About

Latest cybersecurity news from Israel


Medical doctor charged with creating the Thanos ransomware builder

17 May 2022Medical doctor charged with creating the Thanos ransomware builderVenezuelan cardiologist allegedly tied to cybercrime scams through multiple OpSec mistakes

Internal AWS credentials swiped by researcher via SQL payload

12 April 2022Internal AWS credentials swiped by researcher via SQL payloadAmazon cloud service acts quickly to close security hole in RDS

DDoS in Israel

Government websites knocked offline by ‘massive’ cyber-attack15 March 2022DDoS in IsraelGovernment websites knocked offline by ‘massive’ cyber-attack

DeepDotWeb administrator gets eight-year stretch in US prison

27 January 2022DeepDotWeb administrator gets eight-year stretch in US prisonTal Prihar pleaded guilty to his role in darknet kickback scheme last year

Attack the block

How a researcher cracked 70% of urban WiFi networks in one hit27 October 2021Attack the blockHow a researcher cracked 70% of urban WiFi networks in one hit

Israeli hospital cancels non-urgent procedures following ransomware attack

14 October 2021Israeli hospital cancels non-urgent procedures following ransomware attackNational cybersecurity agency braced for further serious network intrusions

Spook.js

New attack can bypass Chrome protections against Spectre exploits10 September 2021Spook.jsNew attack can bypass Chrome protections against Spectre exploits

APT focus: Iran

Iranian cyber-threat groups make up for lack of technical sophistication with social engineering trickery01 July 2021APT focus: IranIranian cyber-threat groups make up for lack of technical sophistication with social engineering trickery

Gaming mod development platform Overwolf fixes RCE bug

01 June 2021Gaming mod development platform Overwolf fixes RCE bugResearchers used custom URL schemes to achieve XSS and a sandbox escape

DeepDotWeb

Man pleads guilty for role in $8.4m darknet marketplace kickback scheme01 April 2021DeepDotWebMan pleads guilty for role in $8.4m darknet marketplace kickback scheme

Vulnerabilities in Treck TCP/IP stack open the door to numerous exploits

23 December 2020Vulnerabilities in Treck TCP/IP stack open the door to numerous exploitsAffected organizations – potentially a huge number – urged to update the networking protocol library

Where’s a Faraday cage when you need one?

Air-Fi attack exfiltrates data from air-gapped computers through WiFi signals23 December 2020Where’s a Faraday cage when you need one?Air-Fi attack exfiltrates data from air-gapped computers through WiFi signals

SD-WAN takeover

Silver Peak addresses three-pronged exploit in Unity Orchestrator11 November 2020SD-WAN takeoverSilver Peak addresses three-pronged exploit in Unity Orchestrator

Malware cartographers

Researchers map threat actors’ use of open source offensive security tools07 October 2020Malware cartographersResearchers map threat actors’ use of open source offensive security tools

Difficult-to-execute attack could break TLS encryption in rare circumstances

10 September 2020Difficult-to-execute attack could break TLS encryption in rare circumstancesThe implications of ‘Raccoon’ are dangerous, but the real-world threat is minor

Chipmaker Tower Semiconductor recovers from mystery cyber-attack

08 September 2020Chipmaker Tower Semiconductor recovers from mystery cyber-attackRansomware suspected – but unconfirmed – in debilitating assault

AI can stop IoT-based DDoS attacks in their tracks

11 August 2020AI can stop IoT-based DDoS attacks in their tracksMachine learning could be the key to preventing cyber-attacks

Promo.com data breach impacts 23m content creators

28 July 2020Promo.com data breach impacts 23m content creatorsVulnerability in third-party service exposed users’ personal information

GEDmatch data breach

Rival DNA testing site claims users are being phished using stolen info23 July 2020GEDmatch data breachRival DNA testing site claims users are being phished using stolen info

Threat intel alliance

Israel and India sign cybersecurity agreement to protect against coronavirus cyber-attacks22 July 2020Threat intel allianceIsrael and India sign cybersecurity agreement to protect against coronavirus cyber-attacks

Zoom fixes ‘vanity URL’ security issue that exposed users to phishing scams

21 July 2020Zoom fixes ‘vanity URL’ security issue that exposed users to phishing scamsNow-patched flaw made it easy for attackers to impersonate legitimate organizations

Yahoo breach settlement

Victims have less than a week to join million-dollar class action suit14 July 2020Yahoo breach settlementVictims have less than a week to join million-dollar class action suit

Coronavirus and cybercrime

Scammers’ shifting tactics revealed at Akamai virtual event02 July 2020Coronavirus and cybercrimeScammers’ shifting tactics revealed at Akamai virtual event

BIND 9 security releases address two high severity vulnerabilities

19 May 2020BIND 9 security releases address two high severity vulnerabilitiesMitigations against ‘NXNSAttack’ included in latest DNS server software updates

POWER-SUPPLaY

Audio-gapped defenses breached by covert channel hack06 May 2020POWER-SUPPLaYAudio-gapped defenses breached by covert channel hack

Split opens up in Europe on privacy control for Covid-19 contact-tracing apps

29 April 2020Split opens up in Europe on privacy control for Covid-19 contact-tracing appsRegardless of the approach taken, experts have reiterated the need to ensure citizens’ privacy is at the forefront of development plans

Coronavirus: UK contact-tracing app raises privacy concerns

Bluetooth model has its plus points, but is far from 100% secure17 April 2020Coronavirus: UK contact-tracing app raises privacy concernsBluetooth model has its plus points, but is far from 100% secure

#SocialSec – w/e 21 Feb

Hot takes on this week’s biggest cybersecurity news21 February 2020#SocialSec – w/e 21 FebHot takes on this week’s biggest cybersecurity news

France to open new cyber campus

14 February 2020France to open new cyber campusC’est la cyber

The social network

Israeli security pros using ‘Cybernet’ for threat intelligence21 January 2020The social networkIsraeli security pros using ‘Cybernet’ for threat intelligence

On the brink of cyber warfare

Attacks feared over US-Iranian escalation07 January 2020On the brink of cyber warfareAttacks feared over US-Iranian escalation

Cross-border collaboration

Israel and Romania sign cybersecurity partnership23 July 2019Cross-border collaborationIsrael and Romania sign cybersecurity partnership

World’s biggest brewer opens Israeli cybersecurity center

Anheuser-Busch InBev takes steps to protect against increasing attacks18 June 2019World’s biggest brewer opens Israeli cybersecurity centerAnheuser-Busch InBev takes steps to protect against increasing attacks

IDF air strike against Hamas hackers shocks infosec world

When is it legitimate for a nation-state to respond to a cyber-attack with the use of force?10 May 2019IDF air strike against Hamas hackers shocks infosec worldWhen is it legitimate for a nation-state to respond to a cyber-attack with the use of force?

IoT vendors must lead the charge when it comes to security

Recently disclosed vulnerabilities in Foscam and Axis cameras have underlined the ongoing security concerns in the burgeoning IoT space27 June 2018IoT vendors must lead the charge when it comes to securityRecently disclosed vulnerabilities in Foscam and Axis cameras have underlined the ongoing security concerns in the burgeoning IoT space