Article list | OSINTer

Nvidia announces “moonshot” to create embodied human-level AI in robot form

As companies race to pair AI with general-purpose humanoid robots, Nvidia's GR00T emerges.

The Cyber Express

Empowering Excellence: The Cyber Express Celebrates the Top 100 Women in Cybersecurity

The world of cybersecurity has long been dominated by men, presenting women with numerous hurdles, from biases to systemic obstacles.

DataBreaches

Onix Group Faces 3 Lawsuits in Addiction Center Breach

On May 27, DataBreaches reported on two breaches that had been disclosed on the Friday before a holiday weekend. One of the two was a breach reported by Onix...

Ars Technica

Critical Atlassian 0-day is under active exploit. You’re patched, right?

Researchers who found vulnerability warn it's “dangerous and trivially exploited.”

SecurityWeek

GitHub Introduces Automatic Vulnerability Scanning Feature

A new default setup allows developers to enable automatic scanning of their code repositories on GitHub.

SecurityWeek

200 Canon Printer Models May Expose Wi-Fi Connection Data

Canon says more than 200 inkjet printer models fail to properly erase Wi-Fi configuration settings, exposing connection data.

The Cyber Express

21 days ago

WhatsApp Scam Exposed: Egyptian Brothers Imprisoned for Hacking Consumer Database

The Criminal Court has delivered justice by sentencing two Egyptian brothers to imprisonment for two and a half years for

SecurityWeek

Google Patches High-Severity Privilege Escalation Vulnerabilities in Android

Android’s November 2022 security updates patch over 40 vulnerabilities, including multiple high-severity escalation of privilege bugs.

The Cyber Express

Operation Cronos: Law Enforcement Clamps Down on LockBit Network, Freezing $113M in Bitcoin

In the wake of the comprehensive LockBit takedown by law enforcement agencies, the aftermath has been significant. Subsequent to the

CyberSecurity Dive

8 days ago

Enterprises are getting better at detecting security incidents

Google Cloud’s Mandiant saw significant improvements in how organizations track down threats, yet hackers are still abusing common threat vectors.

The Cyber Express

21 days ago

Critical Alert: LG WebOS Vulnerabilities Put Smart TV Users at Risk

Security researchers recently discovered LG WebOS vulnerabilities, potentially exposing millions of LG smart TVs to exploitation. The vulnerabilities, ranging from

SecurityWeek

Turkish Hackers Target Microsoft SQL Servers in Americas, Europe

Securonix researchers warn that Turkish threat actors are targeting organizations in the Americas and Europe with ransomware campaign.

SC Magazine

AWS fixes 1-click account takeover flaw exposing cloud services to XSS risk

Several AWS, Azure and Google Cloud domains were found to lack a key guardrail against XSS.

Security Affairs

21 days ago

Microsoft Patches Tuesday security updates for April 2024 fixed hundreds of issues - Security Affairs

Microsoft Patches Tuesday security updates for April 2024 addressed three Critical vulnerabilities, none actively exploited in the wild. Microsoft Patches Tuesday security updates for April 2024 addressed 147 vulnerabilities in multiple products. This is the highest number of fixed issues from Microsoft this year and the largest since at least 2017. The issues impact Microsoft […]

The Hacker News

SystemBC Malware's C2 Server Analysis Exposes Payload Delivery Tricks

Cybersecurity experts reveal the inner workings of SystemBC's command-and-control (C2) server, a dangerous malware available on the dark web.

Infosecurity News

Kaspersky CEO's Statement Provokes Controversy Within Cybersecurity Industry

Eugene Kaspersky's statement on ongoing conflict in Ukraine provoked strong reaction from leading cybersecurity figures

SecurityWeek

Cybersecurity M&A Roundup for December 1-15, 2022

A dozen cybersecurity-related merger and acquisition (M&A) deals were announced in the first half of December 2022.

Bleeping Computer

FBI warns about ongoing Google Voice authentication scams

The Federal Bureau of Investigation (FBI) says Americans who share their phone number online are being targeted by Google Voice authentication scams.

DataBreaches

Hacker steals $600 million from Poly Network in biggest ever cryptocurrency hack

Some days, reading Twitter is like watching a train wreck unfold before you. Yesterday was like that. Catalin Cimpanu reports: An unidentified hacker has...

Cyber Security News

Hackers Using Weaponized ZIP File To Steal NTLM Hashes

ZIP files are used by threat actors to weaponize them since they can easily convey malicious payloads within compressed archives, making it

SecurityWeek

US Agencies Told to Assess IoT/OT Security Risks to Boost Critical Infrastructure Protection

The US Government Accountability Office has urged several agencies to assess IoT/OT cybersecurity effectiveness and risks to improve critical infrastructure protection.

Cyber Security News

EV Charge Points Hijack - Multiple Vulnerabilities Uncovered

Recently, two new security weaknesses have been discovered in several electric vehicle (EV) charging systems. These weaknesses have raised concerns as they could be exploited by malicious actors to remotely shut down charging stations.

Security Affairs

Security Affairs newsletter Round 384

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. If you want to also receive for free the newsletter with the international press subscribe here. LastPass revealed that intruders had internal access for four days during the August hack CISA adds […]

Infosecurity News

Kaspersky Releases Tool to Detect Zero-Click iOS Attacks

Fallout from Operation Triangulation continues

SecurityWeek

Cybersecurity M&A Roundup: 16 Deals Announced in December 2022

Sixteen cybersecurity-related merger and acquisition (M&A) deals were announced in December 2022.

The Hacker News

5 Ways to Reduce SaaS Security Risks

80% of breaches involve compromised identities. Discover how Nudge Security offers practical SaaS security solutions to safeguard your data.

Infosecurity News

Microsoft: Critical CODESYS Flaws Could Shut Down Power Plants

The vulnerabilities put critical infrastructure organizations at risk of attacks such as remote code execution (RCE) and denial of service (DoS)

Bleeping Computer

Microsoft: ProxyShell bugs “might be exploited,” patch servers now!

Microsoft has finally published guidance today for the actively exploited ProxyShell vulnerabilities impacting multiple on-premises Microsoft Exchange versions.

Bleeping Computer

New ERMAC 2.0 Android malware steals accounts, wallets from 467 apps

The ERMAC Android banking trojan has released version 2.0, increasing the number of applications targeted from 378 to 467, covering a much wider range of apps to steal account credentials and crypto wallets.

Bleeping Computer

Death of Queen Elizabeth II exploited to steal Microsoft credentials

Threat actors are exploiting the death of Queen Elizabeth II in phishing attacks to lure their targets to malicious sites designed to steal their Microsoft account credentials.

SecurityWeek

28 days ago

Missouri County Hit by Ransomware

Jackson County, Missouri, discloses ‘significant disruptions’ to IT systems, says ransomware attack likely at fault.

DarkReading

Banking Firms Under Attack by Sophisticated 'Toitoin' Campaign

An attack involves a multi-stage infection chain with custom malware hosted on Amazon EC2 that ultimately steals critical system and browser data; so far, targets have been located in Latin America.

SecurityWeek

Major CPU, Software Vendors Impacted by New GhostRace Attack

Intel, AMD, Arm and IBM, as well as software vendors, are impacted by a new speculative race condition (SRC) attack named GhostRace.

Bleeping Computer

Cloudflare website down, showing ‘We’re sorry’ Google errors

Cloudflare is investigating an ongoing outage causing 'We're sorry" Google errors to be shown on the company's website.

Naked Security

FBI warns about scams that lure you in as a mobile beta-tester

Apps on your iPhone must come from the App Store. Except when they don’t… we explain what to look out for.

The Record

6 days ago

DDoS attacks continue, post-election, against Russian independent media site Meduza

Before the Russian elections, Meduza was the target of "the most intense cyber campaign" in its history. Since then, the onslaught hasn't let up.

DataBreaches

Cyber attack causes chaos in Costa Rica government systems

Javier Cordoba and Christopher Sherman report: Nearly a week into a ransomware attack that has crippled Costa Rican government computer systems, the country...

Bleeping Computer

Cisco won’t fix zero-day RCE vulnerability in end-of-life VPN routers

In a security advisory published on Wednesday, Cisco said that a critical vulnerability in Universal Plug-and-Play (UPnP) service of multiple small business VPN routers will not be patched because the devices have reached end-of-life.

DataBreaches

NHS data breach: trusts shared patient details with Facebook without consent

It seems that the Meta pixel issue that made headlines in the U.S. last June may first be hitting the NHS in the UK. Shanti Das reports: NHS trusts are sharing...

The Record

Russian developer of Trickbot malware sentenced to five years in prison

A Russian developer of Trickbot malware has been sentenced to five years and four months in prison, the U.S. Department of Justice said on Thursday.

The Hacker News

Operation Triangulation: Experts Uncover Deeper Insights into iOS Zero-Day Attacks

Sophisticated Apple iOS attack dubbed Operation Triangulation employed clever techniques to targets victims with a backdoor implant called "TriangleDB

DataBreaches

More than 1 million Michiganders affected by Welltok cyberattack

Kristen Jordan Shamus reports: More than 1 million Michiganders were affected by a cybersecurity breach at Welltok Inc., a software company contracted to...

Bleeping Computer

Holiday 2022 deal: 20% off Zero2Automated malware analysis training

Zero2Automated, the creators of the popular malware analysis and reverse-engineering course, is having a Christmas special where you can get 20% off all courses on their site, with additional goodies thrown in.

The Hacker News

Dark Frost Botnet Launches Devastating DDoS Attacks on Gaming Industry

New botnet alert! Dark Frost strikes the gaming industry with relentless DDoS attacks. Find out how this powerful malware is wreaking havoc.

SecurityWeek

Western Digital, Synology NAS Vulnerabilities Exposed Millions of Users' Files

Critical vulnerabilities discovered in WD and Synology NAS devices could have exposed the files of millions of users.

Cyber Security News

Chrome 123: Patch for 12 Security Vulnerabilities

The Chrome team has proudly announced the promotion of Chrome 123 to the stable channel for users on Windows, Mac, and Linux.

The Record

UK opposition leader targeted by AI-generated fake audio smear

Private sector analysts said an audio clip of Labour Party leader Keir Starmer was likely a deepfake. British government officials urged the public to ignore it.

Cyber Security News

22 days ago

90,000+ LG TVs Vulnerable to Authorization Attacks Due to WebOS Vulnerabilities

Bitdefender Labs has revealed a critical security flaw in over 90k LG smart TVs running the company's proprietary WebOS platform.

Ars Technica

AI-powered hate speech detection will moderate voice chat in Call of Duty

"ToxMod" will automatically flag spoken harassment, bullying, and discrimination.

Bleeping Computer

Microsoft seizes sites used by APT15 Chinese state hackers

Microsoft seized today dozens of malicious sites used by the Nickel China-based hacking group to target organizations in the US and 28 other countries worldwide.

Computerworld

Microsoft and the Taylor Swift genAI deepfake problem

The faked images of singer Taylor Swift that showed up online are likely just the beginning of a coming swarm of deepfakes. Don’t look to Microsoft to do much about the problem.

Security Affairs

Pwn2Own Vancouver 2022 D2

During the second day of the Pwn2Own Vancouver 2022 hacking competition, contestants demonstrated a working exploit for Microsoft Windows 11. During the second day of the Pwn2Own Vancouver 2022 hacking competition, white hat hackers demonstrated a working exploit against Microsoft Windows 11 OS. The T0 group demonstrated an exploit for an improper access control flaw […]

DataBreaches

North Carolina Psychologist Sentenced for Medicaid Fraud Scheme Involving Minors

February 1, 2022 — RICHMOND, Va. – A Durham, North Carolina, clinical psychologist was sentenced today to 52 months in prison for defrauding Virginia...

ZDNet

NSA report: This is how you should be securing your network | ZDNet

US spy agency NSA has given its most up-to-date guidance for protecting networks against attacks.

Security Affairs

A massive phishing campaign using QR codes targets the energy sector

A phishing campaign employing QR codes targeted a leading energy company in the US, cybersecurity firm Cofense reported. Starting from May 2023, researchers from Cofense discovered a large-scale phishing campaign using QR codes in attacks aimed at stealing the Microsoft credentials of users from multiple industries One of the organizations targeted by hackers is a […]

Security Affairs

Experts warn of attacks exploiting WordPress gift card plugin

Threat actors are actively exploiting a critical flaw in the YITH WooCommerce Gift Cards Premium WordPress plugin installed by over 50,000 websites. Hackers are actively exploiting a critical vulnerability, tracked as CVE-2022-45359 (CVSS v3: 9.8), affecting the WordPress plugin YITH WooCommerce Gift Cards Premium. The YITH WooCommerce Gift Cards Premium plugin allows websites of online stores to […]

Cyber Security News

Titan File Transfer Server Flaws Let Attackers Execute Remote Code

Multiple vulnerabilities have been discovered in Titan MFT and Titan SFTP servers owned by South River Technologies.

Bleeping Computer

Lyca Mobile investigates customer data leak after cyberattack

Lyca Mobile has released a statement about an unexpected disruption on its network caused by a cyberattack that may have also compromised customer data.

Bleeping Computer

Expeditors shuts down global operations after likely ransomware attack

Seattle-based logistics and freight forwarding company Expeditors International has been targeted in a cyberattack over the weekend that forced the organization to shut down most of its operations worldwide.

Infosecurity News

Lacroix Shuts Three Factories For a Week After Cyber-Attack

The targeted cyber-attack hit activity sites in France, Germany and Tunisia

Bleeping Computer

Public Redis exploit used by malware gang to grow botnet

Threat analysts report having spotted a change in the operations of the Muhstik threat group, which has now switched to actively exploiting a Lua sandbox escape flaw in Redis.

DataBreaches

School Admin Shared Non-Public Details of Ransomware Attack with Private Company

Scott Travis reports ethical questions about yet more lack of transparency by Broward County Public Schools when they were hit by Conti ransomware. In November...

DataBreaches

Russians Who Bought Fake Vaccine Certificates Targeted in Data Leak – Kommersant

The Moscow Times reports: A database of Russians who purchased fake coronavirus vaccine certificates has leaked online, the Kommersant business...

Bleeping Computer

10 months ago

Just released: Session tracks for Mandiant’s 2023 mWISE event

There are just a few days left to get the lowest price available for the mWISE cybersecurity conference. It runs from September 18 - 20, 2023 in Washington, DC. If you register now, you'll get 45% off the standard conference rate.

Bleeping Computer

Hackers use open source Merlin post-exploitation toolkit in attacks

Ukraine is warning of a wave of attacks targeting state organizations using 'Merlin,' an open-source post-exploitation and command and control framework.

Bleeping Computer

Hackers infect random WordPress plugins to steal credit cards

Credit card swipers are being injected into random plugins of e-commerce WordPress sites, hiding from detection while stealing customer payment details.

The Cyber Express

Newly Emerged JKwerlo Ransomware Targets Victims in France and Spain

A newly discovered ransomware dubbed JKwerlo has emerged in European markets, aiming at unsuspecting victims in France and Spain. Cyble

DarkReading

Name That Toon: Helping Hands

Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 Amazon gift card.

ThreatPost

UK Cops Collar 7 Suspected Lapsus$ Gang Members

London Police can't say if they nabbed the 17-year-old suspected mastermind & multimillionaire – but researchers say they’ve been tracking an Oxford teen since mid-2021.

ZDNet

Hackers are still finding - and using - flaws in Internet Explorer

The hackers delivered an IE exploit in an emailed Office document, which renders web content in IE even if it is not the default browser.

The Cyber Express

DNA Analysis Firm, 23andMe, Blames Customers For Data Breach

In a startling turn of events following the 23andMe data leak update released today, the popular DNA analysis is grappling

DataBreaches

KS: Labette Health discloses October, 2021 data security incident

Labette Health in Kansas has started notifying employees and patients of a data security incident. According to a statement on their website, an investigation...

DataBreaches

Ransomware cost US banks $1.2 billion last year

Dan Robinson reports: Banks in the US paid out nearly $1.2 billion in 2021 as a result of ransomware attacks, a marked rise over the year before though it may...

Bleeping Computer

Irish healthcare shuts down IT systems after Conti ransomware attack

Ireland's Health Service Executive(HSE), the country's publicly funded healthcare system, has shut down all IT systems after its network was breached in a ransomware attack.

DataBreaches

Turn off, turn on: Simple step can thwart top phone hackers

Alan Suderman reports: As a member of the secretive Senate Intelligence Committee, Sen. Angus King has reason to worry about hackers. At a briefing by...

The Hacker News

Cisco Business Routers Found Vulnerable to Critical Remote Hacking Flaws

Cisco rolls out security patches to address new vulnerabilities affecting small business routers.

The Hacker News

Iranian Hackers Strike Diamond Industry with Data-Wiping Malware in Supply-Chain Attack

Iranian hackers unleash data-wiping attack on diamond industries in South Africa, Israel, and Hong Kong via supply-chain attack on Israeli software fi

The Cyber Express

Akira Ransomware Group Threatens to Leak Stolen Data from Swedish Municipality

The Akira ransomware group has set its sights on yet another target: the municipality of Bjuv in Skåne County, South

The Cyber Express

NCSC Issues Guidance to Secure PBX Systems from Cyberattacks

The National Cyber Security Centre (NCSC) in the UK has issued a comprehensive blog aimed at educating individuals and organizations

Bleeping Computer

New Cerber ransomware targets Confluence and GitLab servers

Cerber ransomware is back, as a new ransomware family adopts the old name and targets Atlassian Confluence and GitLab servers using remote code execution vulnerabilities.

CyberNews

House passes important privacy bill overshadowed by TikTok fever

Everyone in DC is still talking about the potential TikTok ban. But the House of Representatives also passed a bill on data privacy this week – to much less fanfare.

The Record

7 months ago

Nova Scotia says all victims of MOVEit breach have been notified

One of the first North American organizations to suffer a data breach because of a vulnerability in the MOVEit file-transfer software says it has notified more than 165,000 people that their personal information was stolen.

DataBreaches

CISA Alert (AA23-040A): #StopRansomware: Ransomware Attacks on Critical Infrastructure Fund DPRK Malicious Cyber Activities

Summary Note: This Cybersecurity Advisory (CSA) is part of an ongoing #StopRansomware effort to publish advisories for network defenders that detail various...

Infosecurity News

Atlassian Finds Public Exploit for Critical Bug

Attacks in the wild a near certainty as customers urged to patch

The Cyber Express

R00TK1T Cyber Ceasefire: Malaysia Breathes Amidst Temporary Truce

The cyber war saga between the notorious R00TK1T hacker group and Malaysia seems to have taken a temporary ceasefire, leaving

Security Affairs

VMware fixed a privilege escalation issue in VMware Tools

VMware this week released patches to address an important-severity vulnerability in the VMware Tools suite of utilities. The virtualization giant VMware this week released patches to address an important-severity flaw, tracked as CVE-2022-31676, which impacts the VMware Tools suite of utilities. VMware Tools is a set of services and modules that enable several features in VMware […]

The Cyber Express

BlackBasta Targets Leonard’s Syrups in Latest Ransomware Attack

The BlackBasta ransomware group strikes again, targeting Leonard's Syrups, a cherished family-owned beverage company in Michigan renowned for its rich

The Cyber Express

Alleged Phoenix Group DDoS Attack Disrupts US Congress Website

The hacking group Phoenix has claimed responsibility for a Distributed Denial of Service (DDoS) attack on the website of the

The Cyber Express

Cencora Confirms Data Breach in SEC Filing; Sensitive Data Accessed by Hackers

Cencora Inc. has encountered a significant cybersecurity setback, as disclosed in a recent SEC filing. Uncovered on February 21, 2024,

ZDNet

Home Affairs singles out Meta as most reluctant to stop online abuse | ZDNet

The Department of Home Affairs has said major social media platforms put safety as an afterthought in their bid to roll out encryption quickly.

The Record

Nearly 5,000 Okta employees affected by third-party data breach

Almost 5,000 Okta employees were affected by a data breach following a cyberattack on a third-party provider used by the company for healthcare services.

Cyber Security News

What Is The Importance Of Trust And Safety Software? - Cyber Security News

Trust and Safety is the set of business strategies by which an online platform decreases the danger of users being exposed to fraud, harm, or other activities that violate community norms. As digital sites seek to secure their clients while enhancing consumer attraction, interaction, and loyalty, trust and Safety are becoming increasingly crucial. Incorporating Trust […]

The Record

High-profile ransomware gang suspects arrested in Ukraine

The international operation, centered on Kyiv, essentially neutralized a group known for deploying variants of LockerGoga, MegaCortex, Hive and Dharma ransomware, authorities said.

Bleeping Computer

24 days ago

New Windows driver blocks software from changing default web browser

Microsoft is now using a Windows driver to prevent users from changing the Windows 10 and Windows 11 default browser manually or through software.

Bleeping Computer

Leveraging Wazuh to combat insider threats

Effective strategies for mitigating insider threats involve a combination of detective and preventive controls. Such controls are provided by the Wazuh SIEM and XDR platform.

The Record

More than $625 million stolen in DeFi hack of Ronin Network

The Ronin Network announced on Tuesday that hackers have stolen more than $600 million worth of Ethereum (173,600 ETH) and $25.5 million of US dollar-pegged stablecoin USDC, making it one of the largest decentralized finance (DeFi) hacks to date.

SecurityWeek

2.5 Million Impacted by Data Breach at Nelnet Servicing

The data of more than 2.5 million individuals was potentially compromised in a data breach at technology services provider Nelnet Servicing.

Security Affairs

Former Group-IB CEO Ilya Sachkov sentenced to 14 years in a strict prison colony

Ilya Sachkov, former CEO and co-founder of Group-IB was sentenced to 14 years in a high security prison colony according to the Moscow court announcement. As per the announcement from the Moscow court, Ilya Sachkov, the former CEO and co-founder of Group-IB, has been sentenced to 14 years in a high-security prison colony. Sachkov listened […]

Ars Technica