The Cyber Express
Russian Hackers Used Two New Backdoors to Spy on European Foreign Ministry
Researchers recently uncovered two new backdoors implanted within the infrastructure of a European Ministry of Foreign Affairs (MFA) and its
Cyber Security News
Hackers Exploiting Microsoft's Quick Assist Tool To Deliver Ransomware
Remote assist tools are often targeted by hackers as they create a direct channel that can be used to get into desired systems while using
The Record
US offers $5 million for info on North Korean IT workers involved in job fraud
According to the State Department, a U.S. national named Christina Chapman helped four people fraudulently obtain work as remote software and applications developers with companies in a range of sectors and industries, earning millions of dollars for the North Korean regime.
Infosecurity News
NCSC Expands Election Cybersecurity to Safeguard Candidates
The National Cyber Security Centre launches an opt-in Personal Internet Protection service to safeguard individuals from cyber threats during the upcoming election
.webp)
Cyber Security News
Turla APT Group Attacking European Ministry of Foreign Affairs
The well-known advanced persistent threat (APT) group Turla, which is based in Russia, is said to be going after the European Ministry.
The Hacker News
Turla Group Deploys LunarWeb and LunarMail Backdoors in Diplomatic Missions
Two new backdoors, LunarWeb and LunarMail, have targeted a European ministry of foreign affairs and its diplomatic missions in the Middle East
The Cyber Express
DragonForce Cyberattack Strikes Again: Malone & Co and Watt Carmicheal Added as Victims
The notorious DragonForce ransomware group has expanded its list of victims, adding two new names to their dark web portal
.webp)
Cyber Security News
Hackers Abusing to GitHub to Host Malicious Infrastructure
Cybercriminals have been exploiting GitHub, a platform widely trusted by developers, to host malicious infrastructure.
SecurityWeek
ICS Patch Tuesday: Advisories Published by Siemens, Rockwell, Mitsubishi Electric
Several ICS vendors have released advisories on Tuesday to inform customers about vulnerabilities found in their products.
The Cyber Express
CISA, FBI, and DHS Releases Cybersecurity Blueprint for Civil Society
CISA, in collaboration with DHS, FBI, and international cybersecurity entities, has revealed a comprehensive guide aimed at bolstering cybersecurity for
CyberNews
North Korea launders $148 million of stolen crypto using Tornado Cash
A UN sanctions investigation says North Korea laundered $147.5 million of stolen crypto through the virtual mixer platform Tornado Cash in March.
The Record
New backdoors on a European government's network appear to be Russian
Researchers with cybersecurity company ESET have labeled two new pieces of suspected Russian malware as LunarWeb and LunarMail.
The Record
Officials defend election security efforts as senators call on them to improve their game
“We've got to do a better job of making sure Americans of all political stripes understand what is very probably coming their way over the next less than six months,” Senate Intelligence Chair Mark Warner told leaders from ODNI, CISA and the FBI.
Bleeping Computer
VMware makes Workstation Pro and Fusion Pro free for personal use
VMWare has made Workstation Pro and Fusion Pro free for personal use, allowing home users and students to set up their own virtualized test labs and play with another operating system at little to no cost.
Ars Technica
Google strikes back at OpenAI with “Project Astra” AI agent prototype
AI model updates galore at Google I/O, including 2m context window, Imagen 3, Veo, and more.
Infosecurity News
Ebury Botnet Operators Diversify with Financial and Crypto Theft
The 15-year-old Ebury botnet is more active than ever, as ESET found 400,000 Linux servers compromised for cryptocurrency theft and financial gain
Infosecurity News
CISA and Partners Unveil Cybersecurity Guide For Civil Society Groups
The guide is designed to provide high-risk communities with actionable steps to bolster their cybersecurity defenses
Infosecurity News
China Presents Defining Challenge to Global Cybersecurity, Says GCHQ
GCHQ chief warns China's cyber actions threaten global internet security, while Russia and Iran pose immediate risks
SecurityWeek
Hacker Conversations: Ron Reiter, and the Making of a Professional Hacker
Ron Reiter was a childhood hacker in Israel and recruited into the IDF’s Unit 8200. Now he is CTO and co-founder of cybersecurity firm Sentra.
Security Affairs
Phorpiex botnet sent millions of phishing emails to deliver LockBit Black ransomware
Experts reported that since April, the Phorpiex botnet sent millions of phishing emails to spread LockBit Black ransomware
The Hacker News
Apple and Google Launch Cross-Platform Feature to Detect Unwanted Bluetooth Tracking Devices
pple and Google just rolled out a cross-platform feature called "Detecting Unwanted Location Trackers" (DULT) on iOS and Android to protect users.
The Record
Civil society under increasing threats from ‘malicious’ state cyber actors, US
State-linked hackers from Russia, China, Iran and North Korea are setting their sights set their sights on NGOs, think tanks, human rights activists and journalists, the advisory warned.
The Record
UK 'increasingly concerned' about Russian intelligence links to hacktivists
GCHQ Director Anne Keast-Butler warned at the CyberUK conference that the Kremlin’s partnership with criminal groups was contributing to cyberattacks as well as other operations.
Bleeping Computer
Apple backports fix for zero-day exploited in attacks to older iPhones
Apple has backported security patches released in March to older iPhones and iPads, fixing an iOS zero-day tagged as exploited in attacks.
Bleeping Computer
Apple backports fix for RTKit iOS zero-day to older iPhones
Apple has backported security patches released in March to older iPhones and iPads, fixing an iOS Kernel zero-day tagged as exploited in attacks.
Security Affairs
Threat actors may have exploited a zero-day in older iPhones, Apple warns
Apple rolled out urgent security updates to address code execution vulnerabilities in iPhones, iPads, and macOS.
Bleeping Computer
Botnet sent millions of emails in LockBit Black ransomware campaign
Since April, millions of phishing emails have been sent through the Phorpiex botnet to conduct a large-scale LockBit Black ransomware campaign.
HACKRead
Police Accessed Proton Mail User Data in Terrorism Probe
Encrypted email services like ProtonMail and Wire promise privacy, but can they guarantee anonymity? A recent case in Spain has users questioning the limitations of encryption when law enforcement steps in.
SecurityWeek
NATO Draws a Cyber Red Line in Tensions With Russia
Weakening liberal democracies and weakening the NATO alliance are conjoined in the hybrid war that Russia is conducting against Ukraine.
CyberNews
Russia-linked group incorporating AI in its new automated propaganda machine
A Russia-linked group is automating fake news fabrication and publishing with AI.
CyberNews
Disney+ to release VR Marvel series exclusively for Apple Vision Pro
Disney+ is about to launch its first immersive title – a narrative-driven story starring Marvel’s superheroes.
The Cyber Express
Australia Faces Unprecedented Cyber Threats Amid Support for Ukraine
Following Australia's vocal support for Ukraine, the nation finds itself targeted by a Cyber Army Russia Reborn cyberattack. The recent
Cyber Security News
Boeing Confirms LockBit Hackers Demanded $200 Million Ransom After 2023 Data Breach
Aerospace giant Boeing has confirmed that the LockBit ransomware gang demanded a staggering $200 million extortion payment after breaching the company's network and stealing sensitive data in October 2023.
The Cyber Express
TCE Cyberwatch: Weekly Wrap on AI, Deepfakes, Cybersecurity Challenges Affecting Nations Worldwide
This week on TCE Cyberwatch we’re covering the different data breaches and vulnerabilities faced by different companies. Along with this,
Krebs on Security
How Did Authorities Identify the Alleged Lockbit Boss?
Last week, the United States joined the U.K. and Australia in sanctioning and charging a Russian man named Dmitry Yuryevich Khoroshev as the leader of the infamous LockBit ransomware group. LockBit's leader "LockBitSupp" claims the feds named the wrong guy,…
Security Affairs
Pro-Russia hackers targeted Kosovo government websites
Pro-Russia hackers targeted government websites in Kosovo in retaliation for the government's support to Ukraine with military equipment.
Security Affairs
Security Affairs newsletter Round 471 by Pierluigi Paganini – INTERNATIONAL EDITION
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs are free for you.
Security Affairs
As of May 2024, Black Basta ransomware affiliates hacked over 500 organizations worldwide
Black Basta ransomware affiliates have breached over 500 organizations between April 2022 and May 2024, FBI and CISA reported.
HACKRead
Latvian TV Channels Hacked to Broadcast Russian Victory Day Parade
On Thursday, someone hacked into the system and switched the channels to show the Russian Victory Day parade instead of Latvian programs.
Bleeping Computer
Keep the team on task with $10 off Microsoft Project through May 22
Through May 22 only, new users can get a lifetime license to Microsoft Project Pro 2021 on a single PC for $19.97 (reg. $29.99).
The Cyber Express
State Actor Made Three Attempts to Breach B.C. Government Networks
A state or state-sponsored actor orchestrated the "sophisticated" cyberattacks against the British Columbia government networks, revealed the head of B.C.’s
DarkReading
Cybersecurity Races to Unmask New Wave of AI Deepfakes
Kevin Mandia, CEO of Mandiant at Google Cloud, calls for watermarks as the industry braces for a barrage of mind-bending AI-generated fake audio and video.
The Hacker News
CensysGPT: AI-Powered Threat Hunting for Cybersecurity Pros (Webinar)
Join us as we unveil CensysGPT and learn how it's changing the game in threat hunting.
SecurityWeek
In Other News: European Parliament Breach, DocGo Hack, VMware Advisories Moved
European Parliament application breached, DocGo hacked, VMware advisories moved to Broadcom support portal.
Security Affairs
Russia-linked APT28 targets government Polish institutions
CERT Polska warns of a large-scale malware campaign against Polish government institutions conducted by Russia-linked APT28.
SecurityWeek
RSA Conference 2024 – Announcements Summary (Day 4)
Hundreds of companies are showcasing their products and services this week at the 2024 edition of the RSA Conference in San Francisco.
CyberNews
Russian hackers breach Latvian TV to show Victory Day parade in Moscow
Thousands of Latvians woke up Thursday to watch the Victory Day military parade in Moscow – involuntarily. Riga says that Russian hackers hijacked the transmissions.
The Record
Russian hackers are reportedly going after Kosovo’s government
Kosovo Foreign Minister Donika Gervalla-Schwarz said that Russia is targeting the country after it agreed to provide military equipment to Ukraine “in its justified defense against Russian genocidal aggression.”
The Record
As EU referendum looms, Moldova finds itself in Russian digital army’s crosshairs
The Kremlin’s "hybrid war" on Moldova — featuring disinformation, cyberattacks and influence operations — aims to manipulate three consequential votes in Moldova this year and next.
The Record
Russian hackers hijack Ukrainian TV to broadcast Victory Day parade
The hackers replaced broadcasts on 15 Ukrainian channels to show a parade in Moscow commemorating the defeat of Nazi Germany in World War II.
Bleeping Computer
Poland says Russian military hackers target its govt networks
Poland says a state-backed threat group linked to Russia's military intelligence service (GRU) has been targeting Polish government institutions throughout the week.
The Hacker News
Kremlin-Backed APT28 Targets Polish Institutions in Large-Scale Malware Campaign
Russia-Linked APT28 Strikes Poland with Malware Campaign Polish government bodies were hit by a sophisticated malware attack orchestrated by the infam
SecurityWeek
LockBit Takes Credit for City of Wichita Ransomware Attack
The LockBit cybercrime group has taken credit for the recent ransomware attack that disrupted City of Wichita systems.
Infosecurity News
AI-Powered Russian Network Pushes Fake Political News
Researchers discover large-scale Russian influence operation using GenAI to influence voters
The Cyber Express
Ascension Healthcare Hit by Cyberattack: Patients Wait Hours, Chaos Ensues
Ascension, one of the largest nonprofit healthcare systems in the United States, is facing disruptions in clinical operations due to
SecurityWeek
RSA Conference 2024 – Announcements Summary (Day 3)
Hundreds of companies are showcasing their products and services this week at the 2024 edition of the RSA Conference in San Francisco.
The Cyber Express
Google Brings Gemini AI to Cybersecurity
Google has brought together its Gemini AI model with its Mandiant cybersecurity unit and VirusTotal threat Intelligence to enhance threat
The Record
Poland says it was targeted by Russian military intelligence hackers
A phishing campaign against Polish institutions was the work of Russia’s military intelligence agency, the GRU, according to CERT-PL.
DarkReading
3-Year Iranian Influence Op Preys on Divides in Israeli Society
Iran follows in Russia's disinformation footsteps but with a different, more economical, and potentially higher-impact model.
CyberNews
Eurovision faces heightened cyber risks
Eurovision has said it was closely working with security teams to protect the world’s largest music competition from cyber attacks amid warnings of increased risks.
The Cyber Express
MedStar Health Reports Data Breach Impacting 183,000 Patients
MedStar Health, a prominent non-profit healthcare provider disclosed a data breach that impacts more than 183,000 patients from its hundreds
CyberSecurity Dive
Generative AI is a looming cybersecurity threat
Researchers have not identified any AI-engineered cyberattack campaigns, yet, but they say it’s only a matter of time before an AI system is dominant enough in the market to draw attention.
SecurityWeek
University System of Georgia Says 800,000 Impacted by MOVEit Hack
University System of Georgia says Social Security numbers and bank account numbers were compromised in the May 2023 MOVEit hack.
CyberNews
Data incident at University System of Georgia exposes bank account numbers
The University System of Georgia, a US government agency, has suffered a data incident via the infamous MOVEit Transfer hack.
The Record
UK expels Russian diplomat suspected of spying, moves to ‘dismantle intelligence gathering operations’
The U.K. government said it was taking a "major package of measures" to respond to Russian intelligence gathering.
DarkReading
Australia Sanctions LockBit Honcho to Cut Off Cash
Australian businesses and individuals now risk fines and other consequences if they pay ransoms to LockBitSupp, aka Dmitry Yuryevich Khoroshev.
Security Affairs
Law enforcement agencies identified LockBit ransomware admin and sanctioned him
The FBI, UK National Crime Agency, and Europol revealed the identity of the admin of the LockBit operation and sanctioned him.
SecurityWeek
The UK Says a Huge Payroll Data Breach by a ‘Malign Actor’ Has Exposed Details of Military Personnel
The UK Ministry of Defense said a breach at a third-party payroll system exposed as many as 272,000 armed forces personnel and veterans.
Bleeping Computer
Save $137 on three years of online privacy with Windscribe Pro VPN
We need to stay connected in our lives, but that shouldn't require taking risks with our privacy. Guard your data with three years of the Windscribe VPN Pro Plan for $69.97, $137 off the $207 MSRP now through May 12th.
SecurityWeek
LockBit Ransomware Mastermind Unmasked, Charged
Charges and sanctions announced against Dimitry Yuryevich Khoroshev, the alleged developer and operator of LockBit ransomware.
The Cyber Express
Global Cyber Crime Crackdown: LockBit Ransomware Leader Unmasked and Sanctioned
In a landmark international operation, Dmitry Khoroshev, the once-anonymous leader behind the notorious LockBit Ransomware gang has been unmasked and
DarkReading
City of Wichita Public Services Disrupted After Ransomware Attack
The city was forced to shut down its IT networks and continues to investigate a major cyber incident that happened over the weekend.
CyberNews
LockBit gang leader exposed in FBI ransomware breakthrough
The leadership identity of the LockBit ransomware group is unveiled by the US Department of Justice (DoJ), UK’s National Crime Agency (NCA), and Europol.
The Cyber Express
U.S. Unveiled International Cyberspace and Digital Policy Strategy at RSAC 2024
The U.S. Secretary of State Antony Blinken unveiled an International Cyberspace and Digital Policy Strategy on Monday, outlining the Biden
Infosecurity News
BTC-e $9bn Crypto-Money Launderer Pleads Guilty
Russian national Alexander Vinnik has pleaded guilty to his role in a multibillion-dollar money laundering conspiracy
CyberNews
Shadow political ads thrive on Facebook during India’s election
A report shows that myriad Facebook political ads in India during its current election season are run by fake and stolen accounts – despite Meta banning such practice.
SecurityWeek
Germany Recalls Its Ambassador in Russia for a Week in Protest Over a Hacker Attack
Germany recalled its ambassador to Russia for consultations in Berlin following an alleged hacker attack on Chancellor Olaf Scholz’s party.
CyberNews
Poll: Americans prefer regulation of AI model training
Americans would like the manner in which AI companies train their products to be regulated. So far, the process is mostly free and consumes vast amounts of energy.
CyberNews
Blinken puts digital solidarity at the center of the US tech diplomacy
The US Department of State has released a new international cyberspace and digital strategy, which focuses “on building broad digital solidarity.”
CyberNews
Katy Perry's AI-generated image at the Met Gala confuses her own mother
Deepfake images of Katy Perry at this year's Met Gala are gaining a lot of attention online, and people are falling for it.
Infosecurity News
Securing Foundational Tech Critical to Upholding Democratic Values
US Secretary of State Antony Blinken said that the US and its allies must ensure foundational technologies are used for the betterment of society
CSO
Google launches Google Threat Intelligence at RSA Conference
The new addition to Google Cloud Security is designed to give security teams information to inform approaches to protecting against external threats, managing attack surfaces, and mitigating digital risks.
SC Magazine
Law enforcement indicts mastermind behind LockBit ransomware gang
Security pros say the move by law enforcement puts a significant dent into LockBit.
Krebs on Security
U.S. Charges Russian Man as Boss of LockBit Ransomware Group
The United States joined the United Kingdom and Australia today in sanctioning 31-year-old Russian national Dmitry Yuryevich Khoroshev as the alleged leader of the infamous ransomware group LockBit. The U.S. Department of Justice also indicted Khoroshev as the gang's leader…
Infosecurity News
#RSAC: Threat Actors Weaponizing Hacktivism for Financial Gain
Recorded Future’s Alexander Leslie highlights the increasingly blurred lines between hacktivism, financial cybercrime and nation-state activities during the RSA Conference 2024
HACKRead
Cuckoo Mac Malware Mimics Music Converter to Steals Passwords and Crypto
Cybersecurity researchers from Mac security provider, Kandji, have discovered a new malware dubbed "Cuckoo" targeting macOS users.
.webp)
Cyber Security News
New Cuckoo Malware Attacking macOS Users to Steal Sensitive Data
Cybersecurity researchers have uncovered a new malware strain dubbed "Cuckoo., exhibits characteristics of both spyware and an infostealer
CyberNews
New spyware targets Macs pretending to be “Spotify Music Converter”
Arm and Intel-based Macs are being targeted by a new dangerous malware, dubbed Cuckoo.
CyberNews
Suspected Russian cybercrime kingpin pleads guilty in the US
Alexander Vinnik, a Russian cybercrime kingpin who was arrested in Greece in 2017, convicted of money laundering in France, and is now awaiting trial in California
The Hacker News
New 'Cuckoo' Persistent macOS Spyware Targeting Intel and Arm Macs
A new malware called "Cuckoo" is on the loose, targeting both Intel and ARM-based Macs.
CSO
Germany blames Russian hackers for months-long cyber espionage
The attacks by Russia-backed Fancy Bear used an Outlook exploit to compromise several German officials’ accounts.
The Cyber Express
Cyber Alliance Threatens Major U.S. Energy Firms: High Society and Cyber Army of Russia Collaborate
The newly formed alliance known as High Society has declared its affiliation with the notorious threat actor group, Cyber Army
The Record
Germany recalls ambassador to Russia over cyberattacks
Germany and its allies recently accused the Kremlin of conducting a series of cyberattacks on critical infrastructure and attributed an attack on a political party to a Russian hacking group.
The Record
Blinken unveils State Dept. strategy for ‘vibrant, open and secure technological future’
U.S. Secretary of State Antony Blinken told the audience at the 2024 RSA Conference in San Francisco about the Biden administration's broad plan to build “digital solidarity” with allies and partners.
The Record
Wichita government shuts down systems after ransomware incident
The Kansas city said several of its systems were encrypted with malware, forcing officials to disconnect and shut down some as a way to prevent it from spreading.
The Record
Russian operator of BTC-e crypto exchange pleads guilty to money laundering
Alexander Vinnik oversaw an operation that processed $9 billion in transactions, many of them allowing cybercriminals to transfer, launder and store the proceeds of their illegal activities.
Security Affairs
NATO and the EU formally condemned APT28 cyber espionage
NATO and the European Union formally condemned cyber espionage operations carried out by the Russia-linked APT28 against European countries.
Security Affairs
Security Affairs newsletter Round 470 by Pierluigi Paganini – INTERNATIONAL EDITION
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs are free for you.
.png)
Cyber Security News
Cyber Security News Weekly Round-Up (Vulnerabilities, Cyber Attacks, Threats & New Stories)
The weekly news summary keeps you up to date with what’s happening in cybersecurity, including developments, vulnerabilities, breaches, threats, and defensive strategies. Knowing about new cyber risks and attack vectors helps you put up safeguards and preventive measures as soon as possible to protect your systems. Remaining constantly aware gives you a holistic view of […]
The Record
LockBit's seized darknet site resurrected by police, teasing new revelations
The LockBit operation's darknet extortion site was seized earlier this year. It reappeared on Sunday, with police promising fresh information about the criminals involved.
Loading more articles....