rootkit.


Attackers Delete GitHub, GitLab, and Bitbucket Repositories and Replaces Them with Ransom Notes

cyware.com - Author: Ryan Stewart - Date: May 6th, 2019 

In one of the most malicious cases of ransom, recently, attackers have targeted GitHub, GitLab, and Bitbucket users by replacing victims' code and commits in their repositories with a ransom note that demands a bitcoin payment of 0.1, equivalent of 795.00 (as of 05/15/2019). A Github search revealed that almost 400 Github repositories have been targeted by this campaign.


Durian in Uni of Canberra library prompts evacuation of 550 people

canberratimes.com.au - Date: May 12th, 2019 

In Australia, Emergency Services and firefighters were deployed to the University of Canberra early Friday afternoon following reports of a "strong smell of gas" in the library. An update later confirmed that the source of the smell came from durian fruit.

The durian fruit is most common in southeast Asia where it is known for its incredibly strong smell. While some might describe the smell to be abrasive and pungent, others find the fruit to be aromatic and delicious.

The staff gave an update saying that the fruit was removed from the building in a sealed bag after being found near an air vent on level B of the library. Staff also commented that although food is allowed in parts of the library, it is not "appropriate student conduct if they did it on purpose, and lack of common sense if they didn't".

Have you had a chance to try durian fruit? And if so, is it really as bad as people say it is (or isn't)? Let us know in the comments below.

To read more about this story click the link below

Link to the original Article

Posted by Alan Hernandez