The Cyber Express
US Charged North Korean Job Fraud Nexus Amassing Funds for Nuclear Program
The U.S. federal prosecutors on Thursday revealed charges against a North Korean job fraud nexus that ran its fraudulent scheme
Security Affairs
E-prescription provider MediSecure impacted by a ransomware attack
Electronic prescription provider MediSecure in Australia suffered a ransomware attack likely originate from a third-party vendor.
Bleeping Computer
Microsoft shares temp fix for Outlook encrypted email reply issues
Microsoft has shared a temporary fix for a known issue preventing Microsoft 365 customers from replying to encrypted emails using the Outlook Desktop client.
Bleeping Computer
MediSecure e-script firm hit by ‘large-scale’ ransomware data breach
Electronic prescription provider MediSecure in Australia has shut down its website and phone lines following a ransomware attack believed to originate from a third-party vendor.
CSO
BreachForums seized by law enforcement, admin Baphomet arrested
Official telegram channels operated by BreachForums members confirm law enforcement seizures and arrest.
Infosecurity News
BreachForums Hacking Marketplace Taken Down Again
The FBI claims to have seized the domain and servers of hacking forum BreachForums
The Cyber Express
MediSecure Data Breach Confirms Impact on Personal and Health Information of Individuals
A ransomware attack has compromised MediSecure, a leading Australian script provider facilitating electronic prescribing and dispensing of prescriptions. The MediSecure
%20(2)%20(1).webp)
Cyber Security News
Authorities Seized Notorious Data Leak Site BreachForums
The notorious data leak site BreachForums has been taken over by the police. Cybercrime and data leaks are still being fought.
SecurityWeek
BreachForums Shut Down in Apparent Law Enforcement Operation
The hacking forum BreachForums is displaying a notice claiming that the website is under the control of the FBI.
Cyber Security News
Wireshark 4.2.5 Released: What's New!
The Wireshark team has announced the release of Wireshark 4.2.5, a maintenance update to the popular network protocol analyzer.
Ars Technica
BreachForums, an online bazaar for stolen data, seized by FBI
An earlier iteration of the site was taken down last year; now its reincarnation is gone.
Security Affairs
FBI seized the notorious BreachForums hacking forum
An international law enforcement operation coordinated by the FBI led to the seizure of the notorious BreachForums hacking forum.
Ars Technica
Google unveils Veo, a high-definition AI video generator that may rival Sora
Google's video synthesis model creates minute-long 1080p videos from written prompts.
DarkReading
Scammers Fake DocuSign Templates to Blackmail & Steal From Companies
Cybercriminals are trafficking DocuSign assets that allow for easy extortion and business email compromise.
DarkReading
FBI, DoJ Shut Down BreachForums, Launch Investigation
Instead of online contraband, the website now asks anyone with information that could help with the investigation to contact authorities.
The Hacker News
FBI Seizes BreachForums Again, Urges Users to Report Criminal Activity
BreachForums, a notorious online bazaar for stolen data, has been seized by law enforcement agencies for the second time in a year.
Cyber Security News
5 Common Phishing Vectors and Examples - 2024
Phishing attacks can be executed through various means, such as SMS and phone calls, but the most prevalent method involves sending victims emails containing malicious attachments.
Infosecurity News
Cyber-Attack Disrupts Christie’s $840M Art Auctions
Despite this setback, the auction house said bids can still be placed by phone and in-person
HACKRead
Popular Cyber Crime Forum Breach Forums Seized by Police
The cybercrime and hacker forum Breach Forums has been seized by the Federal Bureau of Investigation (FBI) and the Department of Justice.
Ars Technica
SSH backdoor has infected 400,000 Linux servers over 15 years and keeps on spreading
Ebury backdoors SSH servers in hosting providers, giving the malware extraordinary reach.
The Cyber Express
BREAKING: FBI Seizes BreachForums, Yet Again!
The notorious BreachForums seized for the second time in a year. The U.S. law enforcement today seized the clear web
Bleeping Computer
FBI seize BreachForums hacking forum used to leak stolen data
The FBI has seized the notorious BreachForums hacking forum used to leak and sell stolen corporate data to other cybercriminals.
SecurityWeek
900k Impacted by Data Breach at Mississippi Healthcare Provider
Singing River Health System says the personal information of roughly 900,000 individuals was stolen in an August 2023 ransomware attack.
The Cyber Express
Microsoft Addresses Zero-Day Vulnerability Exploited by QakBot Malware
Microsoft patched a zero-day vulnerability exploited by attackers to distribute QakBot and other malware payloads on susceptible Windows systems. Identified
The Cyber Express
SideCopy APT Campaign Found Targeting Indian Universities
Cyble Research and Intelligence Labs (CRIL) researchers have uncovered a new SideCopy campaign. The threat actor group has previously been
The Record
Feds seize BreachForums platform, Telegram page
On Wednesday morning, the BreachForums website was replaced by a takedown banner featuring the insignias of the FBI and Justice Department, as well as a slew of international agencies.
The Record
Law enforcement data stolen in Wichita ransomware attack
In a data breach notice about the incident, which is still affecting numerous city services, the municipality said hackers copied files from its network.
SC Magazine
BreachForums seized by FBI for 2nd time
The infamous data leak site’s domain and Telegram account were seized Wednesday morning.
Bleeping Computer
PoC exploit released for RCE zero-day in D-Link EXO AX4800 routers
The D-Link EXO AX4800 (DIR-X4860) router is vulnerable to remote unauthenticated command execution that could lead to complete device takeovers by attackers with access to the HNAP port.
Bleeping Computer
Microsoft fixes Windows zero-day exploited in QakBot malware attacks
Microsoft has fixed a zero-day vulnerability exploited in attacks to deliver QakBot and other malware payloads on vulnerable Windows systems.
Infosecurity News
NIST Confusion Continues as Cyber Pros Complain CVE Uploads Stopped
Several software security experts have told Infosecurity that no new vulnerabilities have been added to the US NVD since May 9
Infosecurity News
Russian Actors Weaponize Legitimate Services in Multi-Malware Attack
Recorded Future details a novel campaign that abuses legitimate internet services to deploy multiple malware variants for credential theft
DarkReading
DNS Tunneling Abuse Expands to Tracking & Scanning Victims
Several campaigns are leveraging the evasive tactic to provide useful insights into victims' online activities, and find new ways to compromise organizations.
SecurityWeek
VMware Patches Vulnerabilities Exploited at Pwn2Own 2024
VMware has patched three critical and high-severity vulnerabilities exploited earlier this year at the Pwn2Own hacking competition.
The Cyber Express
Cybersecurity Concerns Surround ChatGPT 4o’s Launch; Open AI Assures Beefed up Safety Measure
The field of Artificial Intelligence is rapidly evolving, and OpenAI's ChatGPT is a leader in this revolution. This groundbreaking large
The Cyber Express
Hackers Exploit Unpatched Bug in Helsinki Education Division Data Breach
Hackers exploited an unpatched remote access server vulnerability in the Helsinki education division data breach to scour through records of
Ars Technica
Before launching, GPT-4o broke records on chatbot leaderboard under a secret name
Anonymous chatbot that mystified and frustrated experts was OpenAI's latest model.
Ars Technica
ChatGPT-4o allows real-time audio-video conversations with an “emotional” AI chatbot
GPT-4o demo shows new AI model singing a bedtime story, detecting user's facial expressions.
DarkReading
IntelBroker Nabs Europol Info; Agency Investigating
Europe's cross-border law enforcement agency says the well-known hacking outfit, contrary to claims, did not access operational data.
SecurityWeek
Europol Investigating Breach After Hacker Offers to Sell Classified Data
Europol is investigating a data breach, but says no core systems are impacted and no operational data has been compromised.
Security Affairs
Russian hackers defaced British newspaper websites
A group of hackers that defines itself as 'first-class Russian hackers' claims the defacement of hundreds of British newspaper websites
Cyber Security News
Hackers Exploiting MS-SQL Severs To Deploy Mallox Ransomware
Information such as financial records, customer information, and intellectual property that may be sold on the black web markets is what
CyberNews
Russia-linked group incorporating AI in its new automated propaganda machine
A Russia-linked group is automating fake news fabrication and publishing with AI.
The Cyber Express
CBSE Results 2024 Under Threat: Database Vulnerability Could Compromise Student Scores
As the Central Board of Secondary Education (CBSE) in India released the CBSE results 2024 for its class 10th and
.jpg?height=635&t=1713982088&width=1200)
Security Magazine
FTC orders Cerebral to restrict how consumer data can be shared
The Federal Trade Commission (FTC) has ordered Cerebral, Inc. to restrict how the company can use and/or disclose sensitive consumer data.
The Cyber Express
Christie’s Auction Website Hacked Just Before Major Sales
Just days before its highly anticipated spring art auctions, Christie's, the renowned auction house, had fallen victim to a cyberattack,
Cyber Security News
Nmap 7.95 Released - What’s New!
The latest version of Nmap, the renowned network exploration tool and security scanner, 7.95, has been officially released. It brings many performance improvements, new features, and bug fixes.
SecurityWeek
$2.5 Million Offered at Upcoming 'Matrix Cup' Chinese Hacking Contest
Chinese hacking contest Matrix Cup is offering rewards for exploits targeting OS, smartphones, enterprise software, and security products.
CyberNews
Christie’s website breached right before huge sales day
The Christie’s website has been shut down by hackers right before a huge sales day, which was expected to bring in around $840 million to the famous auction house.
The Cyber Express
Hacker Offers Data Allegedly Stolen from the City of New York
An unidentified threat actor known as "pwns3c" has offered access to a database purported to contain sensitive data and documents
The Cyber Express
Hacktivist Group R00TK1T ISC Claims Breach of Egyptian Ministry’s Systems
Hacktivist collective R00TK1T ISC CyberTeam has claimed responsibility for breaching the Ministry of Supply and Internal Trade in Egypt. The
The Cyber Express
Australia Faces Unprecedented Cyber Threats Amid Support for Ukraine
Following Australia's vocal support for Ukraine, the nation finds itself targeted by a Cyber Army Russia Reborn cyberattack. The recent
CSO
IntelBroker steals classified data from the Europol website
The agency said core operations remain unaffected even as IntelBroker claimed to possess classified, law enforcement data.
The Cyber Express
TCE Cyberwatch: Weekly Wrap on AI, Deepfakes, Cybersecurity Challenges Affecting Nations Worldwide
This week on TCE Cyberwatch we’re covering the different data breaches and vulnerabilities faced by different companies. Along with this,
The Record
Christie's takes website offline after cyberattack, delays live auction
CEO Guillaume Cerutti confirmed that the auction house was dealing with a “technology security incident” after the organization’s website went down before the weekend.
The Record
'Russian' hackers deface potentially hundreds of local British news sites
An infiltrator posted a breaking news story titled "PERVOKLASSNIY RUSSIAN HACKERS ATTACK" on websites owned by Newsquest Media Group.
Security Affairs
Security Affairs newsletter Round 471 by Pierluigi Paganini – INTERNATIONAL EDITION
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs are free for you.
.png)
Cyber Security News
Cyber Security News Weekly Round-Up (Vulnerabilities, Cyber Attacks, Threats & New Stories)
Staying informed is the key in this dynamic battle of cybersecurity, and due to this, the weekly news recap provides you with the newest trends, weaknesses, infringements found, and some possible defense mechanisms.
Bleeping Computer
The Post Millennial hack leaked data impacting 26 million people
Have I Been Pwned has added the information for 26,818,266 people whose data was leaked in a recent hack of The Post Millennial conservative news website.
Bleeping Computer
Europol confirms web portal breach, says no operational data stolen
Europol, the European Union's law enforcement agency, confirmed that its Europol Platform for Experts (EPE) portal was breached and is now investigating the incident after a threat actor claimed they stole For Official Use Only (FOUO) documents containing classified data.
Cyber Security News
FIN7 Hackers Abuse Sponsored Google Ads To Deliver MSIX Payloads
Hackers take advantage of sponsored Google Ads as they provide an excellent chance to quickly reach a large audience.
SecurityWeek
500,000 Impacted by Ohio Lottery Ransomware Attack
The Ohio Lottery cyberattack conducted by the DragonForce ransomware group has impacted more than 500,000 individuals.
CyberNews
Claimed by hackers, Zscaler says there’s no impact or compromise
Cloud security company Zscaler is continuing an investigation into an alleged breach.
CyberNews
Ohio Lottery suffers cybersecurity incident – again
The Ohio Lottery has suffered another cybersecurity incident, revealing the sensitive information of over 500,000 people.
The Record
As EU referendum looms, Moldova finds itself in Russian digital army’s crosshairs
The Kremlin’s "hybrid war" on Moldova — featuring disinformation, cyberattacks and influence operations — aims to manipulate three consequential votes in Moldova this year and next.
SecurityWeek
LockBit Takes Credit for City of Wichita Ransomware Attack
The LockBit cybercrime group has taken credit for the recent ransomware attack that disrupted City of Wichita systems.
SecurityWeek
BetterHelp Customers Begin Receiving Refund Notices From $7.8M Data Privacy Settlement, FTC Says
BetterHelp customers have started receiving refund notices from a $7.8 million data privacy settlement, the FTC says.
Latest Hacking News
Microsoft Passkey Authentication Now Available For Personal Accounts
Microsoft has expanded the availability of its passkey authentication support to more users. So now, consumer with personal Microsoft accounts can also use passkeys to ensure secure logins for their accounts. Microsoft Rolled Out Passkey Authentication
The Cyber Express
(SOLD) IntelBroker Traded $20K Crypto For Alleged Unauthorized Cybersecurity Company Access
IntelBroker has asserted a massive breach, and has now sold the access to a cybersecurity entity with a hefty annual
CyberNews
Ascension Catholic hospitals in midst of possible cyberattack
Non-profit Ascension health systems tells business partners to disconnect from its networks after a suspected cyberattack disrupts operations at facilities across the US.
SC Magazine
RSAC 2024: Top cyber insurance trends, traps and advice
A panel of experts unpack the art of cyber insurance here at RSA Conference and share what's new in coverage and claims.
Bleeping Computer
Ascension healthcare takes systems offline after cyberattack
Ascension, one of the largest private healthcare systems in the United States, has taken some of its systems offline to investigate what it describes as a "cyber security event."
Bleeping Computer
Stack Overflow suspends user for editing posts in OpenAI protest
OpenAI and Stack Overflow recently teamed up to improve AI models. OpenAI will have access to Stack Overflow's API and feedback from developers. In return, OpenAI will link to Stack Overflow's content in ChatGPT.
Infosecurity News
Six Austrians Arrested in Multi-Million Euro Crypto Scheme
Europol and Eurojust targeted the orchestrators of a cryptocurrency scam launched in December 2017
Latest Hacking News
Free Workshop from Security Risk Advisors Empowers Organizations to Select Optimal OT Security Tools
Security Risk Advisors (SRA) announces the launch of their OT/XIoT Detection Selection Workshop, a complimentary offering designed to assist organizations in selecting the most suitable operational technology (OT) and Extended Internet of Things (XIoT) security
.webp)
Cyber Security News
Free Workshop from Security Risk Advisors Empowers Organizations to Select Optimal OT Security Tools
Security Risk Advisors (SRA) announces the launch of their OT/XIoT Detection Selection Workshop, a complimentary offering designed to assist organizations in selecting the most suitable operational technology (OT) and Extended Internet of Things (XIoT) security tools for their unique environments. Led by seasoned OT/XIoT security consultants, the workshop provides participants with an invaluable opportunity to […]
Bleeping Computer
Massive webshop fraud ring steals credit cards from 850,000 people
A massive network of 75,000 fake online shops called 'BogusBazaar' tricked over 850,000 people in the US and Europe into making purchases, allowing the criminals to steal credit card information and attempt to process an estimated $50 million in fake orders.
HACKRead
Free Workshop from Security Risk Advisors Empowers Organizations to Select Optimal OT Security Tools
Philadelphia, Pennsylvania, May 8th, 2024, CyberNewsWire
Security Affairs
LiteSpeed Cache WordPress plugin actively exploited in the wild
Threat actors are exploiting a high-severity vulnerability in the LiteSpeed Cache plugin for WordPress to take over web sites
Cyber Security News
Hackers Exploit Litespeed Plugin Flaw To Create Rogue Admin Accounts
WordPress plugins make WordPress more useful, but most of these have flaws that hackers may try to take advantage of to get unauthorized
SecurityWeek
University System of Georgia Says 800,000 Impacted by MOVEit Hack
University System of Georgia says Social Security numbers and bank account numbers were compromised in the May 2023 MOVEit hack.
The Cyber Express
LockBit Ransomware Targets Wichita City Following Unmasking of Group Leader
Despite the major collaborative effort by law enforcement agencies resulting in the exposure and sanctioning of Dmitry Yuryevich Khoroshev, the
CyberNews
Six arrested for crypto scam, over €750K seized
Six Austrian nationals have been found responsible for an online cryptocurrency scam that posed as a legitimate online trading platform.
CyberNews
Data incident at University System of Georgia exposes bank account numbers
The University System of Georgia, a US government agency, has suffered a data incident via the infamous MOVEit Transfer hack.
The Hacker News
Hackers Exploiting LiteSpeed Cache Bug to Gain Full Control of WordPress Sites
A critical flaw in the hugely popular LiteSpeed Cache plugin for WordPress is being exploited in the wild to create rogue admin accounts, granting att
CSO
DocGo says hackers stole patient data in a recent cyberattack
The attack compromised some healthcare data with no material or financial losses, the company said.
The Record
Stolen children’s health records posted online in extortion bid
Cybercriminals have published another batch of data stolen from NHS Dumfries and Galloway in Scotland, this time including information about children.
The Record
Patient appointments imperiled by cyberattack on French radiologist
Coradix-Magnescan is the latest French healthcare entity to face a cyberattack. The company said it remains "very complicated" for patients to book appointments.
The Record
LockBit claims attack on Wichita as city struggles with payment issues, airport disruption
The ransomware operation gave the Kansas city until May 15 to pay up. The incident continues to unfold as law enforcement agencies announced actions against the gang's suspected leader.
HACKRead
Major UK Security Provider Leaks Trove of Guard and Suspect Data
Amberstone Security LTD., a security provider in the United Kingdom linked to the Argenbright Group has suffered a major cybersecurity incident.
Bleeping Computer
Hackers exploit LiteSpeed Cache flaw to create WordPress admins
Hackers have been targeting WordPress sites with an outdated version of the LiteSpeed Cache plugin to create administrator users and gain control of the websites.
Infosecurity News
Ransomware Strikes Wichita, Services Disrupted
Online payment systems, such as those for water bills and court citations, are still offline
DarkReading
City of Wichita Public Services Disrupted After Ransomware Attack
The city was forced to shut down its IT networks and continues to investigate a major cyber incident that happened over the weekend.
SecurityWeek
Niobium Raises $5.5M for Zero Trust Computing Hardware Acceleration
Niobium raises $5.5 million in seed funding for a fully homomorphic encryption (FHE) hardware accelerator designed for zero trust computing.
CyberNews
LockBit gang leader exposed in FBI ransomware breakthrough
The leadership identity of the LockBit ransomware group is unveiled by the US Department of Justice (DoJ), UK’s National Crime Agency (NCA), and Europol.
Bleeping Computer
LockBit ransomware admin identified, sanctioned in US, UK, Australia
The FBI, UK National Crime Agency, and Europol have unveiled sweeping indictments and sanctions against the admin of the LockBit ransomware operation, with the identity of the Russian threat actor revealed for the first time.
Bleeping Computer
How to Mitigate the Impact of Third-Party Breaches
Third-party data breaches are increasingly becoming a problem as the enterprise moves applications and storage to the cloud. Learn more from Outpost24 on how to reduce the risk from third-party data breaches.
The Hacker News
APT42 Hackers Pose as Journalists to Harvest Credentials and Access Cloud Data
APT42, an Iranian state-backed hacking group, is leveling up its social engineering tactics. They're posing as journalists and event organizers to bui
%20(1).webp)
Cyber Security News
Yoast SEO Plugin XSS Flaw Exposes 5 Million+ WordPress Websites to Attack
A critical XSS vulnerability has discovered in the popular Yoast SEO WordPress plugin, potentially putting over 5m websites at risk.
HACKRead
China Suspected in Major Cyberattack on UK's Ministry of Defence (MoD)
The United Kingdom's Ministry of Defence (MoD) is reportedly under investigation for a suspected cyberattack originating from China.
Loading more articles....