Source: www.securityweek.com – Author: Eduard Kovacs Justice Department says 19 people involved in the xDedic cybercrime marketplace have been charged to date following its 2019 takedown....
Author:
Energy Department Offering $70 Million for Security, Resilience Research – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs US Department of Energy offering up to $70 million in funding for research into technologies that boost the resilience and...
Russia Hacked Residential Cameras in Ukraine to Spy on Air Defense, Critical Infrastructure – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs Ukraine said Russia hacked two surveillance cameras and used them to spy on air defense systems and critical infrastructure in...
Airbus Offering to Buy Atos Cybersecurity Unit for Up to $2 Billion – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs French aerospace giant Airbus could acquire Atos’ cybersecurity unit for up to $2 billion, but discussions are at a preliminary...
Hacked Mandiant X Account Abused for Cryptocurrency Theft – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs Mandiant’s account on X, formerly Twitter, was hacked and used to lure users to a cryptocurrency phishing site. The post...
RIPE Account Hacking Leads to Major Internet Outage at Orange Spain – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs Orange Spain’s internet went down for several hours after its RIPE account was hacked, likely after malware stole the credentials....
Cybersecurity M&A Roundup: 25 Deals Announced in December 2023 – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs Twenty-five cybersecurity-related merger and acquisition (M&A) deals were announced in December 2023. The post Cybersecurity M&A Roundup: 25 Deals Announced...
21 New Mac Malware Families Emerged in 2023 – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs A total of 21 new malware families targeting macOS systems were discovered in 2023, a 50% increase compared to 2022. ...
Critical Apache OFBiz Vulnerability in Attacker Crosshairs – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs Shadowserver sees possible in-the-wild exploitation of a critical Apache OFBiz vulnerability tracked as CVE-2023-49070. The post Critical Apache OFBiz Vulnerability...
Europe’s Largest Parking App Provider Informs Customers of Data Breach – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs EasyPark says hackers stole European customer information, including partial IBAN or payment card numbers. The post Europe’s Largest Parking App...
Operations, Trading of Eagers Automotive Disrupted by Cyberattack – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs Eagers Automotive, a vehicle dealer in Australia and New Zealand, has halted trading after being targeted in a cyberattack. The...
Ohio Lottery Hit by Ransomware, Hackers Claim Theft of Employee and Player Data – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs The DragonForce ransomware group has taken credit for the Ohio Lottery hack, claiming to have stolen millions of data records....
Barracuda Zero-Day Used to Target Government, Tech Organizations in US, APJ – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs The new Barracuda ESG zero-day CVE-2023-7102 has been used by Chinese hackers to target organizations in the US and APJ...
Cyberattack Disrupts Operations of First American, Subsidiaries – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs A cyberattack appears to have caused significant disruption to the systems and operations of title insurer First American and its...
Ransomware Group Claims 100 Gb of Data Stolen From Nissan – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs The Akira ransomware group has taken credit for the recent attack that impacted Nissan Australia and New Zealand. The post...
Chinese Hackers Deliver Malware to Barracuda Email Security Appliances via New Zero-Day – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs Chinese hackers exploited a zero-day tracked as CVE-2023-7102 to deliver malware to Barracuda Email Security Gateway (ESG) appliances. The post...
CISA Warns of FXC Router, QNAP NVR Vulnerabilities Exploited in the Wild – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs CISA released ICS advisories for FXC router and QNAP NRV flaws and added them to its known exploited vulnerabilities catalog. ...
Malicious GPT Can Phish Credentials, Exfiltrate Them to External Server: Researcher – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs A researcher has shown how malicious actors can create custom GPTs that can phish for credentials and exfiltrate them to...
ESET Patches High-Severity Vulnerability in Secure Traffic Scanning Feature – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs ESET has patched CVE-2023-5594, a high-severity vulnerability that can cause a browser to trust websites that should not be trusted....
Ivanti Patches Dozen Critical Vulnerabilities in Avalanche MDM Product – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs Ivanti has patched 20 vulnerabilities in its Avalanche MDM product, including a dozen remote code execution flaws rated critical. The...
BlackCat Strikes Back: Ransomware Gang “Unseizes” Website, Vows No Limits on Targets – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs The BlackCat/Alphv ransomware group is dealing with the government operation that resulted in website seizures and a decryption tool. The...
Xfinity Data Breach Impacts 36 Million Individuals – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs The recently disclosed Xfinity data breach, which involved exploitation of the CitrixBleed vulnerability, impacts 36 million individuals The post Xfinity...
Halcyon Raises $40 Million for Anti-Ransomware Platform – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs Halcyon has raised $40 million in an oversubscribed Series B funding round for its anti-ransomware and cyber resilience platform. The...
2022 Election Not Impacted by Chinese, Russian Cyber Activity: DOJ, DHS – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs Hackers, including from Russia and China, launched cyberattacks and collected information, but it did not impact the integrity and security...
Xfinity Customer Data Compromised in Attack Exploiting CitrixBleed Vulnerability – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs Comcast’s Xfinity says customer data, including credentials, were compromised in an attack exploiting the CitrixBleed vulnerability The post Xfinity Customer...
CISA Urges Manufacturers to Eliminate Default Passwords After Recent ICS Attacks – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs CISA is advising device makers to stop relying on customers to change default passwords following attacks targeting water sector ICS....
SMTP Smuggling Allows Spoofed Emails to Bypass Authentication Protocols – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs A new attack technique named SMTP Smuggling can allow malicious actors to send out spoofed emails that bypass authentication mechanisms....
Salvador Technologies Raises $6 Million for ICS/OT Attack Recovery Solution – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs Salvador Technologies has raised $6 million for its operational continuity and cyberattack recovery platform for ICS and OT. The post...
SEC Shares Important Clarifications as New Cyber Incident Disclosure Rules Come Into Effect – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs The SEC has provided some important clarifications on its new cyber incident disclosure requirements, which come into effect on December...
Linux Foundation Announces OpenPubkey Open Source Cryptographic Protocol – Source: www.securityweek.com
Source: www.securityweek.com – Author: Eduard Kovacs The Linux Foundation on Wednesday announced OpenPubkey, an open source cryptographic protocol that should help boost supply chain security. OpenPubkey...