Source: www.bleepingcomputer.com – Author: Bill Toulas A 29-year-old man in Ukraine was arrested this week for using hacked accounts to create 1 million virtual servers used...
Author:
GitLab warns of critical zero-click account hijacking vulnerability – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas GitLab has released security updates for both the Community and Enterprise Edition to address two critical vulnerabilities, one of them...
Ivanti Connect Secure zero-days exploited to deploy custom malware – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas Hackers have been exploiting the two zero-day vulnerabilities in Ivanti Connect Secure disclosed this week since early December to deploy multiple...
Over 150k WordPress sites at takeover risk via vulnerable plugin – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas Two vulnerabilities impacting the POST SMTP Mailer WordPress plugin, an email delivery tool used by 300,000 websites, could help attackers take...
Bitwarden adds passkey support to log into web password vaults – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas The open-source Bitwarden password manager has announced that all users can now log into their web vaults using a passkey...
New Balada Injector campaign infects 6,700 WordPress sites – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas A little over 6,700 WordPress websites using a vulnerable version of the Popup Builder plugin have been infected with the...
Finland warns of Akira ransomware wiping NAS and tape backup devices – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas The Finish National Cybersecurity Center (NCSC-FI) is informing of increased Akira ransomware activity in December, targeting companies in the country and wiping backups....
Fidelity National Financial: Hackers stole data of 1.3 million people – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas Fidelity National Financial (FNF) has confirmed that a November cyberattack (claimed by the BlackCat ransomware gang) has exposed the data...
Pro-Ukraine hackers breach Russian ISP in revenge for KyivStar attack – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas A pro-Ukraine hacktivist group named ‘Blackjack’ has claimed a cyberattack against Russian provider of internet services M9com as a direct...
Fake 401K year-end statements used to steal corporate credentials – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas Threat actors are using communication about personal pension accounts (the 401(k) plans in the U.S.), salary adjustments, and performance reports...
ShinyHunters member gets 3 years in prison for breaching 60 firms – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas The U.S. District Court in Seattle sentenced ShinyHunters member Sebastien Raoult to three years in prison and ordered a restitution...
Ransomware victims targeted by fake hack-back offers – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas Some organizations victimized by the Royal and Akira ransomware gangs have been targeted by a threat actor posing as a...
CISA warns agencies of fourth flaw used in Triangulation spyware attacks – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas The U.S. Cybersecurity and Infrastructure Security Agency has added to its to the Known Exploited Vulnerabilities catalog six vulnerabilities that...
Turkish hackers Sea Turtle expand attacks to Dutch ISPs, telcos – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas The Turkish state-backed cyber espionage group tracked as Sea Turtle has been carrying out multiple spying campaigns in the Netherlands, focusing...
Twilio will ditch its Authy desktop 2FA app in August, goes mobile only – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas The Authy desktop apps for Windows, macOS, and Linux will be discontinued in August 2024, with the company recommending users...
Capital Health attack claimed by LockBit ransomware, risk of data leak – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas The LockBit ransomware operation has claimed responsibility for a November 2023 cyberattack on the Capital Health hospital network and threatens...
Stealthy AsyncRAT malware attacks targets US infrastructure for 11 months – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas A campaign delivering the AsyncRAT malware to select targets has been active for at least the past 11 months, using...
KyberSlash attacks put quantum encryption projects at risk – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas Multiple implementations of the Kyber key encapsulation mechanism for quantum-safe encryption, are vulnerable to a set of flaws collectively referred to...
Hackers target Apache RocketMQ servers vulnerable to RCE attacks – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas Security researchers are detecting hundreds of IP addresses on a daily basis that scan or attempt to exploit Apache RocketMQ services...
Memorial University recovers from cyberattack, delays semester start – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas The Memorial University of Newfoundland (MUN) continues to deal with the effects of a cyberattack that occurred in late December...
Hackers hijack govt and business accounts on X for crypto scams – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas Hackers are increasingly targeting verified accounts on X (formerly Twitter) belonging to government and business profiles and marked with ‘gold’...
Zeppelin ransomware source code sold for $500 on hacking forum – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas A threat actor announced on a cybercrime forum that they sold the source code and a cracked version of the...
FTC offers $25,000 prize for detecting AI-enabled voice cloning – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas The U.S. Federal Trade Commission (FTC) has started accepting submissions for its Voice Cloning Challenge, a public competition with a...
Nigerian hacker arrested for stealing $7.5M from charities – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas A Nigerian national was arrested in Ghana and is facing charges related to business email compromise (BEC) attacks that caused...
Data breach at healthcare tech firm impacts 4.5 million patients – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas HealthEC LLC, a provider of health management solutions, suffered a data breach that impacts close to 4.5 million individuals who received...
Nearly 11 million SSH servers vulnerable to new Terrapin attacks – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas Almost 11 million internet-exposed SSH servers are vulnerable to the Terrapin attack that threatens the integrity of some SSH connections....
CISA warns of actively exploited bugs in Chrome and Excel parsing library – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas The U.S. Cybersecurity and Infrastructure Security Agency has added two vulnerabilities to the Known Exploited Vulnerabilities catalog, a recently patched...
Orbit Chain loses $86 million in the last fintech hack of 2023 – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas Orbit Chain has experienced a security breach that has resulted in a loss of $86 million in cryptocurrency, particularly Ether,...
Online museum collections down after cyberattack on service provider – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas Museum software solutions provider Gallery Systems has disclosed that its ongoing IT outages were caused by a ransomware attack last...
Xerox says subsidiary XBS U.S. breached after ransomware gang leaks data – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas The U.S. division of Xerox Business Solutions (XBS) has been compromised by hackers with a limited amount of personal information...