Category: bleepingcomputer
-
Google Chrome uses AI to analyze pages in new scam detection feature
Google Chrome uses AI to analyze pages in new scam detection feature Google is using artificial intelligence to power a new Chrome scam protection feature that analyzes brands and the intent of pages as you browse the web. […] Mayank Parmar Go to bleepingcomputer
-
Malicious Rspack, Vant packages published using stolen NPM tokens
Malicious Rspack, Vant packages published using stolen NPM tokens Three popular npm packages, @rspack/core, @rspack/cli, and Vant, were compromised through stolen npm account tokens, allowing threat actors to publish malicious versions that installed cryptominers. […] Bill Toulas Go to bleepingcomputer
-
US charges Russian-Israeli as suspected LockBit ransomware coder
US charges Russian-Israeli as suspected LockBit ransomware coder The US Department of Justice has charged a Russian-Israeli dual-national for his suspected role in developing malware and managing the infrastructure for the notorious LockBit ransomware group. […] Lawrence Abrams Go to bleepingcomputer
-
Sophos discloses critical Firewall remote code execution flaw
Sophos discloses critical Firewall remote code execution flaw Sophos has addressed three vulnerabilities in its Sophos Firewall product that could allow remote unauthenticated threat actors to perform SQL injection, remote code execution, and gain privileged SSH access to devices. […] Bill Toulas Go to bleepingcomputer
-
Krispy Kreme breach, data theft claimed by Play ransomware gang
Krispy Kreme breach, data theft claimed by Play ransomware gang The Play ransomware gang has claimed responsibility for a cyberattack that impacted the business operations of the U.S. doughnut chain Krispy Kreme in November. […] Sergiu Gatlan Go to bleepingcomputer
-
Romanian Netwalker ransomware affiliate sentenced to 20 years in prison
Romanian Netwalker ransomware affiliate sentenced to 20 years in prison Daniel Christian Hulea, a Romanian man charged for his involvement in NetWalker ransomware attacks, was sentenced to 20 years in prison after pleading guilty to computer fraud conspiracy and wire fraud conspiracy in June. […] Sergiu Gatlan Go to bleepingcomputer
-
BadBox malware botnet infects 192,000 Android devices despite disruption
BadBox malware botnet infects 192,000 Android devices despite disruption The BadBox Android malware botnet has grown to over 192,000 infected devices worldwide despite a recent sinkhole operation that attempted to disrupt the operation in Germany. […] Bill Toulas Go to bleepingcomputer
-
Microsoft 365 users hit by random product deactivation errors
Microsoft 365 users hit by random product deactivation errors Microsoft is investigating a known issue randomly triggering “Product Deactivated” errors for customers using Microsoft 365 Office apps. […] Sergiu Gatlan Go to bleepingcomputer
-
Android malware found on Amazon Appstore disguised as health app
Android malware found on Amazon Appstore disguised as health app A malicious Android spyware application named ‘BMI CalculationVsn’ was discovered on the Amazon Appstore, masquerading as a simple health tool but stealing data from infected devices in the background. […] Bill Toulas Go to bleepingcomputer
-
Juniper warns of Mirai botnet scanning for Session Smart routers
Juniper warns of Mirai botnet scanning for Session Smart routers Juniper Networks has warned customers of Mirai malware attacks scanning the Internet for Session Smart routers using default credentials. […] Sergiu Gatlan Go to bleepingcomputer
-
Ongoing phishing attack abuses Google Calendar to bypass spam filters
Ongoing phishing attack abuses Google Calendar to bypass spam filters An ongoing phishing scam is abusing Google Calendar invites and Google Drawings pages to steal credentials while bypassing spam filters. […] Lawrence Abrams Go to bleepingcomputer
-
Raccoon Stealer malware operator gets 5 years in prison after guilty plea
Raccoon Stealer malware operator gets 5 years in prison after guilty plea Ukrainian national Mark Sokolovsky was sentenced today to five years in prison for his involvement in the Raccoon Stealer malware cybercrime operation. […] Sergiu Gatlan Go to bleepingcomputer
-
Russian hackers use RDP proxies to steal data in MiTM attacks
Russian hackers use RDP proxies to steal data in MiTM attacks The Russian hacking group tracked as APT29 (aka “Midnight Blizzard”) is using a network of 193 remote desktop protocol proxy servers to perform man-in-the-middle (MiTM) attacks to steal data and credentials and to install malicious payloads. […] Bill Toulas Go to bleepingcomputer
-
US considers banning TP-Link routers over cybersecurity risks
US considers banning TP-Link routers over cybersecurity risks The U.S. government is considering banning TP-Link routers starting next year if ongoing investigations find that their use in cyberattacks poses a national security risk. […] Sergiu Gatlan Go to bleepingcomputer
-
HubSpot phishing targets 20,000 Microsoft Azure accounts
HubSpot phishing targets 20,000 Microsoft Azure accounts A phishing campaign targeting automotive, chemical, and industrial manufacturing companies in Germany and the UK is abusing HubSpot to steal Microsoft Azure account credentials. […] Bill Toulas Go to bleepingcomputer
-
NVIDIA shares fix for game performance issues with new NVIDIA App
NVIDIA shares fix for game performance issues with new NVIDIA App Nvidia has shared a temporary fix for a known issue impacting systems running its recently unveiled NVIDIA App and causing gaming performance to drop by up to 15%. […] Sergiu Gatlan Go to bleepingcomputer
-
‘Bitter’ cyberspies target defense orgs with new MiyaRAT malware
‘Bitter’ cyberspies target defense orgs with new MiyaRAT malware A cyberespionage threat group known as ‘Bitter’ was observed targeting defense organizations in Turkey using a novel malware family named MiyaRAT. […] Bill Toulas Go to bleepingcomputer
-
New fake Ledger data breach emails try to steal crypto wallets
New fake Ledger data breach emails try to steal crypto wallets A new Ledger phishing campaign is underway that pretends to be a data breach notification asking you to verify your recovery phrase, which is then stolen and used to steal your cryptocurrency. […] Lawrence Abrams Go to bleepingcomputer
-
CISA orders federal agencies to secure Microsoft 365 tenants
CISA orders federal agencies to secure Microsoft 365 tenants CISA has issued this year’s first binding operational directive (BOD 25-01), ordering federal civilian agencies to secure their Microsoft 365 cloud environments by implementing a list of required configuration baselines. […] Sergiu Gatlan Go to bleepingcomputer
-
New critical Apache Struts flaw exploited to find vulnerable servers
New critical Apache Struts flaw exploited to find vulnerable servers A recently patched critical Apache Struts 2 vulnerability tracked as CVE-2024-53677 is actively exploited using public proof-of-concept exploits to find vulnerable devices. […] Bill Toulas Go to bleepingcomputer
-
FBI spots HiatusRAT malware attacks targeting web cameras, DVRs
FBI spots HiatusRAT malware attacks targeting web cameras, DVRs The FBI warned today that new HiatusRAT malware attacks are now scanning for and infecting vulnerable web cameras and DVRs that are exposed online. […] Sergiu Gatlan Go to bleepingcomputer
-
Texas Tech University System data breach impacts 1.4 million patients
Texas Tech University System data breach impacts 1.4 million patients The Texas Tech University Health Sciences Center and its El Paso counterpart suffered a cyberattack that disrupted computer systems and applications, potentially exposing the data of 1.4 million patients. […] Bill Toulas Go to bleepingcomputer
-
Kali Linux 2024.4 released with 14 new tools, deprecates some features
Kali Linux 2024.4 released with 14 new tools, deprecates some features Kali Linux has released version 2024.4, the fourth and final version of 2024, and it is now available with fourteen new tools, numerous improvements, and deprecates some features. […] Lawrence Abrams Go to bleepingcomputer
-
Windows kernel bug now exploited in attacks to gain SYSTEM privileges
Windows kernel bug now exploited in attacks to gain SYSTEM privileges CISA has warned U.S. federal agencies to secure their systems against ongoing attacks targeting a high-severity Windows kernel vulnerability. […] Sergiu Gatlan Go to bleepingcomputer
-
Malicious ads push Lumma infostealer via fake CAPTCHA pages
Malicious ads push Lumma infostealer via fake CAPTCHA pages A large-scale malvertising campaign distributed the Lumma Stealer info-stealing malware through fake CAPTCHA verification pages that prompt users to run PowerShell commands to verify they are not a bot. […] Bill Toulas Go to bleepingcomputer
-
Clop ransomware claims responsibility for Cleo data theft attacks
Clop ransomware claims responsibility for Cleo data theft attacks The Clop ransomware gang has confirmed to BleepingComputer that they are behind the recent Cleo data-theft attacks, utilizing zero-day exploits to breach corporate networks and steal data. […] Lawrence Abrams Go to bleepingcomputer
-
Winnti hackers target other threat actors with new Glutton PHP backdoor
Winnti hackers target other threat actors with new Glutton PHP backdoor The Chinese Winnti hacking group is using a new PHP backdoor named ‘Glutton’ in attacks on organizations in China and the U.S., and also in attacks on other cybercriminals. […] Bill Toulas Go to bleepingcomputer
-
390,000 WordPress accounts stolen from hackers in supply chain attack
390,000 WordPress accounts stolen from hackers in supply chain attack A threat actor tracked as MUT-1244 has stolen over 390,000 WordPress credentials in a large-scale, year-long campaign targeting other threat actors using a trojanized WordPress credentials checker. […] Sergiu Gatlan Go to bleepingcomputer
-
Auto parts giant LKQ says cyberattack disrupted Canadian business unit
Auto parts giant LKQ says cyberattack disrupted Canadian business unit Automobile parts giant LKQ Corporation disclosed that one of its business units in Canada was hacked, allowing threat actors to steal data from the company. […] Lawrence Abrams Go to bleepingcomputer
-
Citrix shares mitigations for ongoing Netscaler password spray attacks
Citrix shares mitigations for ongoing Netscaler password spray attacks Citrix Netscaler is the latest target in widespread password spray attacks targeting edge networking devices and cloud platforms this year to breach corporate networks. […] Lawrence Abrams Go to bleepingcomputer
-
CISA confirms critical Cleo bug exploitation in ransomware attacks
CISA confirms critical Cleo bug exploitation in ransomware attacks CISA confirmed today that a critical remote code execution bug in Cleo Harmony, VLTrader, and LexiCom file transfer software is being exploited in ransomware attacks. […] Sergiu Gatlan Go to bleepingcomputer
-
FTC warns of online task job scams hooking victims like gambling
FTC warns of online task job scams hooking victims like gambling The Federal Trade Commission (FTC) warns about a significant rise in gambling-like online job scams, known as “task scams,” that draw people into earning cash through repetitive tasks, with the promises of earning more if they deposit their own money. […] Bill Toulas Go…
-
CISA warns water facilities to secure HMI systems exposed online
CISA warns water facilities to secure HMI systems exposed online CISA and the Environmental Protection Agency (EPA) warned water facilities today to secure Internet-exposed Human Machine Interfaces (HMIs) from cyberattacks. […] Sergiu Gatlan Go to bleepingcomputer
-
New stealthy Pumakit Linux rootkit malware spotted in the wild
New stealthy Pumakit Linux rootkit malware spotted in the wild A new Linux rootkit malware called Pumakit has been discovered that uses stealth and advanced privilege escalation techniques to hide its presence on systems. […] Bill Toulas Go to bleepingcomputer
-
Police shuts down Rydox cybercrime market, arrests 3 admins
Police shuts down Rydox cybercrime market, arrests 3 admins International law enforcement operation seizes the Rydox cybercrime marketplace and arrests three administrators. […] Sergiu Gatlan Go to bleepingcomputer
-
New IOCONTROL malware used in critical infrastructure attacks
New IOCONTROL malware used in critical infrastructure attacks Iranian threat actors are utilizing a new malware named IOCONTROL to compromise Internet of Things (IoT) devices and OT/SCADA systems used by critical infrastructure in Israel and the United States. […] Bill Toulas Go to bleepingcomputer
-
US offers $5 million for info on North Korean IT worker farms
US offers $5 million for info on North Korean IT worker farms The U.S. State Department is offering a reward of up to $5 million for information that could help disrupt the activities of North Korean front companies and employees who generated over $88 million via illegal remote IT work schemes in six years. […] Sergiu…
-
Cleo patches critical zero-day exploited in data theft attacks
Cleo patches critical zero-day exploited in data theft attacks Cleo has released security updates for a zero-day flaw in its LexiCom, VLTransfer, and Harmony software, currently exploited in data theft attacks. […] Sergiu Gatlan Go to bleepingcomputer
-
Hunk Companion WordPress plugin exploited to install vulnerable plugins
Hunk Companion WordPress plugin exploited to install vulnerable plugins Hackers are exploiting a critical vulnerability in the “Hunk Companion” plugin to install and activate other plugins with exploitable flaws directly from the WordPress.org repository. […] Bill Toulas Go to bleepingcomputer
-
Cynet Delivers 100% Protection and 100% Detection Visibility in the 2024 MITRE ATT&CK Evaluation
Cynet Delivers 100% Protection and 100% Detection Visibility in the 2024 MITRE ATT&CK Evaluation The 2024 MITRE ATT&CK Evaluation results are now available with Cynet achieving 100% Visibility and 100% Protection in the 2024 evaluation. Learn more from Cynet about what these results mean. […] Sponsored by Cynet Go to bleepingcomputer
-
New EagleMsgSpy Android spyware used by Chinese police, researchers say
New EagleMsgSpy Android spyware used by Chinese police, researchers say A previously undocumented Android spyware called ‘EagleMsgSpy’ has been discovered and is believed to be used by law enforcement agencies in China to monitor mobile devices. […] Bill Toulas Go to bleepingcomputer
-
Microsoft lifts Windows 11 24H2 block on PCs with USB scanners
Microsoft lifts Windows 11 24H2 block on PCs with USB scanners Microsoft has lifted a compatibility block preventing Windows 11 24H2 upgrades after fixing a bug causing USB connection issues to some scanners. […] Sergiu Gatlan Go to bleepingcomputer
-
Facebook, Instagram, WhatsApp hit by massive worldwide outage
Facebook, Instagram, WhatsApp hit by massive worldwide outage Facebook, Instagram, Threads, and WhatsApp suffered a massive worldwide Wednesday afternoon, with services impacted in varying degrees based on user’s region. […] Lawrence Abrams Go to bleepingcomputer
-
Wyden proposes bill to secure US telecoms after Salt Typhoon hacks
Wyden proposes bill to secure US telecoms after Salt Typhoon hacks U.S. Senator Ron Wyden of Oregon announced a new bill to secure the networks of American telecommunications companies breached by Salt Typhoon Chinese state hackers earlier this year. […] Sergiu Gatlan Go to bleepingcomputer
-
WPForms bug allows Stripe refunds on millions of WordPress sites
WPForms bug allows Stripe refunds on millions of WordPress sites A vulnerability in WPForms, a WordPress plugin used in over 6 million websites, could allow subscriber-level users to issue arbitrary Stripe refunds or cancel subscriptions. […] Bill Toulas Go to bleepingcomputer
-
Ivanti warns of maximum severity CSA auth bypass vulnerability
Ivanti warns of maximum severity CSA auth bypass vulnerability Ivanti warned customers on Tuesday about a new maximum-severity authentication bypass vulnerability in its Cloud Services Appliance (CSA) solution. […] Sergiu Gatlan Go to bleepingcomputer
-
Windows 10 KB5048652 update fixes new motherboard activation bug
Windows 10 KB5048652 update fixes new motherboard activation bug Microsoft has released the KB5048652 cumulative update for Windows 10 22H2, which contains six fixes, including a fix that prevented Windows 10 from activating when you change a device’s motherboard. […] Lawrence Abrams Go to bleepingcomputer
-
Microsoft December 2024 Patch Tuesday fixes 1 exploited zero-day, 71 flaws
Microsoft December 2024 Patch Tuesday fixes 1 exploited zero-day, 71 flaws Today is Microsoft’s December 2024 Patch Tuesday, which includes security updates for 71 flaws, including one actively exploited zero-day vulnerability. […] Lawrence Abrams Go to bleepingcomputer
-
Ransomware attack hits leading heart surgery device maker
Ransomware attack hits leading heart surgery device maker Artivion, a leading manufacturer of heart surgery medical devices, has disclosed a November 21 ransomware attack that disrupted its operations and forced it to take some systems offline. […] Sergiu Gatlan Go to bleepingcomputer
-
OpenWrt Sysupgrade flaw let hackers push malicious firmware images
OpenWrt Sysupgrade flaw let hackers push malicious firmware images A flaw in OpenWrt’s Attended Sysupgrade feature used to build custom, on-demand firmware images could have allowed for the distribution of malicious firmware packages. […] Bill Toulas Go to bleepingcomputer
-
Ubisoft fixes Windows 11 24H2 conflicts causing game crashes
Ubisoft fixes Windows 11 24H2 conflicts causing game crashes Microsoft has now partially lifted a compatibility hold blocking the Windows 24H2 update on systems with some Ubisoft games after the French video game publisher has fixed bugs causing crashes, freezes, and audio issues. […] Sergiu Gatlan Go to bleepingcomputer
-
Radiant links $50 million crypto heist to North Korean hackers
Radiant links $50 million crypto heist to North Korean hackers Radiant Capital now says that North Korean threat actors are behind the $50 million cryptocurrency heist that occurred after hackers breached its systems in an October 16 cyberattack. […] Bill Toulas Go to bleepingcomputer
-
Outdated Google Workspace Sync blocks Windows 11 24H2 upgrades
Outdated Google Workspace Sync blocks Windows 11 24H2 upgrades Microsoft now blocks the Windows 11 24H2 update on computers with outdated Google Workspace Sync installs because they’re causing Outlook launch issues. […] Sergiu Gatlan Go to bleepingcomputer
-
QR codes bypass browser isolation for malicious C2 communication
QR codes bypass browser isolation for malicious C2 communication Mandiant has identified a novel method to bypass contemporary browser isolation technology and achieve command-and-control C2 operations. […] Bill Toulas Go to bleepingcomputer
-
Anna Jaques Hospital ransomware breach exposed data of 300K patients
Anna Jaques Hospital ransomware breach exposed data of 300K patients Anna Jaques Hospital has confirmed on its website that a ransomware attack it suffered almost precisely a year ago, on December 25, 2023, has exposed sensitive health data for over 316,000 patients. […] Bill Toulas Go to bleepingcomputer
-
Microsoft expands Recall preview to Intel and AMD Copilot+ PCs
Microsoft expands Recall preview to Intel and AMD Copilot+ PCs Microsoft is now testing its AI-powered Recall feature on AMD and Intel-powered Copilot+ PCs enrolled in the Windows 11 Insider program. […] Sergiu Gatlan Go to bleepingcomputer
-
Ultralytics AI model hijacked to infect thousands with cryptominer
Ultralytics AI model hijacked to infect thousands with cryptominer The popular Ultralytics YOLO11 AI model was compromised in a supply chain attack to deploy cryptominers on devices running versions 8.3.41 and 8.3.42 from the Python Package Index (PyPI) […] Bill Toulas Go to bleepingcomputer
-
Blue Yonder SaaS giant breached by Termite ransomware gang
Blue Yonder SaaS giant breached by Termite ransomware gang The Termite ransomware gang has officially claimed responsibility for the November breach of software as a service (SaaS) provider Blue Yonder. […] Sergiu Gatlan Go to bleepingcomputer
-
New Windows zero-day exposes NTLM credentials, gets unofficial patch
New Windows zero-day exposes NTLM credentials, gets unofficial patch A new zero-day vulnerability has been discovered that allows attackers to capture NTLM credentials by simply tricking the target into viewing a malicious file in Windows Explorer. […] Bill Toulas Go to bleepingcomputer
-
Crypto-stealing malware posing as a meeting app targets Web3 pros
Crypto-stealing malware posing as a meeting app targets Web3 pros Cybercriminals are targeting people working in Web3 with fake business meetings using a fraudulent video conferencing platform that infects Windows and Macs with crypto-stealing malware. […] Bill Toulas Go to bleepingcomputer
-
Nebraska Man pleads guilty to $3.5 million cryptojacking scheme
Nebraska Man pleads guilty to $3.5 million cryptojacking scheme A Nebraska man pleaded guilty on Thursday to operating a large-scale cryptojacking operation after being arrested and charged in April. […] Sergiu Gatlan Go to bleepingcomputer
-
Romania’s election systems targeted in over 85,000 cyberattacks
Romania’s election systems targeted in over 85,000 cyberattacks A declassified report from Romania’s Intelligence Service says that the country’s election infrastructure was targeted by more than 85,000 cyberattacks. […] Ionut Ilascu Go to bleepingcomputer
-
U.S. org suffered four month intrusion by Chinese hackers
U.S. org suffered four month intrusion by Chinese hackers A large U.S. organization with significant presence in China has been reportedly breached by China-based threat actors who persisted on its networks from April to August 2024. […] Bill Toulas Go to bleepingcomputer
-
US arrests Scattered Spider suspect linked to telecom hacks
US arrests Scattered Spider suspect linked to telecom hacks U.S. authorities have arrested a 19-year-old teenager linked to the notorious Scattered Spider cybercrime gang who is now charged with breaching a U.S. financial institution and two unnamed telecommunications firms. […] Sergiu Gatlan Go to bleepingcomputer
-
Police shuts down Manson cybercrime market, arrests key suspects
Police shuts down Manson cybercrime market, arrests key suspects German law enforcement has seized over 50 servers that hosted the Manson Market cybercrime marketplace and fake online shops used in phishing operations. […] Sergiu Gatlan Go to bleepingcomputer
-
Microsoft says having a TPM is “non-negotiable” for Windows 11
Microsoft says having a TPM is “non-negotiable” for Windows 11 Microsoft made it abundantly clear this week that Windows 10 users won’t be able to upgrade to Windows 11 unless their systems come with TPM 2.0 support, stating it’s a “non-negotiable” requirement. […] Sergiu Gatlan Go to bleepingcomputer
-
White House: Salt Typhoon hacked telcos in dozens of countries
White House: Salt Typhoon hacked telcos in dozens of countries Chinese state hackers, known as Salt Typhoon, have breached telecommunications companies in dozens of countries, President Biden’s deputy national security adviser Anne Neuberger said today. […] Sergiu Gatlan Go to bleepingcomputer
-
FBI shares tips on how to tackle AI-powered fraud schemes
FBI shares tips on how to tackle AI-powered fraud schemes The FBI warns that scammers are increasingly using artificial intelligence to improve the quality and effectiveness of their online fraud schemes, ranging from romance and investment scams to job hiring schemes. […] Bill Toulas Go to bleepingcomputer
-
UK disrupts Russian money laundering networks used by ransomware
UK disrupts Russian money laundering networks used by ransomware A law enforcement operation led by the United Kingdom’s National Crime Agency (NCA) has disrupted two Russian money laundering networks working with criminals worldwide, including ransomware gangs. […] Sergiu Gatlan Go to bleepingcomputer
-
BT unit took servers offline after Black Basta ransomware breach
BT unit took servers offline after Black Basta ransomware breach Multinational telecommunications giant BT Group (formerly British Telecom) has confirmed that its BT Conferencing business division shut down some of its servers following a Black Basta ransomware breach. […] Sergiu Gatlan Go to bleepingcomputer
-
Vodka maker Stoli files for bankruptcy in US after ransomware attack
Vodka maker Stoli files for bankruptcy in US after ransomware attack Stoli Group’s U.S. companies have filed for bankruptcy following an August ransomware attack and Russian authorities seizing the company’s remaining distilleries in the country. […] Sergiu Gatlan Go to bleepingcomputer
-
Cloudflare’s developer domains increasingly abused by threat actors
Cloudflare’s developer domains increasingly abused by threat actors Cloudflare’s ‘pages.dev’ and ‘workers.dev’ domains, used for deploying web pages and facilitating serverless computing, are being increasingly abused by cybercriminals for phishing and other malicious activities. […] Bill Toulas Go to bleepingcomputer
-
US shares tips to block hackers behind recent telecom breaches
US shares tips to block hackers behind recent telecom breaches CISA released guidance today to help network defenders harden their systems against attacks coordinated by the Salt Typhoon Chinese threat group that breached multiple major global telecommunications providers earlier this year. […] Sergiu Gatlan Go to bleepingcomputer
-
Exploit released for critical WhatsUp Gold RCE flaw, patch now
Exploit released for critical WhatsUp Gold RCE flaw, patch now A proof-of-concept (PoC) exploit for a critical-severity remote code execution flaw in Progress WhatsUp Gold has been published, making it critical to install the latest security updates as soon as possible. […] Bill Toulas Go to bleepingcomputer
-
Veeam warns of critical RCE bug in Service Provider Console
Veeam warns of critical RCE bug in Service Provider Console Veeam released security updates today to address two Service Provider Console (VSPC) vulnerabilities, including a critical remote code execution (RCE) discovered during internal testing. […] Sergiu Gatlan Go to bleepingcomputer
-
Korea arrests CEO for adding DDoS feature to satellite receivers
Korea arrests CEO for adding DDoS feature to satellite receivers South Korean police have arrested a CEO and five employees for manufacturing over 240,000 satellite receivers pre-loaded or later updated to include DDoS attack functionality at a purchaser’s request. […] Bill Toulas Go to bleepingcomputer
-
Russia sentences Hydra dark web market leader to life in prison
Russia sentences Hydra dark web market leader to life in prison Russian authorities have sentenced the leader of the criminal group behind the now-closed dark web platform Hydra Market to life in prison. […] Sergiu Gatlan Go to bleepingcomputer
-
BootKitty UEFI malware exploits LogoFAIL to infect Linux systems
BootKitty UEFI malware exploits LogoFAIL to infect Linux systems The recently uncovered ‘Bootkitty’ UEFI bootkit, the first malware of its kind targeting Linux systems, exploits CVE-2023-40238, aka ‘LogoFAIL,’ to infect computers running on a vulnerable UEFI firmware. […] Bill Toulas Go to bleepingcomputer
-
Mozilla really wants you to set Firefox as default Windows browser
Mozilla really wants you to set Firefox as default Windows browser In an effort to turn the tide, Mozilla is testing a fresh approach that could persuade more people to switch their default browser on Windows during the installation of the browser. […] Mayank Parmar Go to bleepingcomputer
-
Google Chrome’s AI feature lets you quickly check website trustworthiness
Google Chrome’s AI feature lets you quickly check website trustworthiness Google Chrome’s upcoming feature uses AI to provide a summary of reviews from independent websites about the store or website you’re visiting. […] Mayank Parmar Go to bleepingcomputer
-
SpyLoan Android malware on Google play installed 8 million times
SpyLoan Android malware on Google play installed 8 million times A new set of 15 SpyLoan Android malware apps with over 8 million installs was discovered on Google Play, targeting primarily users from South America, Southeast Asia, and Africa. […] Bill Toulas Go to bleepingcomputer
-
New Rockstar 2FA phishing service targets Microsoft 365 accounts
New Rockstar 2FA phishing service targets Microsoft 365 accounts A new phishing-as-a-service (PhaaS) platform named ‘Rockstar 2FA’ has emerged, facilitating large-scale adversary-in-the-middle (AiTM) attacks to steal Microsoft 365 credentials. […] Bill Toulas Go to bleepingcomputer
-
Russia arrests cybercriminal Wazawaka for ties with ransomware gangs
Russia arrests cybercriminal Wazawaka for ties with ransomware gangs Russian law enforcement has arrested and indicted notorious ransomware affiliate Mikhail Pavlovich Matveev (also known as Wazawaka, Uhodiransomwar, m1x, and Boriselcin) for developing malware and his involvement in several hacking groups. […] Sergiu Gatlan Go to bleepingcomputer
-
Bologna FC confirms data breach after RansomHub ransomware attack
Bologna FC confirms data breach after RansomHub ransomware attack Bologna Football Club 1909 has confirmed it suffered a ransomware attack after its stolen data was leaked online by the RansomHub extortion group. […] Bill Toulas Go to bleepingcomputer
-
New Windows Server 2012 zero-day gets free, unofficial patches
New Windows Server 2012 zero-day gets free, unofficial patches Free unofficial security patches have been released through the 0patch platform to address a zero-day vulnerability introduced over two years ago in the Windows Mark of the Web (MotW) security mechanism. […] Sergiu Gatlan Go to bleepingcomputer
-
Tor needs 200 new WebTunnel bridges to fight censorship
Tor needs 200 new WebTunnel bridges to fight censorship The Tor Project has put out an urgent call to the privacy community asking volunteers to help deploy 200 new WebTunnel bridges by the end of the year to fight government censorship. […] Bill Toulas Go to bleepingcomputer
-
UK hospital network postpones procedures after cyberattack
UK hospital network postpones procedures after cyberattack Major UK healthcare provider Wirral University Teaching Hospital (WUTH), part of the NHS Foundation Trust, has suffered a cyberattack that caused a systems outage leading to postponing appointments and scheduled procedures. […] Bill Toulas Go to bleepingcomputer
-
Microsoft re-releases Exchange updates after fixing mail delivery
Microsoft re-releases Exchange updates after fixing mail delivery Microsoft has re-released the November 2024 security updates for Exchange Server after pulling them earlier this month due to email delivery issues on servers using custom mail flow rules. […] Sergiu Gatlan Go to bleepingcomputer
-
Hackers abuse popular Godot game engine to infect thousands of PCs
Hackers abuse popular Godot game engine to infect thousands of PCs Hackers have used new GodLoader malware exploiting the capabilities of the widely used Godot game engine to evade detection and infect over 17,000 systems in just three months. […] Sergiu Gatlan Go to bleepingcomputer
-
Hackers exploit ProjectSend flaw to backdoor exposed servers
Hackers exploit ProjectSend flaw to backdoor exposed servers Threat actors are using public exploits for a critical authentication bypass flaw in ProjectSend to upload webshells and gain remote access to servers. […] Bill Toulas Go to bleepingcomputer
-
Zello asks users to reset passwords after security incident
Zello asks users to reset passwords after security incident Zello is warning customers to reset their passwords if their account was created before November 2nd in what appears to be another security breach. […] Lawrence Abrams Go to bleepingcomputer
-
Microsoft says it’s not using your Word, Excel data for AI training
Microsoft says it’s not using your Word, Excel data for AI training Microsoft has denied claims that it uses Microsoft 365 apps (including Word, Excel, and PowerPoint) to collect data to train the company’s artificial intelligence (AI) models. […] Sergiu Gatlan Go to bleepingcomputer
-
New NachoVPN attack uses rogue VPN servers to install malicious updates
New NachoVPN attack uses rogue VPN servers to install malicious updates A set of vulnerabilities dubbed “NachoVPN” allows rogue VPN servers to install malicious updates when unpatched Palo Alto and SonicWall SSL-VPN clients connect to them. […] Sergiu Gatlan Go to bleepingcomputer
-
NordVPN Black Friday Deal: Save up to 74% on yearly subscriptions
NordVPN Black Friday Deal: Save up to 74% on yearly subscriptions Want the best VPN with a 74% discount? The NordVPN Black Friday deal is live and runs until December 10. This is the perfect chance to lock in a 2-year plan for the low cost of $2.99 per month, with an extra 3 months for…
-
Over 1,000 arrested in massive ‘Serengeti’ anti-cybercrime operation
Over 1,000 arrested in massive ‘Serengeti’ anti-cybercrime operation Law enforcement agencies in Africa arrested as part of ‘Operation Serengeti’ more than a thousand individuals suspected of being involved in major cybercriminal activities that caused close to $193 million in financial losses all over the world. […] Bill Toulas Go to bleepingcomputer
-
Get 50% off Malwarebytes during Black Friday 2024
Get 50% off Malwarebytes during Black Friday 2024 Malwarebytes’ Black Friday 2024 deals are now live, offering a 50% discount for one and two-year subscriptions to personal, family, and business subscriptions to its standalone anti-malware software, VPN, and Personal Data Remover services. […] Lawrence Abrams Go to bleepingcomputer
-
Why Cybersecurity Leaders Trust the MITRE ATT&CK Evaluations
Why Cybersecurity Leaders Trust the MITRE ATT&CK Evaluations The “MITRE Engenuity ATT&CK Evaluations: Enterprise” stand out as an essential resource for cybersecurity decision makers. Learn more from Cynet on what to expect in the upcoming 2024 MITRE ATT&CK Evaluation results. […] Sponsored by Cynet Go to bleepingcomputer