Source: www.bleepingcomputer.com – Author: Bill Toulas A new campaign distributing the RomCom backdoor malware is impersonating the websites of well-known or fictional software, tricking users into...
Author:
Flash loan attack on Jimbos Protocol steals over $7.5 million – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas Jimbos Protocol, an Arbitrum-based DeFi project, has suffered a flash loan attack that resulted in the loss of more than...
MCNA Dental data breach impacts 8.9 million people after ransomware attack – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas Managed Care of North America (MCNA) Dental has published a data breach notification on its website, informing almost 9 million...
Lazarus hackers target Windows IIS web servers for initial access – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas The notorious North Korean state-backed hackers, known as the Lazarus Group, are now targeting vulnerable Windows Internet Information Services (IIS)...
PyPI announces mandatory use of 2FA for all software publishers – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas The Python Package Index (PyPI) has announced that it will require every account that manages a project on the platform...
Hot Pixels attack checks CPU temp, power changes to steal data – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas A team of researchers at Georgia Tech, the University of Michigan, and Ruhr University Bochum have developed a novel attack...
Mozilla stops Firefox fullscreen VPN ads after user outrage – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas Firefox users have been complaining about very intrusive full-screen advertisements promoting Mozilla VPN displayed in the web browser when navigating an...
BlackByte ransomware claims City of Augusta cyberattack – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas The city of Augusta in Georgia, U.S., has confirmed that the most recent IT system outage was caused by unauthorized access...
Predator: Looking under the hood of Intellexa’s Android spyware – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas Image: Bing Create Security researchers at Cisco Talos and the Citizen Lab have presented a new technical analysis of the...
D-Link fixes auth bypass and RCE flaws in D-View 8 software – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas D-Link has fixed two critical-severity vulnerabilities in its D-View 8 network management suite that could allow remote attackers to bypass...
Zyxel warns of critical vulnerabilities in firewall and VPN devices – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas Zyxel is warning customers of two critical-severity vulnerabilities in several of its firewall and VPN products that attackers could leverage without authentication....
‘Operation Magalenha’ targets credentials of 30 Portuguese banks – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas A Brazilian hacking group has been targeting thirty Portuguese government and private financial institutions since 2021 in a malicious campaign...
New Buhti ransomware gang uses leaked Windows, Linux encryptors – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas A new ransomware operation named ‘Buhti’ uses the leaked code of the LockBit and Babuk ransomware families to target Windows...
GitLab ‘strongly recommends’ patching max severity flaw ASAP – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas GitLab has released an emergency security update, version 16.0.1, to address a maximum severity (CVSS v3.1 score: 10.0) path traversal...
Iranian hackers use new Moneybird ransomware to attack Israeli orgs – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas Image: Bing Create A suspected Iranian state-supported threat actor known as ‘Agrius’ is now deploying a new ransomware strain named...
GoldenJackal state hackers silently attacking govts since 2019 – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas Image: Bing Create A relatively unknown advanced persistent threat (APT) group named ‘GoldenJackal’ has been targeting government and diplomatic entities...
Arms maker Rheinmetall confirms BlackBasta ransomware attack – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas German automotive and arms manufacturer Rheinmetall AG confirms that it suffered a BlackBasta ransomware attack that impacted its civilian business....
IT employee impersonates ransomware gang to extort employer – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas A 28-year-old United Kingdom man from Fleetwood, Hertfordshire, has been convicted of unauthorized computer access with criminal intent and blackmailing...
Cuba ransomware claims cyberattack on Philadelphia Inquirer – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas The Cuba ransomware gang has claimed responsibility for this month’s cyberattack on The Philadelphia Inquirer, which temporarily disrupted the newspaper’s...
Malicious Windows kernel drivers used in BlackCat ransomware attacks – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas The ALPHV ransomware group (aka BlackCat) was observed employing signed malicious Windows kernel drivers to evade detection by security software...
Crypto phishing service Inferno Drainer defrauds thousands of victims – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas A cryptocurrency phishing and scam service called ‘Inferno Drainer’ has reportedly stolen over $5.9 million worth of crypto from 4,888...
EU slaps Meta with $1.3 billion fine for moving data to US servers – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas The Irish Data Protection Commission (DPC) has announced a $1.3 billion fine on Facebook after claiming that the company violated...
Google will delete accounts inactive for more than 2 years – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas Google has updated its policy for personal accounts across its services to allow a maximum period of inactivity of two...
Android phones are vulnerable to fingerprint brute-force attacks – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas Researchers at Tencent Labs and Zhejiang University have presented a new attack called ‘BrutePrint,’ which brute-forces fingerprints on modern smartphones...
Cloned CapCut websites push information stealing malware – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas A new malware distribution campaign is underway impersonating the CapCut video editing tool to push various malware strains to unsuspecting...
ASUS routers knocked offline worldwide by bad security update – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas ASUS has apologized to its customers for a server-side security maintenance error that has caused a wide range of impacted...
Luxottica confirms 2021 data breach after info of 70M leaks online – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas Luxottica has confirmed one of its partners suffered a data breach in 2021 that exposed the personal information of 70...
Cybercrime gang pre-infects millions of Android devices with malware – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas A large cybercrime enterprise tracked as the “Lemon Group” has reportedly pre-installed malware known as ‘Guerilla’ on almost 9 million...
KeePass exploit helps retrieve cleartext master password, fix coming soon – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas The popular KeePass password manager is vulnerable to extracting the master password from the application’s memory, allowing attackers who compromise...
Hackers target vulnerable WordPress Elementor plugin after PoC released – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas Hackers are now actively probing for vulnerable Essential Addons for Elementor plugin versions on thousands of WordPress websites in massive...