Custom search

Tracking the Progression of Earth Hundun's Cyberespionage Campaign in 2024

This report describes how Waterbear and Deuterbear — two of the tools in Earth Hundun's arsenal — operate, based on a campaign from 2024.

Ars Technica

Google unveils Veo, a high-definition AI video generator that may rival Sora

Google's video synthesis model creates minute-long 1080p videos from written prompts.

Infosecurity News

PDF Exploitation Targets Foxit Reader Users

CPR said exploit builders in .NET and Python have been employed to deploy this malware

The Hacker News

(Cyber) Risk = Probability of Occurrence x Damage

CVSS v4.0 evaluates vulnerabilities using a revised scoring system, emphasizing environmental and threat metrics.

Cyber Security News

10 Best Network Security Providers for Healthcare Industry in 2024

Best Network Security Providers for the Healthcare Industry - 1. Perimeter 81, 2. Palo Alto Networks, 3. Fortinet, 4. Cisco, 5. Trend Micro

SecurityWeek

2 days ago

SAP Patches Critical Vulnerabilities in CX Commerce, NetWeaver

SAP has released 14 new and three updated security notes on its May 2024 Security Patch Day, including for critical vulnerabilities.

The Cyber Express

2 days ago

Credibility in Question: Meesho Data Breach Claims Echo 2020 Leak

A threat actor using the alias qpwomsx has claimed responsibility for an alleged data breach affecting the popular Indian online

Cyber Security News

2 days ago

Critical Flaws In Cinterion Cellular Modems Let Attackers Execute Remote Code

Few Critical vulnerabilities have been discovered in Cinterion Cellular modems that could allow an unauthorized remote attacker to execute

Bleeping Computer

INC ransomware source code selling on hacking forums for $300,000

A cybercriminal using the name "salfetka" claims to be selling the source code of INC Ransom, a ransomware-as-a-service (RaaS) operation launched in August 2023.

HACKRead

Cinterion Modem Vulnerabilities Leave IoT and Industrial Networks Exposed

Kaspersky researchers have identified multiple security vulnerabilities in Cinterion cellular modems, which could be exploited by threat actors.

Infosecurity News

Critical Vulnerabilities in Cinterion Modems Exposed

The flaws include CVE-2023-47610, a security weakness within the modem’s SUPL message handlers

SecurityWeek

Cinterion Modem Flaws Pose Risk to Millions of Devices in Industrial, Other Sectors

A critical vulnerability in the Cinterion cellular modems can be exploited for remote code execution via SMS messages.

The Hacker News

Severe Vulnerabilities in Cinterion Cellular Modems Pose Risks to Various Industries

Kaspersky researchers have uncovered multiple security flaws in Cinterion cellular modems that could put your communication networks and IoT devices a

The Cyber Express

Hacker Offers Data Allegedly Stolen from the City of New York

An unidentified threat actor known as "pwns3c" has offered access to a database purported to contain sensitive data and documents

The Cyber Express

TCE Cyberwatch: Weekly Wrap on AI, Deepfakes, Cybersecurity Challenges Affecting Nations Worldwide

This week on TCE Cyberwatch we’re covering the different data breaches and vulnerabilities faced by different companies. Along with this,

Security Affairs

4 days ago

Security Affairs newsletter Round 471 by Pierluigi Paganini – INTERNATIONAL EDITION

A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs are free for you.

The Hacker News

5 days ago

FIN7 Hacker Group Leverages Malicious Google Ads to Deliver NetSupport RAT

The notorious FIN7 hacking group is at it again! This time, they're using malicious Google ads to trick users into downloading malware disguised as le

DarkReading

Millions of IoT Devices at Risk From Integrated Modem

Researchers discovered seven vulnerabilities — including an unauthenticated RCE issue — in widely deployed Telit Cinterion modems.

The Hacker News

What's the Right EDR for You?

EDR solutions can detect threats that traditional defenses like antivirus often miss. Find out how EDR provides a deeper level of security.

Bleeping Computer

Widely used modems in industrial IoT devices open to SMS attack

Security flaws in Telit Cinterion cellular modems, widely used in sectors including industrial, healthcare, and telecommunications, could allow remote attackers to execute arbitrary code via SMS.

Bleeping Computer

Widely used Telit Cinterion modems open to SMS takeover attacks

Security flaws in Telit Cinterion cellular modems, widely used in sectors including industrial, healthcare, and telecommunications, could allow remote attackers to execute arbitrary code via SMS.

Security Affairs

Citrix warns customers to update PuTTY version installed on their XenCenter system manually

Citrix urges customers to manually address a PuTTY SSH client flaw that could allow attackers to steal a XenCenter admin's private SSH key.

Infosecurity News

Mobile Banking Malware Surges 32%

Afghanistan, Turkmenistan and Tajikistan victims experienced the highest share of banking Trojans

The Hacker News

Kremlin-Backed APT28 Targets Polish Institutions in Large-Scale Malware Campaign

Russia-Linked APT28 Strikes Poland with Malware Campaign Polish government bodies were hit by a sophisticated malware attack orchestrated by the infam

The Hacker News

New Guide: How to Scale Your vCISO Services Profitably

Looking to grow your MSP business? Consider offering vCISO services to meet the critical needs of SMEs. It’s a game changer for recurring revenue and

Infosecurity News

Fake Online Stores Scam Over 850,000 Shoppers

Researchers discover 75,000+ domains hosting fraudulent e-commerce sites, in a campaign dubbed BogusBazaar

The Cyber Express

UK-Based Digital Signing Platform SigningHub Faces Alleged Source Code Leak

IntelBroker has claimed the SigningHub data leak, impacting the UK-based online document signing and digital signature creation service provider. The

CyberNews

8 days ago

Biometric gate glitch causes chaos in major UK airports

Passport e-gates across the country temporarily stopped working, preventing travelers from boarding their flights.

The Cyber Express

8 days ago

Hong Kong Fire Department Issues Data Breach Notification

The Hong Kong fire department uncovered a recent breach in its computer system that exposed the personal information of over

The Hacker News

Russian Hacker Dmitry Khoroshev Unmasked as LockBit Ransomware Administrator

UK's National Crime Agency has unmasked the admin behind the prolific LockBit ransomware as 31-year-old Russian national Dmitry Khoroshev.

CyberNews

OpenAI tests DALL-E 3 detection tool

OpenAI has said that it’s building a tool to detect content created by its text-to-image generator DALL-E 3, with early testing showing 98% accuracy.

CyberNews

LockBit gang leader exposed in FBI ransomware breakthrough

The leadership identity of the LockBit ransomware group is unveiled by the US Department of Justice (DoJ), UK’s National Crime Agency (NCA), and Europol.

Infosecurity News

BTC-e $9bn Crypto-Money Launderer Pleads Guilty

Russian national Alexander Vinnik has pleaded guilty to his role in a multibillion-dollar money laundering conspiracy

The Hacker News

Russian Operator of BTC-e Crypto Exchange Pleads Guilty to Money Laundering

Russian operator of BTC-e crypto exchange pleads guilty to money laundering charges spanning 2011-2017.

Security Affairs

Alexander Vinnik, the operator of BTC-e exchange, pleaded guilty to money laundering

Alexander Vinnik, a Russian operator of virtual currency exchange BTC-e pleaded guilty to participating in a money laundering scheme.

HACKRead

Cuckoo Mac Malware Mimics Music Converter to Steals Passwords and Crypto

Cybersecurity researchers from Mac security provider, Kandji, have discovered a new malware dubbed "Cuckoo" targeting macOS users.

Cyber Security News

New Cuckoo Malware Attacking macOS Users to Steal Sensitive Data

Cybersecurity researchers have uncovered a new malware strain dubbed "Cuckoo., exhibits characteristics of both spyware and an infostealer

CyberNews

New spyware targets Macs pretending to be “Spotify Music Converter”

Arm and Intel-based Macs are being targeted by a new dangerous malware, dubbed Cuckoo.

CyberNews

Suspected Russian cybercrime kingpin pleads guilty in the US

Alexander Vinnik, a Russian cybercrime kingpin who was arrested in Greece in 2017, convicted of money laundering in France, and is now awaiting trial in California

The Hacker News

New 'Cuckoo' Persistent macOS Spyware Targeting Intel and Arm Macs

A new malware called "Cuckoo" is on the loose, targeting both Intel and ARM-based Macs.

The Record

11 days ago

Russian operator of BTC-e crypto exchange pleads guilty to money laundering

Alexander Vinnik oversaw an operation that processed $9 billion in transactions, many of them allowing cybercriminals to transfer, launder and store the proceeds of their illegal activities.

Cyber Security News

11 days ago

Cyber Security News Weekly Round-Up (Vulnerabilities, Cyber Attacks, Threats & New Stories)

The weekly news summary keeps you up to date with what’s happening in cybersecurity, including developments, vulnerabilities, breaches, threats, and defensive strategies. Knowing about new cyber risks and attack vectors helps you put up safeguards and preventive measures as soon as possible to protect your systems. Remaining constantly aware gives you a holistic view of […]

Security Affairs

12 days ago

Blackbasta gang Synlab Italia attack

The Blackbasta extortion group claimed responsibility for the attack that in April severely impacted the operations of Synlab Italia.

Security Affairs

13 days ago

Russia-linked APT28 and crooks are still using the Moobot botnet

The Ubiquiti EdgeRouter botnet is still used by Russia-linked group APT28 and cybercriminals organizations.

Cyber Security News

13 days ago

How U.S K-12 Schools Can Solve Their Top 10 Cybersecurity Challenges - Free E-Book

Solutions for each challenge are explained in more depth by Cynet’s new guide, “Top 10 Cybersecurity Challenges Faced by K-12 Institutions.”

DarkReading

Dropbox Breach Exposes Customer Credentials, Authentication Data

Threat actor dropped in to Dropbox Sign production environment and accessed emails, passwords, and other PII, along with APIs, OAuth, and MFA info.

Security Affairs

Threat actors hacked the Dropbox Sign production environment

Threat actors breached the Dropbox Sign production environment and accessed customer email addresses and hashed passwords

SecurityWeek

Network Security Firm Corelight Raises $150 Million

Network detection and response (NDR) provider Corelight has raised $150 million in a Series D funding round led by Accel.

DarkReading

Tech Tip: Why Haven't You Set Up DMARC Yet?

DMARC adoption is more important than ever following Google's and Yahoo's latest mandates for large email senders. This Tech Tip outlines what needs to be done to enable DMARC on your domain.

CyberSecurity Dive

Every Dropbox Sign user, account holders or not, stung in cyberattack

An attacker intruded the electronic signature platform’s production environment and accessed a trove of user data, including OAuth tokens.

Cyber Security News

New macOS Adload Malware Bypasses Built-in macOS Antivirus Detection

A new variant of the notorious Adload malware has been discovered to bypass the latest updates to Apple's built-in antivirus, XProtect.

The Cyber Express

Outabox Data Breach Exposes PII of more than 1 Million Australian Club Visitors

Over a million Australians who frequented pubs and clubs have likely had their critical information exposed in Outabox data breach,

The Hacker News

Dropbox Discloses Breach of Digital Signature Service Affecting All Users

Dropbox Sign Breached! Unidentified hackers accessed user emails, usernames, and account settings for all Dropbox Sign users.

SecurityWeek

Dropbox Data Breach Impacts Customer Information

Dropbox says hackers breached its Sign production environment and accessed customer email addresses and hashed passwords.

DarkReading

'DuneQuixote' Shows Stealth Cyberattack Methods Are Evolving

A recent campaign targeting Middle Eastern government organizations plays standard detection tools like a fiddle. Cyber defenders must keep pace.

CSO

Dropbox Sign hack exposed user data, raises security concerns for e-sign industry

The names and email addresses of those customers were also exposed who had never created an account with Dropbox Sign but had “received or signed a document through Dropbox Sign.”

Cyber Security News

Dropbox Sign Hacked: Attackers Stolen API Keys, MFA, & Hashed Passwords

Dropbox disclosed a significant security breach affecting its electronic signature service, Dropbox Sign (formerly known as HelloSign).

SecurityWeek

Deepfake of Principal’s Voice Is the Latest Case of AI Being Used for Harm

Police say a principal from a Maryland high school was framed as racist by a fake recording of his voice using AI-based deepfake technology.

SC Magazine

Attackers steal API keys, OAuth tokens, in Dropbox Sign breach

Security pros see the Dropbox Sign breach as not just a blow to Dropbox, but a really bad day for electronic signatures.

DarkReading

Shadow APIs: An Overlooked Cyber-Risk for Orgs

Unmanaged and unknown Web services endpoints are just some of the challenges organizations must address to improve API security.

Ars Technica

The BASIC programming language turns 60

Easy-to-use language that drove Apple, TRS-80, IBM, and Commodore PCs debuted in 1964.

SecurityWeek

Wpeeper Android Trojan Uses Compromised WordPress Sites to Shield Command-and-Control Server

Chinese cybersecurity firm QAX XLab uncovered an Android trojan that hides its command-and-control server behind compromised WordPress sites.

Latest Hacking News

Judge0 Vulnerabilities Could Allow Sandbox Escape

A security researcher discovered a security vulnerability in the Judge0 system, which received a patch that could further be bypassed, leading to further vulnerabilities. While the developer eventually patched the issue after repeated exploits, the

The Record

Dropbox says hacker accessed passwords, authentication info during breach

The company told federal regulators that it discovered unauthorized access to the production environment of its Dropbox Sign product.

Trend Micro

Router Roulette: Cybercriminals and Nation-States Sharing Compromised Networks

This blog entry aims to highlight the dangers of internet-facing routers and elaborate on Pawn Storm's exploitation of EdgeRouters, complementing the FBI's advisory from February 27, 2024.

DarkReading

Attackers Planted Millions of Imageless Repositories on Docker Hub

The purported metadata for each these containers had embedded links to malicious files.

Bleeping Computer

Save over $250 on these cybersecurity training courses

Don't miss your chance to get The 2024 Cybersecurity Mastermind Training Bundle on sale for just $39.99 (reg. $300).

Bleeping Computer

New Wpeeper Android malware hides behind hacked WordPress sites

A new Android backdoor malware named 'Wpeeper' has been spotted in at least two unofficial app stores mimicking the Uptodown App Store, a popular third-party app store for Android devices with over 220 million downloads.

The Hacker News

Millions of Malicious 'Imageless' Containers Planted on Docker Hub Over 5 Years

Millions of malicious "imageless" containers have been planted on Docker Hub over the past 5 years in multiple cybercriminal campaigns.

Cyber Security News

Beware of New Android Trojan That Executes Malicious Commands on Your Phone

This sophisticated backdoor Trojan to infiltrate Android systems & execute a malicious commands, posing a threat to unsuspecting users.

CSO

UnitedHealth hackers exploited Citrix vulnerabilities, CEO to testify

In the written testimony before the House Energy and Commerce Committee, CEO Andrew Witty said after gaining access, the threat actor moved laterally within the systems using sophisticated methods and exfiltrated data.

Bleeping Computer

Google rejected 2.28 million risky Android apps from Play store in 2023

Google blocked 2.28 million Android apps from being published on Google Play after finding various policy violations that could threaten user's security.

Bleeping Computer

Google rejected 2.28 million risky apps from Play Store in 2023

Google blocked 2.28 million apps from being published on Google Play after finding various policy violations that could threaten the security of Android users.

The Cyber Express

‘Unprecedented Scale’ of Credential Stuffing Attacks Observed: Okta

Okta reported an "unprecedented scale" of credential stuffing attacks targeting its identity and access management solutions, resulting in the breach

Bleeping Computer

Save big on this in-depth ethical hacking course bundle — now just $46

The All-in-One Super-Sized Ethical Hacking Bundle is on sale for just $45.99 (reg. $1098) for a limited time only.

The Hacker News

Sandbox Escape Vulnerabilities in Judge0 Expose Systems to Complete Takeover

Multiple vulnerabilities have been discovered in the popular Judge0 online code execution system, putting users at risk of complete system compromise.

Security Affairs

The Los Angeles County Department of Health Services disclosed a data breach

Los Angeles County Department of Health Services reported a data breach that exposed thousands of patients' personal and health information.

The DFIR Report

18 days ago

From IcedID to Dagon Locker Ransomware in 29 Days - The DFIR Report

Key Takeaways In August 2023, we observed an intrusion that started with a phishing campaign using PrometheusTDS to distribute IcedID. IcedID dropped and executed a Cobalt Strike beacon, which was … Read More

The Record

18 days ago

Telegram blocks, then unblocks, chatbots used by Ukraine’s intelligence services

Ukraine’s government uses the bots to collect and share real-time information about Russian military activity.

The Record

18 days ago

Standard Chartered CEO on why cybersecurity has become a 'disproportionately huge topic' at board meetings

The CEO of one of the largest banks in the world discusses cryptocurrency and artificial intelligence, as well as how he's been able to influence cybersecurity culture.

Cyber Security News

20 days ago

Hackers Abuse Autodesk Drive For Hosting Weaponized PDF Files

Hackers abuse the Autodesk hosting platform to host malicious PDF files, which leads to phishing attacks on victims.

The Cyber Express

20 days ago

Multi-Year Cyberattack: Chinese Hackers Suspected in Breaching Volkswagen

Volkswagen, the automotive giant, finds itself at the center of a large-scale cyber operation, with suspicions pointing toward hackers operating

DarkReading

20 days ago

PCI Launches Payment Card Cybersecurity Effort in the Middle East

The payment card industry pushes for more security in financial transactions to help combat increasing fraud in the region.

Bleeping Computer

LA County Health Services: Patients' data exposed in phishing attack

The Los Angeles County Department of Health Services disclosed a data breach after thousands of patients' personal and health information was exposed in a data breach resulting from a recent phishing attack impacting over two dozen employees.

Bleeping Computer

LA County Health Services: Patients' data exposed in phishing attack

The L.A. County's Department of Health Services, the second-largest public health care system in the United States, disclosed a data breach after patients' personal and health information was exposed in a data breach resulting from a recent phishing attack impacting over two dozen employees.

DarkReading

Godfather Banking Trojan Spawns 1.2K Samples Across 57 Countries

Mobile malware-as-a-service operators are upping their game by automatically churning out hundreds of unique samples on a whim.

HACKRead

NDR in the Modern Cybersecurity Landscape

Modern cybersecurity uses the concept of Network Detection and Response (NDR) as an active approach to fortifying defences against threats.

SecurityWeek

Autodesk Drive Abused in Phishing Attacks

A new phishing campaign abuses compromised email accounts and targets corporate users with PDF files hosted on Autodesk Drive.

Bleeping Computer