Vladimir Krasnogolovy, Author at Gridinsoft Blogs

Security News

Experts hacked Bluetooth test for COVID-19

ByVladimir KrasnogolovyDecember 24, 2021

Researchers at F-Secure hacked a home Bluetooth COVID-19 test and were able to fake the test result. For testing, the experts took the Ellume COVID-19 Home Test device, which uses an analyzer that connects to a smartphone via Bluetooth and works in tandem with the

Security News

The 2easy trading platform is gaining popularity on the darknet

ByVladimir KrasnogolovyDecember 22, 2021

KELA analysts say that the 2easy trading platform is gaining popularity on the darknet, gradually becoming an important player in the sale of stolen data. The company’s report states that the stolen information was collected from approximately 600,000 devices infected

Security News

Another vulnerability found in Log4j, this time it is a denial of service

ByVladimir KrasnogolovyDecember 21, 2021

Log4Shell, recently discovered in the popular logging library Log4j, which is part of the Apache Logging Project, continues to get worse, as another vulnerability has been found. This time it is time a “denial of service” vulnerability. The problem was originally discovered

Security News

Log4j vulnerability threatens 35,000 Java packages

ByVladimir KrasnogolovyDecember 20, 2021

Google scanned Maven Central, the largest Java repository to date, and found that the Log4j vulnerability threatened 35,863 Java packages. The packages are vulnerable to either the original Log4Shell exploit (CVE-2021-44228) or the second RCE problem discovered after the

Security News

The FBI believes that the HelloKitty cryptor is controlled by operators from Ukraine

ByVladimir KrasnogolovyDecember 16, 2021

A medical organization from Oregon, which recently reported a breach and data leak, accidentally made it clear that, according to the FBI, HelloKitty (FiveHands) malware is controlled by operators from the territory of Ukraine. As a rule, law enforcement agencies do not

Security News

Microsoft patches Windows AppX Installer vulnerability that spreads Emotet malware

ByVladimir KrasnogolovyDecember 15, 2021

The latest of this year, December’s patch Tuesday brought fixes for six 0-day vulnerabilities in Microsoft products, including a bug in the Windows AppX Installer that uses Emotet malware to spread. Microsoft patched 67 vulnerabilities in its products this month, seven

Security News

Experts are already fixing attacks on the Log4Shell vulnerability

ByVladimir KrasnogolovyDecember 14, 2021

Security researchers are already scanning the network looking for products affected by a dangerous bug in the Log4j library and are fixing results of cybercriminals’ attacks on a Log4Shell vulnerability. The vulnerability is already being exploited to deploy miners, Cobalt

Security News

Major corporations teamed up to fight AI bias

ByVladimir KrasnogolovyDecember 13, 2021

American corporations have teamed up to form the Data & Trust Alliance, which has developed a software assessment system to fight AI bias. When hiring employees, HR departments are increasingly turning to artificial intelligence (AI) technologies for help. With their

Security News

0-day in Log4j library poses a threat to many applications and servers

ByVladimir KrasnogolovyDecember 10, 2021

The Apache Software Foundation has released an emergency security update that fixes a 0-day vulnerability (CVE-2021-44228) in the popular Log4j logging library, which is part of the Apache Logging Project. The patch was released as part of the 2.15.0 release. The

Security News

Emotet now installs Cobalt Strike beacons

ByVladimir KrasnogolovyDecember 9, 2021

The researchers warn that Emotet now directly installs Cobalt Strike beacons on infected systems, providing immediate access to the network for attackers. Those can use it for lateral movement, which will greatly facilitate extortion attacks. Let me remind you that usually