November 27, 2020

attack

JERUSALEM (AP) – Israeli forces Wednesday shot and killed a Palestinian motorist who police say tried to carry out a car-ramming attack at a West Bank checkpoint.

In a statement, police said the man presented false documents at the checkpoint, and when he was questioned about them, sped his car toward an Israeli soldier.

Police said that forces opened fire and stopped the man, who was later pronounced dead at a Jerusalem hospital. Police said the soldier was lightly hurt.

Police did not immediately release a video of the incident.

Palestinian attackers, usually acting on their own, have carried out dozens of attempted stabbings and car rammings against Israeli forces in recent years.

But Palestinians and human rights groups accuse Israeli forces of frequently using excessive force, and in some cases, of killing innocent people mistaken as attackers.

Sign up for Daily Newsletters

Copyright © 2020 The Washington Times, LLC.

!function(f,b,e,v,n,t,s){if(f.fbq)return;n=f.fbq=function(){n.callMethod? n.callMethod.apply(n,arguments):n.queue.push(arguments)};if(!f._fbq)f._fbq=n; n.push=n;n.loaded=!0;n.version='2.0';n.queue=[];t=b.createElement(e);t.async=!0; t.src=v;s=b.getElementsByTagName(e)[0];s.parentNode.insertBefore(t,s)}(window, document,'script','https://connect.facebook.net/en_US/fbevents.js');

fbq('init', '329974197684672'); fbq('init', '450591302454597');

fbq('track', "PageView"); fbq('track', 'ViewContent');

fbq('trackSingle', '450591302454597' , 'Subscribe', {value: '0.00', currency: 'USD', predicted_ltv: '0.00'}); (function (d, s, id) { var js, fjs = d.getElementsByTagName(s)[0]; if (d.getElementById(id)) return; js = d.createElement(s); js.id = id; js.src = "https://connect.facebook.net/en_US/sdk.js#xfbml=1&version=v2.5"; fjs.parentNode.insertBefore(js, fjs); }(document, 'script', 'facebook-jssdk'));

Source Article

...

Researchers have uncovered a worldwide campaign targeting businesses using the recently-disclosed ZeroLogon vulnerability. 

The active cyberattack is thought to be the handiwork of Cicada, also tracked as APT10, Stone Panda, and Cloud Hopper. 

Historically, the threat group — first discovered in 2009 and one that the US believes may be sponsored by the Chinese government — has targeted organizations connected to Japan, and this latest attack wave appears to be no different.

Symantec researchers have documented companies and their subsidiaries in 17 regions, involved in automotive, pharmaceutical, engineering, and the managed service provider (MSP) industry, which have been recently targeted by Cicada.

See also: Chaes malware strikes customers of Latin America’s largest e-commerce platform

According to the company, Cicada’s latest attack wave has been active since mid-October in 2019 and has continued up to at least October this year. 

Cicada appears to be well-resourced and uses a variety of tools and techniques. This includes DLL side-loading, network reconnaissance, credential theft, command-line utilities able to install browser root certificates and decode data, PowerShell scripts, and both RAR archiving and a legitimate cloud hosting provider for the download, packaging, and exfiltration of stolen information. 

Of particular note is a recent addition to the hacking group’s toolkit; a tool able to exploit ZeroLogon. Tracked as CVE-2020-1472, issued a CVSS score of 10, and both disclosed and patched by Microsoft in August, the vulnerability can be used to spoof domain controller accounts and hijack domains, as well as compromise Active Directory identity services.

CNET: Trump fires top cybersecurity official for debunking election fraud claims

Cicada has also launched Backdoor.Hartip, a custom form of malware not before seen in connection to the APT, against its targets. 

It appears that the group is focused on the theft of information and cyberespionage. Data of interest — including corporate records, HR documents, meeting memos, and expense information — is often packaged up and whisked away to Cicada’s command-and-control (C2) servers. 

“The amount of time the attackers spent on the networks of victims varied, with the attackers spending a significant amount of time on the networks of some victims, while spending just days on other victim networks,” the researchers say. “In some cases, too, the attackers spent some time on a network but then the activity would cease, but start again some months later.”

TechRepublic: How to secure your Zoom account with two-factor authentication

The campaign has been assessed with “medium” confidence to Cicada due to clues in how code is obfuscated; the use of DLL side-loading and DLL names including “FuckYouAnti,” which has been previously documented in a Cylance report on the same APT. In addition, the final payload combines QuasarRAT, used in the past by Cicada, as well as Backdoor.Hartip.

“Cicada clearly still has access to a lot of resources and skills to allow it to carry out a sophisticated and wide-ranging campaign like this, so the group remains highly dangerous,” Symantec says. “Its use of a tool to exploit the recently disclosed ZeroLogon vulnerability and a

…...



a man and a woman walking down a street: MailOnline logo


© Provided by Daily Mail
MailOnline logo

A knife gang jumped out of a car and stabbed a teenager in a ‘brazen’ broad daylight attack which left passers-by stunned, police say.

Officers say four men jumped out of a VW Passat before carrying out the attack on a 16-year-old in the Redbridge area of east London.

Today police have released CCTV stills of two men they would like to speak to following the attack, which took on a residential road in Ilford.



a man riding a skateboard down a sidewalk: Today police have released CCTV stills of two men they would like to speak to (pictured) following the attack, which took on a residential road in Ilford


© Provided by Daily Mail
Today police have released CCTV stills of two men they would like to speak to (pictured) following the attack, which took on a residential road in Ilford

One of the suspects was armed with a knife and stabbed the teenager in the arm, police say. The men then fled the scene in the car.

Officers and London Ambulance Service attended the incident, which took place around 2.45pm on October 1.

The teenager was taken to hospital for treatment following the attack, before later being discharged.

Detective Constable Charlotte Joseph from the East Area Command Unit said: ‘This was a brazen attack carried out in broad daylight in the middle of a busy street.



a man looking at the camera: Officers say four men jumped out of a car before carrying out the attack on a 16-year-old in the Redbridge area of east London. Pictured: Police have released CCTV of two men they would like to speak to


© Provided by Daily Mail
Officers say four men jumped out of a car before carrying out the attack on a 16-year-old in the Redbridge area of east London. Pictured: Police have released CCTV of two men they would like to speak to



a person standing on a sidewalk: Officers and London Ambulance Service attended the incident, which took place around 2.45pm on October 1. Pictured: Police have released CCTV of two men they would like to speak to


© Provided by Daily Mail
Officers and London Ambulance Service attended the incident, which took place around 2.45pm on October 1. Pictured: Police have released CCTV of two men they would like to speak to

‘Those involved are clearly dangerous individuals who need to be apprehended.

‘I would ask anyone who recognises the two males in the images, or who has information that could identify the others involved to contact police immediately.’

Anyone with information is asked to contact police on 101 or tweet @MetCC and quote CAD3895/1Oct.

Alternatively, call the independent charity Crimestoppers anonymously on 0800 555 111. 

Read more

Source Article

...