The Record
Report claims to reveal identity of Russian hacktivist leader
Killmilk is a 30-year-old Russian citizen, according to the news site Gazeta.ru. The report has drawn extra scrutiny to Killnet, known for DDoS attacks on Western targets.
Security Affairs
APT29 group exploited WinRAR 0day in attacks against embassies
Russia-linked cyberespionage group APT29 has been observed leveraging the CVE-2023-38831 vulnerability in WinRAR in recent attacks.
Infosecurity News
Russia’s APT29 Targets Embassies With Ngrok and WinRAR Exploit
Threat group may be looking for intel on Azerbaijan
Bleeping Computer
Russian hackers use Ngrok feature and WinRAR exploit to attack embassies
After Sandworm and APT28 (known as Fancy Bear), another state-sponsored Russian hacker group, APT29, is leveraging the CVE-2023-38831 vulnerability in WinRAR for cyberattacks.
CyberNews
US prison allegedly hit by ransomware attack
The Play ransomware gang claims to have successfully hit the maximum-security Donald W. Wyatt Detention Facility, located in the City of Central Falls, Rhode Island.
The Record
Cyber-espionage operation on embassies linked to Russia’s Cozy Bear hackers
Targets in Azerbaijan and Italy bore the brunt of the operation by the Kremlin-backed hackers of APT29, also known as Cozy Bear, according to Ukraine's National Cyber Security Coordination Center.
Cyber Security News
Snake Keylogger Steals victim Logins, Keystrokes, & Capture Screen
Snake Keylogger, a .NET infostealer malware, also known as 404 Keylogger, steals credentials, keystrokes, and screenshots, collects system info
Bleeping Computer
Security researcher stopped at US border for investigating crypto scam
Security researcher Sam Curry describes a stressful situation he encountered upon his return to the U.S. when border officials and federal agents seized and searched his electronic devices. Curry was further served with a 'Grand Jury' subpoena that demanded him to appear in court for testimony.
SecurityWeek
25 Major Car Brands Get Failing Marks From Mozilla for Security and Privacy
Mozilla has analyzed the privacy and security of 25 major car brands and found that they collect a lot of data
Security Affairs
Russian APT BlueBravo targets diplomatic entities with GraphicalProton backdoor
Russia-linked BlueBravo has been spotted targeting diplomatic entities in Eastern Europe with the GraphicalProton Backdoor. The Russia-linked threat-state actor BlueBravo (aka APT29, Cloaked Ursa, and Midnight Blizzard, Nobelium) has been observed targeting diplomatic entities throughout Eastern Europe. The group was observed conducting a spear-phishing campaign with the end goal of infecting recipients with a new backdoor […]
The Hacker News
BlueBravo Deploys GraphicalProton Backdoor Against European Diplomatic Entities
BlueBravo, a Russian nation-state actor, has been targeting diplomatic entities in Eastern Europe with a new backdoor named GraphicalProton.
Bleeping Computer
VirusTotal apologizes for data leak affecting 5,600 customers
VirusTotal apologized on Friday for leaking the information of over 5,600 customers after an employee mistakenly uploaded a CSV file containing their info to the platform last month.
Naked Security
Google Virus Total leaks list of spooky email addresses
Careful with that file, Eugene!
DarkReading
SolarWinds Attackers Dangle BMWs to Spy on Diplomats
Cloaked Ursa/Nobelium gets creative by appealing to the more personal needs of government employees on foreign missions in Kyiv.
Bleeping Computer
Russian state hackers lure Western diplomats with BMW car ads
The Russian state-sponsored hacking group 'APT29' (aka Nobelium, Cloaked Ursa) has been using unconventional lures like car listings to entice diplomats in Ukraine to click on malicious links that deliver malware.
Infosecurity News
Diplomats in Ukraine Targeted by “Staggering” BMW Phishing Campaign
Unit 42 researchers believe a Russian threat group repurposed a legitimate flyer for a BMW car sent to embassies in Kyiv, Ukraine
Cyber Security News
50 World's Best Penetration Testing Companies - 2023
Best Penetration Testing Companies: 1. Crowdstrike 2. Secureworks 3. Rapid7 4. Acunetix 5. Trellix 6. Invicti 7. Cobalt 8. Intruder.
Cyber Security News
25 Best Cloud Service Providers (Public and Private) in 2023
Best Cloud Service Providers: 1. AWS 2. Google Cloud 3. Azure 4. Oracle Cloud 5. VMware 6. DigitalOcean 7. Rackspace 8. IBM Cloud.
Security Affairs
Volvo retailer leaks sensitive files
The Brazilian retail arm of car manufacturing giant Volvo leaked sensitive files, putting its clientele in the vast South American country in peril. Volvo, a Swedish luxury vehicle manufacturer with over 95,000 employees and sales of nearly 700,000 vehicles annually, is a highly attractive target for criminals since the company caters to a wealthy clientele. […]
Security Affairs
Hyundai suffered a data breach that impacted customers in France and Italy
Hyundai disclosed a data breach that impacted Italian and French car owners and clients who booked a test drive. Hyundai has suffered a data breach that impacted Italian and French car owners and customers who booked a test drive. Threat actors had access to the email addresses, physical addresses, telephone numbers, and vehicle chassis numbers […]
Security Affairs
OCR Labs exposes its systems, jeopardizing major banking clients
A digital identification tool provided by OCR Labs to major banks and government agencies leaked sensitive credentials, putting clients at severe risk. The Cybernews research team discovered a misconfiguration in the OCR Labs system that exposed sensitive data. The company is a leading provider of digital ID verification tools, with its IDkit tool being used […]
Bleeping Computer
Cryptocurrency companies backdoored in 3CX supply chain attack
Some of the victims affected by the 3CX supply chain attack have also had their systems backdoored with Gopuram malware, with the threat actors specifically targeting cryptocurrency companies with this additional malicious payload.
CSO
3CX DesktopApp compromised by supply chain attack
3CX will be releasing an update for the DesktopApp in the next few hours; meanwhile, users are urged to use the PWA Client instead.
The Hacker News
3CX Desktop App Targeted in Supply Chain Cyber Attack, Affecting Millions of Users
Active supply chain attack targets popular voice & video conferencing software 3CX Desktop App, affecting hundreds of well-known brands.
Bleeping Computer
Cybersecurity firms warn of 3CX desktop app supply chain attack
A digitally signed and trojanized version of the 3CX Voice Over Internet Protocol (VOIP) desktop client is reportedly being used to target the company's customers in an ongoing supply chain attack.
Bleeping Computer
Hackers compromise 3CX desktop app in a supply chain attack
A digitally signed and trojanized version of the 3CX Voice Over Internet Protocol (VOIP) desktop client is reportedly being used to target the company's customers in an ongoing supply chain attack.
Security Affairs
BMW exposes clients in Italy
Cybernews researchers discovered that BMW exposed sensitive files that were generated by a framework that BMW Italy relies on. Original post at: https://cybernews.com/security/bmw-exposes-italy-clients/ Hackers have been enjoying their fair share of the spotlight by breaching car manufacturers’ defenses. The latest Cybernews discovery showcases that popular car brands sometimes leave their doors open, as if inviting […]
CSO
Cyberattacks hit data centers to steal information from global companies
A malicious campaign against data centers stole the access credentials of some of the world's biggest companies — including Amazon, Apple, Goldman Sachs, and Microsoft — according to reports.
Ars Technica
Hackers discover that vulnerabilities are rife in the auto industry
Connected car skeptics have a right to be concerned about the widespread problem.
The Hacker News
Millions of Vehicles at Risk: API Vulnerabilities Uncovered in 16 Major Car Brands
Researchers have uncovered API vulnerabilities in 16 major car brands, putting millions of vehicles at risk of cyberattacks.
Security Affairs
Security Affairs newsletter Round 401 by Pierluigi Paganini
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. If you want to also receive for free the newsletter with the international press subscribe here. Chick-fil-A launched an investigation into “suspicious activity” IcedID malware campaign targets Zoom users Hive Ransomware gang […]
CyberScoop
Car hackers discover vulnerabilities that could let them hijack millions of vehicles
Security researchers spent months diving into vehicles and found multiple vulnerabilities impacting everything from safety to personal data.
Cyber Security News
Critical Vulnerabilities in Ferrari, BMW, Rolls Royce, Porsche Expose Owners’ Personal Information
Hackers could have performed malicious activities through API security vulnerabilities in nearly twenty car manufacturers and services. As a result of these vulnerabilities, hackers could be able to perform the following activities:-
The Record
Ferrari, BMW, Rolls Royce, Porsche and more fix vulnerabilities giving car takeover capabilities
Several of the biggest car brands have fixed dozens of vulnerabilities, some of which would have allowed for the full takeover of vehicles.
SecurityWeek
16 Car Makers and Their Vehicles Hacked via Telematics, APIs, Infrastructure
Multiple vulnerabilities identified in vehicles from 16 manufacturers allowed researchers to control car functions, shut down engines, and obtain sensitive information.
Security Affairs
Critical flaws found in Ferrari, Mercedes, BMW, Porsche, and other carmakers
BMW, Mercedes, Toyota, and other popular carmakers use vulnerable APIs that could have allowed attackers to perform malicious activities. Cybersecurity researcher Sam Curry and his colleagues discovered many vulnerabilities in the vehicles manufactured by tens of carmakers and services implemented by vehicle solutions providers. The vulnerabilities could have been exploited by threat actors to perform […]
Bleeping Computer
Toyota, Mercedes, BMW API flaws exposed owners’ personal info
Security analysts disclosed severe API security flaws impacting numerous car makers, enabling them to access vehicle owner information, take over accounts, access internal systems, modify records, and track their position.
The Hacker News
SiriusXM Vulnerability Lets Hackers Remotely Unlock and Start Connected Cars
Researchers have discovered a security vulnerability in SiriusXM services that allows remote hacking of connected cars from Honda, Nissan, Infiniti an
Cyber Security News
Bug in Honda, Nissan, Toyota Cars App Let Hackers Unlock & Start The Car Remotely
A critical Bug uncovered in Honda, Nissan, Infiniti, and Acura vehicle apps lets hackers and law enforcement agencies unlock the car remotely
Security Affairs
Law enforcement agencies can extract data from thousands of cars’ infotainment systems
Law enforcement agencies can extract data from the infotainment systems of thousands of different car models. Data managed by infotainment systems in modern vehicles are a valuable source of information for the investigation of law enforcement agencies. Modern vehicles come with sophisticated infotainment systems that are connected online and that could represent an entry point […]
DarkReading
SiriusXM, MyHyundai Car Apps Showcase Next-Gen Car Hacking
A trio of security bugs allow remote attackers to unlock or start the car, operate climate controls, pop the trunk, and more — all via poorly coded mobile apps.
Bleeping Computer
Hyundai app bugs allowed hackers to remotely unlock, start cars
Vulnerabilities in mobile apps exposed Hyundai and Genesis car models after 2012 to remote attacks that allowed unlocking and even starting the vehicles.
SecurityWeek
Several Car Brands Exposed to Hacking by Flaw in Sirius XM Connected Vehicle Service
Researchers show how hackers could have taken control of vehicle functionality and obtained owner data simply by knowing the VIN.
The Record
Researchers find bugs allowing access, remote control of cars
A researcher found vulnerabilities allowing for remote access and control for cars made by Hyundai, Genesis, Honda, Nissan and Infiniti.
SecurityWeek
Accounts Deceivable: Email Scam Costliest Type of Cybercrime
Losses in the U.S. to BEC scams in 2021 were nearly $2.4 billion, according to a report by the FBI. That’s a 33% increase from 2020 and more than a tenfold increase from just seven years ago.
ZDNet
Ukrainian software developers share their stories and photos from the war zone | ZDNet
Eight coders based in the Ukraine spoke to ZDNet about how they're holding up in the face of war. These are their stories.
Cyber Security News
Toyota Motor Supplier DENSO Hacked - Sensitive Data Stolen
DENSO was one of the parent organizations of Toyota and is also an auto parts maker that supplies to many major automotive companies like Alfa Romeo, Toyota, Audi, BMW, Bentley, Bugatti, Ford, Suzuki, etc.
The Hacker News
New Argo CD Bug Could Let Hackers Steal Secret Info from Kubernetes Apps
A new vulnerability has been discovered in Argo CD could let hackers steal sensitive information such as passwords and API keys from Kubernetes apps.
ZDNet
Google Chrome rival Brave reports another big jump in users | ZDNet
Privacy-focused browser company says users want the tools to be independent from Big Tech.