Category: Security

Cynet Delivers 100% Protection and 100% Detection Visibility in the 2024 MITRE ATT&CK Evaluation The 2024 MITRE ATT&CK Evaluation results are now available with Cynet achieving 100% Visibility and 100% Protection in the 2024 evaluation. Learn more from Cynet about what these results mean. […] Sponsored by Cynet Go to bleepingcomputer

WPForms bug allows Stripe refunds on millions of WordPress sites A vulnerability in WPForms, a WordPress plugin used in over 6 million websites, could allow subscriber-level users to issue arbitrary Stripe refunds or cancel subscriptions. […] Bill Toulas Go to bleepingcomputer

Ivanti warns of maximum severity CSA auth bypass vulnerability Ivanti warned customers on Tuesday about a new maximum-severity authentication bypass vulnerability in its Cloud Services Appliance (CSA) solution. […] Sergiu Gatlan Go to bleepingcomputer

Ransomware attack hits leading heart surgery device maker ​Artivion, a leading manufacturer of heart surgery medical devices, has disclosed a November 21 ransomware attack that disrupted its operations and forced it to take some systems offline. […] Sergiu Gatlan Go to bleepingcomputer

QR codes bypass browser isolation for malicious C2 communication Mandiant has identified a novel method to bypass contemporary browser isolation technology and achieve command-and-control C2 operations. […] Bill Toulas Go to bleepingcomputer

Blue Yonder SaaS giant breached by Termite ransomware gang ​The Termite ransomware gang has officially claimed responsibility for the November breach of software as a service (SaaS) provider Blue Yonder. […] Sergiu Gatlan Go to bleepingcomputer

Romania’s election systems targeted in over 85,000 cyberattacks A declassified report from Romania’s Intelligence Service says that the country’s election infrastructure was targeted by more than 85,000 cyberattacks. […] Ionut Ilascu Go to bleepingcomputer

U.S. org suffered four month intrusion by Chinese hackers A large U.S. organization with significant presence in China has been reportedly breached by China-based threat actors who persisted on its networks from April to August 2024. […] Bill Toulas Go to bleepingcomputer

US arrests Scattered Spider suspect linked to telecom hacks ​U.S. authorities have arrested a 19-year-old teenager linked to the notorious Scattered Spider cybercrime gang who is now charged with breaching a U.S. financial institution and two unnamed telecommunications firms. […] Sergiu Gatlan Go to bleepingcomputer

Police shuts down Manson cybercrime market, arrests key suspects German law enforcement has seized over 50 servers that hosted the Manson Market cybercrime marketplace and fake online shops used in phishing operations. […] Sergiu Gatlan Go to bleepingcomputer

White House: Salt Typhoon hacked telcos in dozens of countries ​Chinese state hackers, known as Salt Typhoon, have breached telecommunications companies in dozens of countries, President Biden’s deputy national security adviser Anne Neuberger said today. […] Sergiu Gatlan Go to bleepingcomputer

UK disrupts Russian money laundering networks used by ransomware ​A law enforcement operation led by the United Kingdom’s National Crime Agency (NCA) has disrupted two Russian money laundering networks working with criminals worldwide, including ransomware gangs. […] Sergiu Gatlan Go to bleepingcomputer

BT unit took servers offline after Black Basta ransomware breach Multinational telecommunications giant BT Group (formerly British Telecom) has confirmed that its BT Conferencing business division shut down some of its servers following a Black Basta ransomware breach. […] Sergiu Gatlan Go to bleepingcomputer

Vodka maker Stoli files for bankruptcy in US after ransomware attack Stoli Group’s U.S. companies have filed for bankruptcy following an August ransomware attack and Russian authorities seizing the company’s remaining distilleries in the country. […] Sergiu Gatlan Go to bleepingcomputer

Cloudflare’s developer domains increasingly abused by threat actors Cloudflare’s ‘pages.dev’ and ‘workers.dev’ domains, used for deploying web pages and facilitating serverless computing, are being increasingly abused by cybercriminals for phishing and other malicious activities. […] Bill Toulas Go to bleepingcomputer

US shares tips to block hackers behind recent telecom breaches ​CISA released guidance today to help network defenders harden their systems against attacks coordinated by the Salt Typhoon Chinese threat group that breached multiple major global telecommunications providers earlier this year. […] Sergiu Gatlan Go to bleepingcomputer

Exploit released for critical WhatsUp Gold RCE flaw, patch now A proof-of-concept (PoC) exploit for a critical-severity remote code execution flaw in Progress WhatsUp Gold has been published, making it critical to install the latest security updates as soon as possible. […] Bill Toulas Go to bleepingcomputer

Veeam warns of critical RCE bug in Service Provider Console ​Veeam released security updates today to address two Service Provider Console (VSPC) vulnerabilities, including a critical remote code execution (RCE) discovered during internal testing. […] Sergiu Gatlan Go to bleepingcomputer

Russia sentences Hydra dark web market leader to life in prison Russian authorities have sentenced the leader of the criminal group behind the now-closed dark web platform Hydra Market to life in prison. […] Sergiu Gatlan Go to bleepingcomputer

BootKitty UEFI malware exploits LogoFAIL to infect Linux systems The recently uncovered ‘Bootkitty’ UEFI bootkit, the first malware of its kind targeting Linux systems, exploits CVE-2023-40238, aka ‘LogoFAIL,’ to infect computers running on a vulnerable UEFI firmware. […] Bill Toulas Go to bleepingcomputer

New Rockstar 2FA phishing service targets Microsoft 365 accounts A new phishing-as-a-service (PhaaS) platform named ‘Rockstar 2FA’ has emerged, facilitating large-scale adversary-in-the-middle (AiTM) attacks to steal Microsoft 365 credentials. […] Bill Toulas Go to bleepingcomputer

Russia arrests cybercriminal Wazawaka for ties with ransomware gangs Russian law enforcement has arrested and indicted notorious ransomware affiliate Mikhail Pavlovich Matveev (also known as Wazawaka, Uhodiransomwar, m1x, and Boriselcin) for developing malware and his involvement in several hacking groups. […] Sergiu Gatlan Go to bleepingcomputer

Bologna FC confirms data breach after RansomHub ransomware attack Bologna Football Club 1909 has confirmed it suffered a ransomware attack after its stolen data was leaked online by the RansomHub extortion group. […] Bill Toulas Go to bleepingcomputer

Tor needs 200 new WebTunnel bridges to fight censorship The Tor Project has put out an urgent call to the privacy community asking volunteers to help deploy 200 new WebTunnel bridges by the end of the year to fight government censorship. […] Bill Toulas Go to bleepingcomputer

Hackers abuse popular Godot game engine to infect thousands of PCs ​Hackers have used new GodLoader malware exploiting the capabilities of the widely used Godot game engine to evade detection and infect over 17,000 systems in just three months. […] Sergiu Gatlan Go to bleepingcomputer

Hackers exploit ProjectSend flaw to backdoor exposed servers Threat actors are using public exploits for a critical authentication bypass flaw in ProjectSend to upload webshells and gain remote access to servers. […] Bill Toulas Go to bleepingcomputer

Zello asks users to reset passwords after security incident Zello is warning customers to reset their passwords if their account was created before November 2nd in what appears to be another security breach. […] Lawrence Abrams Go to bleepingcomputer

New NachoVPN attack uses rogue VPN servers to install malicious updates A set of vulnerabilities dubbed “NachoVPN” allows rogue VPN servers to install malicious updates when unpatched Palo Alto and SonicWall SSL-VPN clients connect to them. […] Sergiu Gatlan Go to bleepingcomputer

NordVPN Black Friday Deal: Save up to 74% on yearly subscriptions Want the best VPN with a 74% discount? The NordVPN Black Friday deal is live and runs until December 10. This is the perfect chance to lock in a 2-year plan for the low cost of $2.99 per month, with an extra 3 months for…

Get 50% off Malwarebytes during Black Friday 2024 Malwarebytes’ Black Friday 2024 deals are now live, offering a 50% discount for one and two-year subscriptions to personal, family, and business subscriptions to its standalone anti-malware software, VPN, and Personal Data Remover services. […] Lawrence Abrams Go to bleepingcomputer

Why Cybersecurity Leaders Trust the MITRE ATT&CK Evaluations The “MITRE Engenuity ATT&CK Evaluations: Enterprise” stand out as an essential resource for cybersecurity decision makers. Learn more from Cynet on what to expect in the upcoming 2024 MITRE ATT&CK Evaluation results. […] Sponsored by Cynet Go to bleepingcomputer