SARANGSoft

01/01/2023

01/17/2022

https://www.techspot.com/news/93008-custom-written-malware-discovered-across-windows-macos-linux.html

The custom-written, C++ based remote access trojan (RAT) that went completely undetected for several months may have been released around mid to late 2021. Named SysJoker by...

12/30/2021

10/06/2021

https://www.techradar.com/news/python-ransomware-strikes-virtual-machines-in-ultra-high-speed-attacks

Interesting attack path -- from breaching network to encrypting VMs running on VMwre ESXi in less than 3 hours:
1. Logged into network by compromising a TeamViewer account running in background on a computer for a user with domain Admin credentials.
2. Downloaded an IP scanner to map the network and identified the ESXi server.
3. Found that IT staff forgot to disable built-in SSH service in ESXi.
4. Logged into hypervisor to deploy 6kb size Python ransomware, which is capable and offered customizable options for the attacker.

The attack was unique for its speed and use of a Python ransomware

08/14/2021

On 15th August, 2021 India will celebrate its 75th Independence Day. As a software development and service company, SARANGSoft India Pvt Ltd (the India Development Center of SARANGSoft) is proud to be a part of Digital India and Make in India. From the beginning of our journey in 2000, we have been helping our global clientele by providing high quality solutions.

To celebrate this joyous occasion we are offering 25% promotional discount till August-end on all our software products. You will get the discount during product purchases. Looking forward to serving your technology needs.

See all the available products at https://sarangsoft.com/our-products.

#

07/06/2021

https://www.techspot.com/news/90294-huge-ransomware-attack-hits-hundreds-us-businesses.html

The situation has evolved into a more widespread security issue across the world. The REvil hacker group is claiming to have infected more than 1 million computers and asking for US$70 in ransom (as a volume discount?) to release all of those.

Kaseya states that it was made aware of a security incident around noon on Friday, as a result they put its cloud services into maintenance mode and...

07/06/2021

https://www.slashgear.com/microsoft-windows-printnightmare-vulnerability-is-being-actively-exploited-02680872/

Microsoft has issued an urgent warning over a Windows vulnerability, known as “PrintNightmare,” which could allow hackers to remotely run code on your PC. The exploit relies on a flaw i…

05/20/2021

As a legal strategy or whatever it is, Apple says macOS is not that secure. So, security is not a Windows-only issue after all.

https://www.protocol.com/apple-epic-trial/apples-craig-federighi-admits-macos-malware-level-is-not-acceptable

He admitted that macOS has a malware problem.

05/14/2021

Irish Health Service hit by .

https://www.computerweekly.com/news/252500777/Irish-health-service-hit-by-major-ransomware-attack

IT systems in hospitals across Ireland have been switched off following a significant ransomware attack.

05/14/2021

has open sourced tools to detect

Microsoft open sources tools to help organizations detect a nasty remote access trojan targeting the aviation, travel and cargo sectors.

05/06/2021

Email Server Flaws -- needs immediate update to the latest version. It's often installed by default with distros (e.g., Debian).

Newly disclosed Exim mail server bugs can be remotely exploited to allow attackers to gain complete root privileges.

05/06/2021

Millions of computers (shipped since 2009) have 5 in firmware update driver.

https://www.engadget.com/dell-driver-vulnerability-affects-hundreds-of-millions-of-p-cs-122028649.html

Support Page for the Security Update:
https://www.dell.com/support/kbdoc/en-us/000186019/dsa-2021-088-dell-client-platform-security-update-for-dell-driver-insufficient-access-control-vulnerability

Dell released an update utility to mitigate a security vulnerability affecting the dbutil_2_3.sys driver packaged with Dell Client firmware update utility packages and tools.