Tag Archive for: previous

Firm hacked to spread ransomware had previous security flaws


For 21 years, the software company Kaseya labored in relative obscurity — at least until cybercriminals exploited it in early July for a massive ransomware attack that snarled businesses around the world and escalated U.S.-Russia diplomatic tensions.

But it turns out that the recent hack wasn’t the first major cybersecurity problem to hit the Miami-based company and its core product, which IT teams use to remotely monitor and administer workplace computer systems and other devices.

“It feels a little like déjà vu,” said Allie Mellen, a security analyst at Forrester Research.

In 2018, for instance, hackers managed to infiltrate Kaseya’s tool in 2018 to run a “cryptojacking” operation, which channels the power of afflicted computers to mine cryptocurrency — often without its victims noticing. It was a less harmful breach than the recent ransomware attack, which was impossible to miss since it crippled affected systems until their owners paid up. But it similarly relied on Kaseya’s Virtual System Administrator product, or VSA, as a vehicle to get access to the companies that rely on it.

A 2019 ransomware attack also rode into computers through another company’s add-on software component to the Kaseya VSA, causing more limited damage than the recent attack. Some experts have tied that earlier assault to some of the same hackers who later formed REvil, the Russian-language syndicate blamed for the latest attack.

And in 2014, Kaseya’s own founders sued the company in a dispute over responsibility for a VSA security flaw that allowed hackers to launch a separate cryptocurrency scheme. The court case does not appear to have been previously reported outside of a brief 2015 mention in a technical blog post. At the time, the founders denied responsibility for the vulnerability, calling the company’s charges against them a “bogus assertion.”

Nearly all of Kaseya’s security problems have as their root cause well-understood coding vulnerabilities that should have been addressed earlier, said cybersecurity expert Katie Moussouris, the founder and CEO of Luta Security.

“Kaseya needs to shape up, as does the entire software industry,” she said. “This is a failure…

Source…

“We apologise for the previous apology” – NZ gov dept in email CC: double-blunder

A government department in New Zealand has had to apologise twice after mixing up CC: and BCC: when apologising for mixing up CC: and BCC:. It’s a really easy mistake to make, so take a moment to remind yourself why it’s a bad idea…
Naked Security – Sophos

Do I have to uninstall my previous Norton Internet Security to upgrade?

I have an expired Norton Internet Security 2008 and I’m planning to get a Norton 2009 over the weekend. When I install, should I uninstall the 2008 one first, and then install my new one? Or will the 2009 version overwrite the old files? Also, if I bought a different brand, I should uninstall Norton 2008 first right?
Please answer both questions! Thank you