New iLOBleed Rootkit targets HP Enterprise servers with data wiping attacks.

Views expressed in this cybersecurity-intelligence update are those of the reporters and correspondents.

Accessed on 30 December 2021, 2131 UTC.

Content provided by email subscription to “The Hacker News Daily Newsletter.”

Source:

https://mail.google.com/mail/u/0/#inbox/FMfcgzGmtFChFHpQnKpxVVDKtPGDRVbd

Please click link or scroll down to read your selections.

The Hacker News Daily Updates
Top Healthcare Cybersecurity Threats of 2021

A look back at what happened this year in healthcare security

Download Now Sponsored
LATEST NEWS Dec 30, 2021
New iLOBleed Rootkit Targeting HP Enterprise Servers with Data Wiping Attacks

A previously unknown rootkit has been found setting its sights on Hewlett-Packard Enterprise’s Integrated Lights-Out (iLO) server management technology to carry out in-the-wild attacks that tamper with the firmware modules and completely wipe data off the infected systems. The discovery, which is …

Read More
Chinese APT Hackers Used Log4Shell Exploit to Target Academic Institution

A never-before-seen China-based targeted intrusion adversary dubbed Aquatic Panda has been observed leveraging critical flaws in the Apache Log4j logging library as an access vector to perform various post-exploitation operations, including reconnaissance and credential harvesting on targeted …

Read More
Ongoing Autom Cryptomining Malware Attacks Using Upgraded Evasion Tactics

An ongoing crypto mining campaign has upgraded its arsenal while evolving its defense evasion tactics that enable the threat actors to conceal the intrusions and fly under the radar, new research published today has revealed. Since first detected in 2019, a total of 84 attacks against its honeypot …

Read More
New Apache Log4j Update Released to Patch Newly Discovered Vulnerability

The Apache Software Foundation (ASF) on Tuesday rolled out fresh patches to contain an arbitrary code execution flaw in Log4j that could be abused by threat actors to run malicious code on affected systems, making it the fifth security shortcoming to be discovered in the tool in the span of a …

Read More
Experts Detail Logging Tool of DanderSpritz Framework Used by Equation Group Hackers

Cybersecurity researchers have offered a detailed glimpse into a system called DoubleFeature that’s dedicated to logging the different stages of post-exploitation stemming from the deployment of DanderSpritz, a full-featured malware framework used by the Equation Group. DanderSpritz came to light …

Read More
A Comparison of Innovative Active Directory Protection Solutions

An In-depth comparison of Active Directory security solutions from Attivo Networks, CrowdStrike, QOMPLX, Microsoft, and Tenable.

Download Now Sponsored

For the latest cybersecurity news and information, please check the blog sidebar and links.  Thanks for joining us today.

Russ Roberts (https://cyber-security-intelligence.org).