Tag: hacker
-
Security Update: IBM X-Force Shows Hackers Using BEC to Steal Cloud Creds
First seen on scworld.com Jump to article: www.scworld.com/news/security-update-ibm-x-force-shows-hackers-using-bec-to-steal-cloud-creds
-
China-Hacker angeblich in TKÜ-Systeme der USA eingedrungen
Es wäre ein schwerer Schlag für die US-Sicherheitsbehörden. Die Abhörsysteme mehrerer Telekomprovider sollen gehackt worden sein. First seen on golem.de Jump to article: www.golem.de/news/security-china-hacker-angeblich-in-tkue-systeme-der-usa-eingedrungen-2410-189539.html
-
The FBI Still Hasn’t Cracked NYC Mayor Eric Adams’ Phone
Plus: Harvard students pack Meta’s smart glasses with privacy-invading face-recognition tech, Microsoft and the DOJ seize Russian hackers’ domains, and more. First seen on wired.com Jump to article: www.wired.com/story/fbi-eric-adams-phone-not-cracked/
-
IBM X-Force: Hackers Using Phishing, BEC to Steal Cloud Credentials
First seen on scworld.com Jump to article: www.scworld.com/feature/ibm-x-force-hackers-using-phishing-bec-to-steal-cloud-credentials
-
Microsoft, DOJ Dismantle Russian Hacker Group Star Blizzard
The successful disruption of notorious Russian hacker group Star Blizzard’s operations arrives one month out from the US presidential election, one of the APT’s prime targets. First seen on darkreading.com Jump to article: www.darkreading.com/threat-intelligence/microsoft-doj-dismantle-russian-hacker-group-star-blizzard
-
Ivanti Confirms Exploitation of an Old Critical Vuln
Remote Code Execution Bug Exploited in Limited Attacks. Ivanti confirmed that hackers are exploiting an SQL injection vulnerability in its Ivanti Endpoint Manager enabling remote code execution, despite the company addressing the issue with a patch in May. The flaw allows unauthenticated attackers within the same network to execute arbitrary code. First seen on govinfosecurity.com…
-
Hacker nehmen verstärkt Rentner ins Visier
Tags: hackerFirst seen on datensicherheit.de Jump to article: www.datensicherheit.de/hacker-zunahme-rentner-opfer
-
DoJ, Microsoft Seize 100 Russian Phishing Sites Targeting US
DoJ and Microsoft seized over 100 sites used by Russian hackers for phishing campaigns targeting the U.S. The… First seen on hackread.com Jump to article: hackread.com/doj-microsoft-seize-russian-phishing-sites-target-us/
-
Ivanti up against another attack spree as hackers target its endpoint manager
Ivanti customers;are facing a new series of exploitation attempts after the company pledged in April;to launch a comprehensive overhaul of its internal security practices. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/ivanti-endpoint-manager-hackers-attack/728814/
-
Hackers Exploit Ivanti Endpoint Manager Flaw”, Are You at Risk?
Tags: cve, cybersecurity, endpoint, exploit, flaw, hacker, infrastructure, ivanti, malicious, risk, threat, vulnerabilityThe Cybersecurity and Infrastructure Security Agency (CISA) has alerted organizations about an active exploitation of a vulnerability in Ivanti Endpoint Manager (EPM). This critical flaw, tracked as CVE-2024-29824, poses a serious threat, allowing attackers to remotely execute malicious code on affected servers without authentication. First seen on thecyberexpress.com Jump to article: thecyberexpress.com/critical-ivanti-vulnerability-cve-2024-29824/
-
100+ domains seized to stymie Russian Star Blizzard hackers
Microsoft and the US Justice Department have seized over 100 domains used by Star Blizzard, a Russian nation-state threat actor. >>Between January 2023 and August 2024, … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/10/04/star-blizzard-domains-seized/
-
Iranian APT Facilitating Remote Access To Target Networks
As per recent reports, an Iranian Advanced Persistent Threat (APT) hacker is now playing a facilitator role in aiding remote access to target networks. The Iranian APT hacker is believed to have affiliations with the Ministry of Intelligence and Security (MOIS). In this article, we’ll dive into these Middle East cyberattacks and uncover all the……
-
Sellafield nuclear site hit with £332,500 fine after >>significant cybersecurity shortfalls<<
The UK’s Sellafield nuclear waste processing and storage site has been fined £332,500 by regulators after its IT systems were found to have been left vulnerable to hackers and unauthorised access for years. First seen on bitdefender.com Jump to article: www.bitdefender.com/blog/hotforsecurity/sellafield-nuclear-site-332500-fine-cybersecurity-shortfalls/
-
21-Year-Old Hacker Pleads Guilty in $37 Million Cryptocurrency Theft
A 21-year-old Indiana man, Evan Frederick Light, has pleaded guilty to orchestrating a sophisticated cyber intrusion that resulted in the theft of over $37 million in cryptocurrency from nearly 600... First seen on securityonline.info Jump to article: securityonline.info/21-year-old-hacker-pleads-guilty-in-37-million-cryptocurrency-theft/
-
US, Microsoft Seize Domains Used in Russian Spear-Phishing
FSB Hackers Stripped of 107 Domains Used to Steal Credentials. The U.S. Department of Justice and Microsoft seized more than 100 websites allegedly used by a Russian intelligence cyberespionage operation with a fondness for spear phishing. Targets include the national security apparatus and journalists, think tanks, and non-governmental organizations. First seen on govinfosecurity.com Jump to…
-
Microsoft and DOJ disrupt Russian FSB hackers’ attack infrastructure
Microsoft and the Justice Department have seized over 100 domains used by the Russian ColdRiver hacking group to target United States government employees and nonprofit organizations from Russia and worldwide in spear-phishing attacks. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/microsoft-and-doj-seize-spear-phishing-domains-used-by-star-blizzard-russian-hackers/
-
New Perfctl Malware Targets Linux Servers for Cryptocurrency Mining and Proxyjacking
Linux servers are the target of an ongoing campaign that delivers a stealthy malware dubbed perfctl with the primary aim of running a cryptocurrency miner and proxyjacking software.”Perfctl is particularly elusive and persistent, employing several sophisticated techniques,” Aqua security researchers Assaf Morag and Idan Revivo said in a report shared with The Hacker News.”When a…
-
Weird Zimbra Vulnerability
Tags: attack, computer, email, espionage, exploit, hacker, infection, mail, ransomware, vulnerabilityHackers can execute commands on a remote computer by sending malformed emails to a Zimbra mail server. It’s critical, but difficult to exploit. In an email sent Wednesday afternoon, Proofpoint researcher Greg Lesnewich seemed to largely concur that the attacks weren’t likely to lead to mass infections that could install ransomware or espionage malware. The…
-
North Korean Hackers Using New VeilShell Backdoor in Stealthy Cyber Attacks
Threat actors with ties to North Korea have been observed delivering a previously undocumented backdoor and remote access trojan (RAT) called VeilShell as part of a campaign targeting Cambodia and likely other Southeast Asian countries.The activity, dubbed SHROUDED#SLEEP by Securonix, is believed to be the handiwork of APT37, which is also known as InkySquid, Reaper,…
-
Alptraum: Daten aller niederländischen Polizisten geklaut von Drittstaat?
Tags: hackerHacker haben die Kontaktdaten aller Mitarbeiter der Polizei erbeutet. Nun kommt das Justizministerium mit einer weiteren alarmierenden Nachricht. First seen on heise.de Jump to article: www.heise.de/news/Alptraum-Daten-aller-niederlaendischen-Polizisten-geklaut-von-Drittstaat-9961529.html
-
Niederlande – Hacker sollen Daten aller 65.000 Polizisten gestohlen haben ‘Das ist sehr gefährlich”
In den Niederlanden sollen bei einer Cyberattacke die Kontaktdaten aller rund 65.000 Polizisten in die Hände eines ausländischen Staates geraten sein. ‘Höchstwahrscheinlich steckt Russland oder China dahinter”, so Korrespondent Helmut Hetzel. First seen on welt.de Jump to article: www.welt.de/politik/ausland/video253830568/Niederlande-Cyberangriff-Hacker-sollen-Daten-aller-65-000-Polizisten-gestohlen-haben-Das-ist-sehr-gefaehrlich.html
-
Cisco Nexus Vulnerability Let Hackers Execute Arbitrary Commands on Vulnerable Systems
A critical vulnerability has been discovered in Cisco’s Nexus Dashboard Fabric Controller (NDFC), potentially allowing hackers to execute arbitrary commands on affected systems. This flaw, identified as CVE-2024-20432, was first published on October 2, 2024. Its CVSS score of 9.9 indicates its severe impact. Vulnerability Details The vulnerability resides in the Cisco NDFC’s REST API…
-
Hackers Now Exploit Ivanti Endpoint Manager Vulnerability to Launch Cyber Attacks
Tags: attack, cve, cyber, cybercrime, cybersecurity, endpoint, exploit, hacker, infrastructure, ivanti, kev, software, threat, vulnerabilityThe Cybersecurity and Infrastructure Security Agency (CISA) has announced the addition of a new vulnerability to its Known Exploited Vulnerabilities Catalog. This vulnerability, CVE-2024-29824, affects Ivanti Endpoint Manager (EPM) and has become a target for cybercriminals using public exploits in recent attacks on Ivanti endpoints. CVE-2024-29824: A Critical Threat Ivanti, a U.S.-based IT software company…
-
Smashing Security podcast #387: Breaches in your genes, and Kaspersky switcheroo raises a red flag
From family tree to jail cell? A hacker is alleged to have exploited information on genealogy websites to steal millions from public companies. Meanwhile, Kaspersky’s US customers are wondering – what on earth is UltraAV? First seen on grahamcluley.com Jump to article: grahamcluley.com/smashing-security-podcast-387/
-
US indicts UK hacker behind insider trading scheme
Tags: hackerFirst seen on scworld.com Jump to article: www.scworld.com/brief/us-indicts-uk-hacker-behind-insider-trading-scheme
-
FIN7 hackers launch deepfake nude “generator” sites to spread malware
The notorious APT hacking group known as FIN7 launched a network of fake AI-powered deepnude generator sites to infect visitors with information-stealing malware. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/fin7-hackers-launch-deepfake-nude-generator-sites-to-spread-malware/
-
Hackers pose as British postal carrier to deliver Prince ransomware in destructive campaign
First seen on therecord.media Jump to article: therecord.media/hackers-pose-as-british-postal-carrier-prince-ransomware
-
Critical Zimbra RCE flaw exploited to backdoor servers using emails
Hackers are actively exploiting a recently disclosed RCE vulnerability in Zimbra email servers that can be triggered simply by sending specially crafted emails to the SMTP server. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/critical-zimbra-rce-flaw-exploited-to-backdoor-servers-using-emails/
-
More LockBit Hackers Arrested, Unmasked As Servers Siezed
First seen on packetstormsecurity.com Jump to article: packetstormsecurity.com/news/view/36419/More-LockBit-Hackers-Arrested-Unmasked-As-Servers-Siezed.html
-
Critical Zimbra RCE flaw actively exploited to take over servers
Hackers are actively exploiting a recently disclosed RCE vulnerability in Zimbra email servers that can be triggered simply by sending specially crafted emails to the SMTP server. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/critical-zimbra-rce-flaw-actively-exploited-to-take-over-servers/