Tag: hacking
-
Popular Industrial Power Monitors Had Remote Hacking Flaws
Researchers Uncover Critical Flaws Enable Remote Device Takeover. A ubiquitous industrial power monitoring device contains three critical vulnerabilities in its firmware that could allow attackers to disrupt operations by remotely crashing them or executing unwanted code. The device is the Rockwell Automation PowerMonitor 1000 Remote. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/popular-industrial-power-monitors-had-remote-hacking-flaws-a-28522
-
Microsoft, Dutch government discover new Russian hacking group
The findings highlight the vulnerability of all critical infrastructure firms to similar attack methods. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/russia-ukraine-logistics-laundry-bear-microsoft-netherlands/749143/
-
Microsoft, Dutch government spot new Russian hacking group targeting critical infrastructure
The findings highlight the vulnerability of all critical infrastructure firms to similar attack methods. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/russia-ukraine-logistics-laundry-bear-microsoft-netherlands/749143/
-
Czechia blames China for Ministry of Foreign Affairs cyberattack
The Czech Republic says the Chinese-backed APT31 hacking group was behind cyberattacks targeting the country’s Ministry of Foreign Affairs and critical infrastructure organizations. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/czechia-blames-china-for-ministry-of-foreign-affairs-cyberattack/
-
Vietnam-Nexus Hackers Distribute Malware Via Fake AI Video Generator Websites
A Vietnam-nexus hacking group distributes infostealers and backdoors via social media ads promoting fake AI generator websites First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/vietnam-hackers-malware-fake-ai/
-
New Russian State Hacking Group Hits Europe and North America
A newly-discovered Russian group, Void Blizzard, has successfully compromised organizations in critical industries, Microsoft warned First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/russian-state-group-europe-america/
-
Salt Typhoon Believed to Be Behind Commvault Data Breach
Tags: advisory, backup, breach, china, cisa, cloud, credentials, data, data-breach, group, hacking, infrastructure, microsoft, threat, vulnerabilityCISA Advisory Says Threat Actors Stole App Secrets in Azure-Hosted Backup Platform. A suspected Chinese state hacking group linked to last year’s telecom intrusions breached Commvault’s Microsoft Azure environment, exposing sensitive Microsoft 365 credentials and reigniting fears over U.S. cloud infrastructure vulnerabilities and default security settings. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/salt-typhoon-believed-to-be-behind-commvault-data-breach-a-28496
-
Spain reportedly behind Careto hacking operation
Tags: hackingFirst seen on scworld.com Jump to article: www.scworld.com/brief/spain-reportedly-behind-careto-hacking-operation
-
NATO Countries Targeted By New Russian Espionage Group
‘Laundry Bear’ Has Been Active Since 2024. Dutch intelligence agencies and Microsoft say a novel Russian state intelligence hacking group is likely buying stolen credentials from criminal marketplaces to gain entry to North American and European networks. It has a specific interest in European Union and NATO member states. First seen on govinfosecurity.com Jump to…
-
Dutch intelligence unmasks previously unknown Russian hacking group ‘Laundry Bear’
Recent attacks on institutions in the Netherlands were the work of a previously unknown Russian hacking group that Dutch intelligence agencies are labeling Laundry Bear. Microsoft also reported on the group, naming it Void Blizzard. First seen on therecord.media Jump to article: therecord.media/laundry-bear-void-blizzard-russia-hackers-netherlands
-
Russian Hackers Breach 20+ NGOs Using Evilginx Phishing via Fake Microsoft Entra Pages
Microsoft has shed light on a previously undocumented cluster of threat activity originating from a Russia-affiliated threat actor dubbed Void Blizzard (aka Laundry Bear) that it said is attributed to “worldwide cloud abuse.”Active since at least April 2024, the hacking group is linked to espionage operations mainly targeting organizations that are important to Russian government…
-
College Student to Plead Guilty to Hacking PowerSchool
Teenager Charged With Stealing K-12 Student and Faculty Data, $3 Million Extortion. Massachusetts teenage college student Matthew Lane has been accused of hacking into K-12 student information system platform provider PowerSchool and holding stolen student and faculty data to ransom. Prosecutors said Lane has agreed to plead guilty to multiple charges tied to two hack…
-
Cyberangriff auf die jährliche Uni-Aufnahmeprüfung in Nigeria
DSS, Police nab 20 for allegedly hacking UTME results First seen on guardian.ng Jump to article: guardian.ng/news/nigeria/metro/dss-police-nab-20-for-allegedly-hacking-utme-results/
-
Reconnaissance Campaign Active on NPM Repository
Malicious Packages Hide Scripts for Mapping Enterprise Networks. A hacking campaign is spreading malicious reconnaissance scripts downloaded more than 3,000 times from the JavaScript runtime environment npm repository, warn researchers. The reconnaissance script is likely a harbinger of worse things to come. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/reconnaissance-campaign-active-on-npm-repository-a-28475
-
The US Is Building a One-Stop Shop for Buying Your Data
Plus: A mysterious hacking group’s secret client is exposed, Signal takes a swipe at Microsoft Recall, Russian hackers target security cameras to spy on aid to Ukraine, and more. First seen on wired.com Jump to article: www.wired.com/story/us-spies-one-stop-shop-private-data/
-
NC Pathology Practice Notifying 236,000 of Data Theft Hack
Did Marlboro-Chesterfield Pathology Pay Cybercrime Gang Safepay a Ransom?. A North Carolina pathology practice is notifying nearly 236,000 patients of a hacking incident discovered in January. Marlboro-Chesterfield Pathology says it took steps to ensure the hackers deleted its stolen data. Newcomer ransomware group Safepay is apparently the culprit in the attack. First seen on govinfosecurity.com…
-
N.C. Pathology Practice Notifying 236,000 of Data Theft Hack
Did Marlboro-Chesterfield Pathology Pay Cybercrime Gang Safepay a Ransom?. A North Carolina pathology practice is notifying nearly 236,000 patients of a hacking incident discovered in January. Marlboro-Chesterfield Pathology says it took steps to ensure the hackers deleted its stolen data. Newcomer ransomware group Safepay is apparently the culprit in the attack. First seen on govinfosecurity.com…
-
Mysterious hacking group Careto was run by the Spanish government, sources say
The elusive hacking group Careto was never publicly linked to a specific government, but TechCrunch has learned researchers concluded privately that the Spanish government was behind the group. First seen on techcrunch.com Jump to article: techcrunch.com/2025/05/23/mysterious-hacking-group-careto-was-run-by-the-spanish-government-sources-say/
-
Coca-Cola, Bottling Partner Named in Separate Ransomware and Data Breach Claims
Coca-Cola and its bottling partner CCEP targeted in separate cyber incidents, with the Everest ransomware gang and the Gehenna hacking group claiming data breaches involving sensitive employee and CRM data. First seen on hackread.com Jump to article: hackread.com/coca-cola-bottling-partner-ransomware-data-breach/
-
German Cyber Agency Sounds Warning on Grid Vulnerabilities
BSI Cites New Technologies, Geopolitical Tensions as Key Risk Factors. Mounting decentralization and digitization put electricity grids at risk of hacking that could cause power outages, the German cybersecurity agency warned Wednesday. Technologies such as internet-connected solar power inverters and a tense geopolitical situation sparks increased concern. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/german-cyber-agency-sounds-warning-on-grid-vulnerabilities-a-28461
-
Shields Health to Pay $15.35M to Settle Lawsuit in 2022 Hack
Medical Imaging Provider’s Data Theft Incident Affected Nearly 2.4M Individuals. Shields Health Care Group, a Massachusetts-based provider of medical imaging services with 30 facilities in New England, agreed to pay $15.35 million to settle a consolidated proposed class action litigation centered on a 2022 hacking incident that affected nearly 2.4 million individuals. First seen on…
-
Blurring Lines Between Scattered Spider & Russian Cybercrime
The loosely affiliated hacking group has shifted closer to ransomware gangs, raising questions about Scattered Spider’s ties to the Russian cybercrime underground. First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/blurring-lines-scattered-spider-russian-cybercrime
-
Blurring Lines Between Scattered Spider and Russian Cybercrime
The loosely affiliated hacking group has shifted closer to ransomware gangs, raising questions about Scattered Spider’s ties to the Russian cybercrime underground. First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/blurring-lines-scattered-spider-russian-cybercrime
-
Scammers Troll DNS Records for Abandoned Cloud Accounts
‘Hazy Hawk’ Behind a Rash of Domain Hijackings. A hacking group with apparent access to a commercial domain name system archiving service is on the hunt for misconfigured records of high-reputation organizations in order to blast links to scammy domains. It checks the CNAME field of DNS records to see if it points to an…
-
Russian Intelligence Hackers Stalk Western Logistics Firms
Tags: cctv, cybersecurity, government, hacker, hacking, intelligence, Internet, military, russia, technologyWestern Governments Publish Warning Over Unit 26165 Activities. A slew of Western cybersecurity agencies warned Wednesday that Russian intelligence is targeting logistics and technology companies in a prolonged hacking campaign that includes an emphasis on internet-connected cameras situated along border crossings and military installations. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/russian-intelligence-hackers-stalk-western-logistics-firms-a-28449
-
BSidesLV24 GroundFloor Insert Coin: Hacking Arcades For Fun
Authors/Presenters: Ignacio Navarro Our sincere appreciation to BSidesLV, and the Presenters/Authors for publishing their erudite Security BSidesLV24 content. Originating from the conference’s events located at the Tuscany Suites & Casino; and via the organizations YouTube channel. Permalink First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/05/bsideslv24-groundfloor-insert-coin-hacking-arcades-for-fun/
-
College student to plead guilty to PowerSchool hack
The 19-year-old Assumption College student, Matthew Lane, also was charged Tuesday with hacking and demanding a ransom payment from an unnamed telecommunications company, according to Massachusetts federal prosecutors. First seen on therecord.media Jump to article: therecord.media/college-student-to-plead-guilty-to-powerschool-hack