Showing only posts by Bill Toulas. Show all posts.

Jan 12 2024 Ivanti Connect Secure zero-days exploited to deploy custom malware

Hackers have been exploiting the two zero-day vulnerabilities in Ivanti Connect Secure disclosed this week since early December to deploy multiple families of custom malware for espionage purposes. [...]

Jan 11 2024 Over 150k WordPress sites at takeover risk via vulnerable plugin

Source

Two vulnerabilities impacting the POST SMTP Mailer WordPress plugin, an email delivery tool used by 300,000 websites, could help attackers take complete control of a site authentication. [...]

Jan 11 2024 Bitwarden adds passkey support to log into web password vaults

Source

The open-source Bitwarden password manager has announced that all users can now log in to their web vaults using a passkey instead of the standard username and password pairs. [...]

Jan 11 2024 New Balada Injector campaign infects 6,700 WordPress sites

Source

A new Balada Injector campaign launched in mid-December has infected over 6,700 WordPress websites using a vulnerable version of the Popup Builder campaign. [...]

Jan 11 2024 Finland warns of Akira ransomware wiping NAS and tape backup devices

Source

The Finish National Cybersecurity Center (NCSC-FI) is informing of increased Akira ransomware activity in December, targeting companies in the country and wiping backups. [...]

Jan 10 2024 Fidelity National Financial: Hackers stole data of 1.3 million people

Source

Fidelity National Financial (FNF) has confirmed that a November cyberattack (claimed by the BlackCat ransomware gang) has exposed the data of 1.3 million customers. [...]

Jan 10 2024 Pro-Ukraine hackers breach Russian ISP in revenge for KyivStar attack

Source

A pro-Ukraine hacktivist group named 'Blackjack' has claimed a cyberattack against Russian provider of internet services M9com as a direct response to the attack against Kyivstar mobile operator. [...]

Jan 10 2024 Fake 401K year-end statements used to steal corporate credentials

Source

Threat actors are using communication about personal pension accounts (the 401(k) plans in the U.S.), salary adjustments, and performance reports to steal company employees' credentials. [...]

Jan 10 2024 ShinyHunters member gets 3 years in prison for breaching 60 firms

Source

The U.S. District Court in Seattle sentenced ShinyHunters member Sebastien Raoult to three years in prison and ordered a restitution of $5,000,000. [...]

Jan 09 2024 Ransomware victims targeted by fake hack-back offers

Source

Some organizations victimized by the Royal and Akira ransomware gangs have been targeted by a threat actor posing as a security researcher who promised to hack back the original attacker and delete stolen victim data. [...]

Jan 09 2024 CISA warns agencies of fourth flaw used in Triangulation spyware attacks

Source

The U.S. Cybersecurity and Infrastructure Security Agency has added to its to the Known Exploited Vulnerabilities catalog six vulnerabilities that impact products from Adobe, Apache, D-Link, and Joomla. [...]

Jan 09 2024 Decryptor for Babuk ransomware variant released after hacker arrested

Source

Researchers from Cisco Talos working with the Dutch police obtained a decryption tool for the Tortilla variant of Babuk ransomware and shared intelligence that led to the arrest of the ransomware's operator. [...]

Jan 09 2024 Google Search bug shows blank page in Firefox for Android

Source

Users of the Firefox browser for Android have been reporting that they are seeing a blank page when trying to load the main Google Search site. [...]

Jan 08 2024 Turkish hackers Sea Turtle expand attacks to Dutch ISPs, telcos

Source

The Turkish state-backed cyber espionage group tracked as Sea Turtle has been carrying out multiple spying campaigns in the Netherlands, focusing on telcos, media, internet service providers (ISPs), and Kurdish websites. [...]

Jan 08 2024 Twilio will ditch its Authy desktop 2FA app in August, goes mobile only

Source

The Authy desktop apps for Windows, macOS, and Linux will be discontinued in August 2024, with the company recommending users switch to a mobile version of the two-factor authentication (2FA) app. [...]

Jan 08 2024 Capital Health attack claimed by LockBit ransomware, risk of data leak

Source

The Lockbit ransomware operation has claimed responsibility for a November 2023 cyberattack on the Capital Health hospital network and threatens to leak stolen data and negotiation chats by tomorrow. [...]

Jan 07 2024 Stealthy AsyncRAT malware attacks targets US infrastructure for 11 months

Source

A campaign delivering the AsyncRAT malware to select targets has been active for at least the past 11 months, using hundreds of unique loader samples and more than 100 domains. [...]

Jan 07 2024 KyberSlash attacks put quantum encryption projects at risk

Source

Multiple implementations of the Kyber key encapsulation mechanism for quantum-safe encryption, are vulnerable to a set of flaws collectively referred to as KyberSlash, which could allow the recovery of secret keys. [...]

Jan 05 2024 Hackers target Apache RocketMQ servers vulnerable to RCE attacks

Source

Security researchers are detecting hundreds of IP addresses on a daily basis that scan or attempt to exploit Apache RocketMQ services vulnerable to a remote command execution flaw identified as CVE-2023-33246 and CVE-2023-37582. [...]

Jan 05 2024 Memorial University recovers from cyberattack, delays semester start

Source

The Memorial University of Newfoundland (MUN) continues to deal with the effects of a cyberattack that occurred in late December and postponed the start of classes in one campus. [...]

Jan 04 2024 Hackers hijack govt and business accounts on X for crypto scams

Source

Hackers are increasingly targeting verified accounts on X (formerly Twitter) belonging to government and business profiles and marked with 'gold' and 'grey' checkmarks to promote cryptocurrency scams, phishing sites, and sites with crypto drainers. [...]

Jan 04 2024 Zeppelin ransomware source code sold for $500 on hacking forum

Source

A threat actor announced on a cybercrime forum that they sold the source code and a cracked version of the Zeppelin ransomware builder for just $500. [...]

Jan 04 2024 FTC offers $25,000 prize for detecting AI-enabled voice cloning

Source

The U.S. Federal Trade Commission (FTC) has started accepting submissions for its Voice Cloning Challenge, a public competition with a $25,000 top prize for ideas that protect consumers from the danger of AI-enabled voice cloning for fraudulent activity. [...]

Jan 03 2024 Nigerian hacker arrested for stealing $7.5M from charities

Source

A Nigerian national was arrested in Ghana and is facing charges related to business email compromise (BEC) attacks that caused a charitable organization in the United States to lose more than $7.5 million. [...]

Jan 03 2024 Data breach at healthcare tech firm impacts 4.5 million patients

Source

HealthEC LLC, a provider of health management solutions, suffered a data breach that impacts close to 4.5 million individuals who received care through one of the company's customers. [...]

« newer articles | page 25 | older articles »