Tag: bleepingcomputer
-
Hackers exploit SimpleHelp RMM flaws to deploy Sliver malware
Hackers exploit SimpleHelp RMM flaws to deploy Sliver malware Hackers are targeting vulnerable SimpleHelp RMM clients to create administrator accounts, drop backdoors, and potentially lay the groundwork for ransomware attacks. […] Bill Toulas Go to bleepingcomputer
-
Critical Cisco ISE bug can let attackers run commands as root
Critical Cisco ISE bug can let attackers run commands as root Cisco has fixed two critical Identity Services Engine (ISE) vulnerabilities that can let attackers with read-only admin privileges bypass authorization and run commands as root. […] Sergiu Gatlan Go to bleepingcomputer
-
New Microsoft script updates Windows media with bootkit malware fixes
New Microsoft script updates Windows media with bootkit malware fixes Microsoft has released a PowerShell script to help Windows users and admins update bootable media so it utilizes the new “Windows UEFI CA 2023” certificate before the mitigations of the BlackLotus UEFI bootkit are enforced later this year. […] Lawrence Abrams Go to bleepingcomputer
-
Robocallers posing as FCC fraud prevention team call FCC staff
Robocallers posing as FCC fraud prevention team call FCC staff The FCC has proposed a $4,492,500 fine against VoIP service provider Telnyx for allegedly allowing customers to make robocalls posing as fictitious FCC “Fraud Prevention Team,” by failing to comply with Know Your Customer (KYC) rules. However, Telnyx says the FCC is mistaken and denies…
-
Ransomware payments fell by 35% in 2024, totalling $813,550,000
Ransomware payments fell by 35% in 2024, totalling $813,550,000 Payments to ransomware actors decreased 35% year-over-year in 2024, totaling $813.55 million, down from $1.25 billion recorded in 2023. […] Bill Toulas Go to bleepingcomputer
-
CISA orders agencies to patch Linux kernel bug exploited in attacks
CISA orders agencies to patch Linux kernel bug exploited in attacks CISA has ordered federal agencies to secure their systems within three weeks against a high-severity Linux kernel flaw actively exploited in attacks. […] Sergiu Gatlan Go to bleepingcomputer
-
Hackers spoof Microsoft ADFS login pages to steal credentials
Hackers spoof Microsoft ADFS login pages to steal credentials A help desk phishing campaign targets an organization’s Microsoft Active Directory Federation Services (ADFS) using spoofed login pages to steal credentials and bypass multi-factor authentication (MFA) protections. […] Bill Toulas Go to bleepingcomputer
-
Zyxel won’t patch newly exploited flaws in end-of-life routers
Zyxel won’t patch newly exploited flaws in end-of-life routers Zyxel has issued a security advisory about actively exploited flaws in CPE Series devices, warning that it has no plans to issue fixing patches and urging users to move to actively supported models. […] Bill Toulas Go to bleepingcomputer
-
Google Play, Apple App Store apps caught stealing crypto wallets
Google Play, Apple App Store apps caught stealing crypto wallets A new campaign dubbed ‘SparkCat’ has been uncovered, targeting the cryptocurrency wallet recovery phrases of Android and iOS users using optical character recognition (OCR) stealers. […] Bill Toulas Go to bleepingcomputer
-
Cyber agencies share security guidance for network edge devices
Cyber agencies share security guidance for network edge devices Five Eyes cybersecurity agencies in the UK, Australia, Canada, New Zealand, and the U.S. have issued guidance urging makers of network edge devices and appliances to improve forensic visibility to help defenders detect attacks and investigate breaches. […] Sergiu Gatlan Go to bleepingcomputer
-
Chinese cyberspies use new SSH backdoor in network device hacks
Chinese cyberspies use new SSH backdoor in network device hacks A Chinese hacking group is hijacking the SSH daemon on network appliances by injecting malware into the process for persistent access and covert operations. […] Bill Toulas Go to bleepingcomputer
-
Netgear warns users to patch critical WiFi router vulnerabilities
Netgear warns users to patch critical WiFi router vulnerabilities Netgear has fixed two critical remote code execution and authentication bypass vulnerabilities affecting multiple WiFi routers and warned customers to update their devices to the latest firmware as soon as possible. […] Sergiu Gatlan Go to bleepingcomputer
-
GrubHub data breach impacts customers, drivers, and merchants
GrubHub data breach impacts customers, drivers, and merchants Food delivery company GrubHub disclosed a data breach impacting the personal information of an undisclosed number of customers, merchants, and drivers after attackers breached its systems using a service provider account. […] Sergiu Gatlan Go to bleepingcomputer
-
First Apple-notarized porn app available to iPhone users in Europe
First Apple-notarized porn app available to iPhone users in Europe The first Apple-notarized porn app, “Hot Tub,” is now available to iPhone users in Europe through the alternative app marketplace, AltStore PAL. […] Lawrence Abrams Go to bleepingcomputer
-
Amazon Redshift gets new default settings to prevent data breaches
Amazon Redshift gets new default settings to prevent data breaches Amazon has announced key security enhancements for Redshift, a popular data warehousing solution, to help prevent data exposures due to misconfigurations and insecure default settings. […] Bill Toulas Go to bleepingcomputer
-
Google fixes Android kernel zero-day exploited in attacks
Google fixes Android kernel zero-day exploited in attacks The February 2025 Android security updates patch 48 vulnerabilities, including a zero-day kernel vulnerability that has been exploited in the wild. […] Sergiu Gatlan Go to bleepingcomputer
-
Canadian charged with stealing $65 million using DeFI crypto exploits
Canadian charged with stealing $65 million using DeFI crypto exploits The U.S. Justice Department has charged a Canadian man with stealing roughly $65 million after exploiting two decentralized finance (DeFI) protocols. […] Sergiu Gatlan Go to bleepingcomputer
-
Google says hackers abuse Gemini AI to empower their attacks
Google says hackers abuse Gemini AI to empower their attacks Multiple state-sponsored groups are experimenting with the AI-powered Gemini assistant from Google to increase productivity and to conduct research on potential infrastructure for attacks or for reconnaissance on targets. […] Bill Toulas Go to bleepingcomputer
-
Microsoft improves text contrast for all Windows Chromium browsers
Microsoft improves text contrast for all Windows Chromium browsers Microsoft says it improved the contrast of text rendered in all Chromium-based web browsers on Windows, making it more readable on some displays. […] Sergiu Gatlan Go to bleepingcomputer
-
Indian tech giant Tata Technologies hit by ransomware attack
Indian tech giant Tata Technologies hit by ransomware attack Tata Technologies Ltd. had to suspend some of its IT services following a ransomware attack that impacted the company network. […] Bill Toulas Go to bleepingcomputer
-
Globe Life data breach may impact an additional 850,000 clients
Globe Life data breach may impact an additional 850,000 clients Insurance giant Globe Life finished the investigation into the data breach it suffered last June and says that the incident may have impacted an additional 850,000 customers. […] Bill Toulas Go to bleepingcomputer
-
Mizuno USA says hackers stayed in its network for two months
Mizuno USA says hackers stayed in its network for two months Mizuno USA, a subsidiary of Mizuno Corporation, one of the world’s largest sporting goods manufacturers, confirmed in data breach notification letters that unknown attackers stole files from its network between August and October 2024. […] Sergiu Gatlan Go to bleepingcomputer
-
US healthcare provider data breach impacts 1 million patients
US healthcare provider data breach impacts 1 million patients Community Health Center (CHC), a leading Connecticut healthcare provider, is notifying over 1 million patients that their personal and health information was stolen in an October breach. […] Sergiu Gatlan Go to bleepingcomputer
-
KuCoin to pay nearly $300 million in penalties after guilty plea
KuCoin to pay nearly $300 million in penalties after guilty plea KuCoin’s operator, PEKEN Global Limited, pleaded guilty to operating an unlicensed money-transmitting business and agreed to pay $297 million in penalties to settle charges in the U.S. […] Bill Toulas Go to bleepingcomputer
-
Backdoor found in two healthcare patient monitors, linked to IP in China
Backdoor found in two healthcare patient monitors, linked to IP in China The US Cybersecurity and Infrastructure Security Agency (CISA) is warning that Contec CMS8000 devices, a widely used healthcare patient monitoring device, include a backdoor that quietly sends patient data to a remote IP address and downloads and executes files on the device. […] Lawrence…
-
Google blocked 2.36 million risky Android apps from Play Store in 2024
Google blocked 2.36 million risky Android apps from Play Store in 2024 Google blocked 2.3 million Android app submissions to the Play Store in 2024 due to violations of its policies that made them potentially risky for users. […] Bill Toulas Go to bleepingcomputer
-
Ransomware attack disrupts New York blood donation giant
Ransomware attack disrupts New York blood donation giant The New York Blood Center (NYBC), one of the world’s largest independent blood collection and distribution organizations, says a Sunday ransomware attack forced it to reschedule some appointments. […] Sergiu Gatlan Go to bleepingcomputer
-
DeepSeek exposes database with over 1 million chat records
DeepSeek exposes database with over 1 million chat records DeepSeek, the Chinese AI startup known for its DeepSeek-R1 LLM model, has publicly exposed two databases containing sensitive user and operational information. […] Bill Toulas Go to bleepingcomputer
-
New Aquabotv3 botnet malware targets Mitel command injection flaw
New Aquabotv3 botnet malware targets Mitel command injection flaw A new variant of the Mirai-based botnet malware Aquabot has been observed actively exploiting CVE-2024-41710, a command injection vulnerability in Mitel SIP phones. […] Bill Toulas Go to bleepingcomputer
-
Solana Pump.fun tool DogWifTool compromised to drain wallets
Solana Pump.fun tool DogWifTool compromised to drain wallets DogWifTools has disclosed on its official Discord channel that its software has been compromised by a supply chain attack that impacted its Windows client, infecting users with malware. […] Bill Toulas Go to bleepingcomputer
-
Laravel admin package Voyager vulnerable to one-click RCE flaw
Laravel admin package Voyager vulnerable to one-click RCE flaw Three vulnerabilities discovered in the open-source PHP package Voyager for managing Laravel applications could be used for remote code execution attacks. […] Bill Toulas Go to bleepingcomputer
-
Microsoft investigates Microsoft 365 outage affecting users, admins
Microsoft investigates Microsoft 365 outage affecting users, admins Microsoft is investigating an ongoing outage preventing users and admins from accessing some Microsoft 365 services and the admin center. […] Sergiu Gatlan Go to bleepingcomputer
-
FBI seizes Cracked.io, Nulled.to hacking forums in Operation Talent
FBI seizes Cracked.io, Nulled.to hacking forums in Operation Talent The FBI has seized the domains for the infamous Cracked.io and Nulled.to hacking forums, which are known for their focus on cybercrime, password theft, cracking, and credential stuffing attacks. […] Sergiu Gatlan Go to bleepingcomputer
-
Hackers exploiting flaws in SimpleHelp RMM to breach networks
Hackers exploiting flaws in SimpleHelp RMM to breach networks Hackers are believed to be exploiting recently fixed SimpleHelp Remote Monitoring and Management (RMM) software vulnerabilities to gain initial access to target networks. […] Bill Toulas Go to bleepingcomputer
-
Google to kill Chrome Sync on older Chrome browser versions
Google to kill Chrome Sync on older Chrome browser versions Google announced that the Chrome Sync feature will be discontinued in early 2025 for Chrome versions older than four years. […] Sergiu Gatlan Go to bleepingcomputer
-
Garmin GPS watches crashing, stuck in triangle ‘reboot loop’
Garmin GPS watches crashing, stuck in triangle ‘reboot loop’ Garmin users are reporting that their watches crash when using apps that require GPS access and then get stuck in a reboot loop, showing a blue triangle logo. […] Sergiu Gatlan Go to bleepingcomputer
-
New Apple CPU side-channel attacks steal data from browsers
New Apple CPU side-channel attacks steal data from browsers A team of security researchers has disclosed new side-channel vulnerabilities in modern Apple processors that could steal sensitive information from web browsers. […] Bill Toulas Go to bleepingcomputer
-
Engineering giant Smiths Group discloses security breach
Engineering giant Smiths Group discloses security breach London-based engineering giant Smiths Group disclosed a security breach after unknown attackers gained access to the company’s systems. […] Sergiu Gatlan Go to bleepingcomputer
-
DeepSeek halts new signups amid “large-scale” cyberattack
DeepSeek halts new signups amid “large-scale” cyberattack Chinese AI platform DeepSeek has disabled registrations on it DeepSeek-V3 chat platform due to an ongoing “large-scale” cyberattack targeting its services. […] Lawrence Abrams Go to bleepingcomputer
-
Bitwarden makes it harder to hack password vaults without MFA
Bitwarden makes it harder to hack password vaults without MFA Open-source password manager Bitwarden is adding an extra layer of security for accounts that are not protected by two-factor authentication, requiring email verification before allowing access to accounts. […] Bill Toulas Go to bleepingcomputer
-
Microsoft: January Windows security updates break audio playback
Microsoft: January Windows security updates break audio playback Microsoft has confirmed that the January 2025 Windows security updates are breaking audio playback on some systems with external DACs (digital-to-analog converters). […] Sergiu Gatlan Go to bleepingcomputer
-
Apple fixes this year’s first actively exploited zero-day bug
Apple fixes this year’s first actively exploited zero-day bug Apple has released security updates to fix this year’s first zero-day vulnerability, tagged as actively exploited in attacks targeting iPhone users. […] Sergiu Gatlan Go to bleepingcomputer
-
EU sanctions Russian GRU hackers for cyberattacks against Estonia
EU sanctions Russian GRU hackers for cyberattacks against Estonia The European Union sanctioned three hackers, part of Unit 29155 of Russia’s military intelligence service (GRU), for their involvement in cyberattacks targeting Estonia’s government agencies in 2020. […] Sergiu Gatlan Go to bleepingcomputer
-
UnitedHealth now says 190 million impacted by 2024 data breach
UnitedHealth now says 190 million impacted by 2024 data breach UnitedHealth has revealed that 190 million Americans had their personal and healthcare data stolen in the Change Healthcare ransomware attack, nearly doubling the previously disclosed figure. […] Lawrence Abrams Go to bleepingcomputer
-
Ransomware gang uses SSH tunnels for stealthy VMware ESXi access
Ransomware gang uses SSH tunnels for stealthy VMware ESXi access Ransomware actors targeting ESXi bare metal hypervisors are leveraging SSH tunneling to persist on the system while remaining undetected. […] Bill Toulas Go to bleepingcomputer
-
TalkTalk investigates breach after data for sale on hacking forum
TalkTalk investigates breach after data for sale on hacking forum UK telecommunications company TalkTalk is investigating a third-party supplier data breach after a threat actor began selling alleged customer data on a hacking forum. […] Lawrence Abrams Go to bleepingcomputer
-
PayPal to pay $2 million settlement over 2022 data breach
PayPal to pay $2 million settlement over 2022 data breach New York State has announced a $2,000,000 settlement with PayPal over charges it failed to comply with the state’s cybersecurity regulations, leading to a 2022 data breach. […] Bill Toulas Go to bleepingcomputer
-
Zyxel warns of bad signature update causing firewall boot loops
Zyxel warns of bad signature update causing firewall boot loops Zyxel is warning that a bad security signature update is causing critical errors for USG FLEX or ATP Series firewalls, including putting the device into a boot loop. […] Lawrence Abrams Go to bleepingcomputer
-
Microsoft to deprecate WSUS driver synchronization in 90 days
Microsoft to deprecate WSUS driver synchronization in 90 days Microsoft has reminded Windows administrators that driver synchronization in Windows Server Update Services (WSUS) will be deprecated on April 18, 90 days from now. […] Sergiu Gatlan Go to bleepingcomputer
-
Subaru Starlink flaw let hackers hijack cars in US and Canada
Subaru Starlink flaw let hackers hijack cars in US and Canada Security researchers have discovered an arbitrary account takeover flaw in Subaru’s Starlink service that could let attackers track, control, and hijack vehicles in the United States, Canada, and Japan using just a license plate. […] Sergiu Gatlan Go to bleepingcomputer
-
Hackers use Windows RID hijacking to create hidden admin account
Hackers use Windows RID hijacking to create hidden admin account A North Korean threat group has been using a technique called RID hijacking that tricks Windows into treating a low-privileged account as one with administrator permissions. […] Bill Toulas Go to bleepingcomputer
-
Hacker infects 18,000 “script kiddies” with fake malware builder
Hacker infects 18,000 “script kiddies” with fake malware builder A threat actor targeted low-skilled hackers, known as “script kiddies,” with a fake malware builder that secretly infected them with a backdoor to steal data and take over computers. […] Bill Toulas Go to bleepingcomputer
-
FBI: North Korean IT workers steal source code to extort employers
FBI: North Korean IT workers steal source code to extort employers The FBI warned today that North Korean IT workers are abusing their access to steal source code and extort U.S. companies that have been tricked into hiring them. […] Sergiu Gatlan Go to bleepingcomputer
-
Google launches customizable Web Store for Enterprise extensions
Google launches customizable Web Store for Enterprise extensions Google has officially launched its Chrome Web Store for Enterprises, allowing organizations to create a curated list of extensions that can be installed in employees’ web browsers. […] Lawrence Abrams Go to bleepingcomputer
-
Hundreds of fake Reddit sites push Lumma Stealer malware
Hundreds of fake Reddit sites push Lumma Stealer malware Hackers are distributing close to 1,000 web pages mimicking Reddit and the WeTransfer file sharing service that lead to downloading the Lumma Stealer malware. […] Bill Toulas Go to bleepingcomputer
-
QNAP fixes six Rsync vulnerabilities in NAS backup, recovery app
QNAP fixes six Rsync vulnerabilities in NAS backup, recovery app QNAP has fixed six rsync vulnerabilities that could let attackers gain remote code execution on unpatched Network Attached Storage (NAS) devices. […] Sergiu Gatlan Go to bleepingcomputer
-
New Android Identity Check locks settings outside trusted locations
New Android Identity Check locks settings outside trusted locations Google has announced a new Android “Identity Check” security feature that lock sensitive settings behind biometric authentication when outside a trusted location. […] Bill Toulas Go to bleepingcomputer
-
Critical zero-days impact premium WordPress real estate plugins
Critical zero-days impact premium WordPress real estate plugins The RealHome theme and the Easy Real Estate plugins for WordPress are vulnerable to two critical severity flaws that allow unauthenticated users to gain administrative privileges. […] Bill Toulas Go to bleepingcomputer
-
Cloudflare CDN flaw leaks user location data, even through secure chat apps
Cloudflare CDN flaw leaks user location data, even through secure chat apps A security researcher discovered a flaw in Cloudflare’s content delivery network (CDN), which could expose a person’s general location by simply sending them an image on platforms like Signal and Discord. […] Bill Toulas Go to bleepingcomputer
-
Telegram captcha tricks you into running malicious PowerShell scripts
Telegram captcha tricks you into running malicious PowerShell scripts Threat actors on X are exploiting the news around Ross Ulbricht to direct unsuspecting users to a Telegram channel that tricks them into executing PowerShell code that infects them with malware. […] Bill Toulas Go to bleepingcomputer
-
Cisco warns of denial of service flaw with PoC exploit code
Cisco warns of denial of service flaw with PoC exploit code Cisco has released security updates to patch a ClamAV denial-of-service (DoS) vulnerability, which has proof-of-concept (PoC) exploit code. […] Sergiu Gatlan Go to bleepingcomputer
-
PowerSchool hacker claims they stole data of 62 million students
PowerSchool hacker claims they stole data of 62 million students The hacker who breached education tech giant PowerSchool claimed in an extortion demand that they stole the personal data of 62.4 million students and 9.5 million teachers. […] Lawrence Abrams Go to bleepingcomputer
-
Cloudflare mitigated a record-breaking 5.6 Tbps DDoS attack
Cloudflare mitigated a record-breaking 5.6 Tbps DDoS attack The largest distributed denial-of-service (DDoS) attack to date peaked at 5.6 terabits per second and came from a Mirai-based botnet with 13,000 compromised devices. […] Bill Toulas Go to bleepingcomputer
-
Fake Homebrew Google ads target Mac users with malware
Fake Homebrew Google ads target Mac users with malware Hackers are once again abusing Google ads to spread malware, using a fake Homebrew website to infect Macs and Linux devices with an infostealer that steals credentials, browser data, and cryptocurrency wallets. […] Bill Toulas Go to bleepingcomputer
-
Microsoft previews Game Assist in-game browser in Edge Stable
Microsoft previews Game Assist in-game browser in Edge Stable Microsoft has announced that Game Assist, its recently unveiled in-game browser, is now also available in preview for Microsoft Edge Stable users. […] Sergiu Gatlan Go to bleepingcomputer
-
Bitbucket services “hard down” due to major worldwide outage
Bitbucket services “hard down” due to major worldwide outage Bitbucket is investigating a massive outage affecting Atlassian Bitbucket Cloud customers worldwide, with the company saying its cloud services are “hard down.” […] Sergiu Gatlan Go to bleepingcomputer
-
7-Zip fixes bug that bypasses Windows MoTW security warnings, patch now
7-Zip fixes bug that bypasses Windows MoTW security warnings, patch now A high-severity vulnerability in the 7-Zip file archiver allows attackers to bypass the Mark of the Web (MotW) Windows security feature and execute code on users’ computers when extracting malicious files from nested archives. […] Sergiu Gatlan Go to bleepingcomputer
-
Microsoft: Exchange 2016 and 2019 reach end of support in October
Microsoft: Exchange 2016 and 2019 reach end of support in October Microsoft has reminded admins that Exchange 2016 and Exchange 2019 will reach the end of extended support in October and shared guidance for those who need to decommission outdated servers. […] Sergiu Gatlan Go to bleepingcomputer
-
HPE investigates breach as hacker claims to steal source code
HPE investigates breach as hacker claims to steal source code Hewlett Packard Enterprise (HPE) is investigating claims of a new breach after a threat actor said they stole documents from the company’s developer environments. […] Sergiu Gatlan Go to bleepingcomputer
-
Microsoft fixes Windows Server 2022 bug breaking device boot
Microsoft fixes Windows Server 2022 bug breaking device boot Microsoft has fixed a bug that was causing some Windows Server 2022 systems with two or more NUMA nodes to fail to start up. […] Sergiu Gatlan Go to bleepingcomputer
-
Microsoft shares temp fix for Outlook crashing when writing emails
Microsoft shares temp fix for Outlook crashing when writing emails Microsoft has shared a temporary fix for a known issue that causes classic Outlook to crash when writing, replying to, or forwarding an email. […] Sergiu Gatlan Go to bleepingcomputer
-
TikTok is back up in the US after Trump says he will extend deadline
TikTok is back up in the US after Trump says he will extend deadline TikTok is back up in the United States after Trump announced today that he would extend a 90-day deadline for the company to find a U.S. purchaser. […] Lawrence Abrams Go to bleepingcomputer
-
TikTok shuts down in the US as Trump throws the company a lifeline
TikTok shuts down in the US as Trump throws the company a lifeline TikTok shut down in the U.S. late Saturday night following the Supreme Court’s decision to uphold the law that banned the company over national security concerns. […] Lawrence Abrams Go to bleepingcomputer
-
Star Blizzard hackers abuse WhatsApp to target high-value diplomats
Star Blizzard hackers abuse WhatsApp to target high-value diplomats Russian nation-state actor Star Blizzard has been running a new spear-phishing campaign to compromise WhatsApp accounts of targets in government, diplomacy, defense policy, international relations, and Ukraine aid organizations. […] Bill Toulas Go to bleepingcomputer
-
FTC orders GM to stop collecting and selling driver’s data
FTC orders GM to stop collecting and selling driver’s data The Federal Trade Commission (FTC) has announced action against General Motors (GM) and its subsidiary, OnStar, for unlawful collection and sale of drivers’ precise geolocation and driving behavior data without first obtaining their consent. […] Bill Toulas Go to bleepingcomputer
-
Microsoft removes Assassin’s Creed Windows 11 upgrade blocks
Microsoft removes Assassin’s Creed Windows 11 upgrade blocks Earlier this week, Ubisoft released Assassin’s Creed Valhalla and Assassin’s Creed Origins patches to fix Windows 11 24H2 compatibility issues that caused crashes, freezes, and audio problems. […] Sergiu Gatlan Go to bleepingcomputer
-
FTC cracks down on Genshin Impact gacha loot box practices
FTC cracks down on Genshin Impact gacha loot box practices Genshin Impact developer Cognosphere (aka Hoyoverse) has agreed to a $20 million settlement with the U.S. Federal Trade Commission (FTC) over its gacha loot box monetization and is now banned from selling them to teens under the age of sixteen without parental consent. […] Lawrence Abrams…
-
Otelier data breach exposes info, hotel reservations of millions
Otelier data breach exposes info, hotel reservations of millions Hotel management platform Otelier suffered a data breach after threat actors breached its Amazon S3 cloud storage to steal millions of guests’ personal information and reservations for well-known hotel brands like Marriott, Hilton, and Hyatt. […] Lawrence Abrams Go to bleepingcomputer
-
Malicious PyPi package steals Discord auth tokens from devs
Malicious PyPi package steals Discord auth tokens from devs A malicious package named ‘pycord-self’ on the Python package index (PyPI) targets Discord developers to steal authentication tokens and plant a backdoor for remote control over the system. […] Bill Toulas Go to bleepingcomputer
-
Microsoft fixes Office 365 apps crashing on Windows Server systems
Microsoft fixes Office 365 apps crashing on Windows Server systems Microsoft has fixed a known issue that caused Microsoft 365 applications and Classic Outlook to crash on Windows Server 2016 or Windows Server 2019 systems. […] Sergiu Gatlan Go to bleepingcomputer
-
US sanctions Chinese firm, hacker behind telecom and Treasury hacks
US sanctions Chinese firm, hacker behind telecom and Treasury hacks The U.S. Department of the Treasury’s Office of Foreign Assets Control (OFAC) has sanctioned Yin Kecheng, a Shanghai-based hacker for his role in the recent Treasury breach and a company associated with the Salt Typhoon threat group. […] Bill Toulas Go to bleepingcomputer
-
GDPR complaints filed against TikTok, Temu for sending user data to China
GDPR complaints filed against TikTok, Temu for sending user data to China Non-profit privacy advocacy group “None of Your Business” (noyb) has filed six complaints against TikTok, AliExpress, SHEIN, Temu, WeChat, and Xiaomi, for unlawfully transferring European user’s data to China and infringing European Union’s general data protection regulation (GDPR). […] Bill Toulas Go to…
-
W3 Total Cache plugin flaw exposes 1 million WordPress sites to attacks
W3 Total Cache plugin flaw exposes 1 million WordPress sites to attacks A severe flaw in the W3 Total Cache plugin installed on more than one million WordPress sites could give attackers access to various information, including metadata on cloud-based apps. […] Bill Toulas Go to bleepingcomputer
-
Microsoft expands testing of Windows 11 admin protection feature
Microsoft expands testing of Windows 11 admin protection feature Microsoft has expanded its Windows 11 administrator protection tests, allowing Insiders to enable the security feature from the Windows Security settings. […] Sergiu Gatlan Go to bleepingcomputer
-
US cracks down on North Korean IT worker army with more sanctions
US cracks down on North Korean IT worker army with more sanctions The U.S. Treasury Department has sanctioned a network of individuals and front companies linked to North Korea’s Ministry of National Defense that have generated revenue via illegal remote IT work schemes. […] Sergiu Gatlan Go to bleepingcomputer
-
Biden signs executive order to bolster national cybersecurity
Biden signs executive order to bolster national cybersecurity Days before leaving office, President Joe Biden signed an executive order to shore up the United States’ cybersecurity by making it easier to sanction hacking groups targeting federal agencies and the nation’s critical infrastructure. […] Sergiu Gatlan Go to bleepingcomputer
-
Hackers leak configs and VPN credentials for 15,000 FortiGate devices
Hackers leak configs and VPN credentials for 15,000 FortiGate devices A new hacking group has leaked the configuration files, IP addresses, and VPN credentials for over 15,000 FortiGate devices for free on the dark web, exposing a great deal of sensitive technical information to other cybercriminals. […] Lawrence Abrams Go to bleepingcomputer
-
SAP fixes critical vulnerabilities in NetWeaver application servers
SAP fixes critical vulnerabilities in NetWeaver application servers SAP has fixed two critical vulnerabilities affecting NetWeaver web application server that could be exploited to escalate privileges and access restricted information. […] Bill Toulas Go to bleepingcomputer
-
CISA shares guidance for Microsoft expanded logging capabilities
CISA shares guidance for Microsoft expanded logging capabilities CISA shared guidance for government agencies and enterprises on using expanded cloud logs in their Microsoft 365 tenants as part of their forensic and compliance investigations. […] Sergiu Gatlan Go to bleepingcomputer
-
MikroTik botnet uses misconfigured SPF DNS records to spread malware
MikroTik botnet uses misconfigured SPF DNS records to spread malware A newly discovered botnet of 13,000 MikroTik devices uses a misconfiguration in domain name server records to bypass email protections and deliver malware by spoofing roughly 20,000 web domains. […] Bill Toulas Go to bleepingcomputer
-
Label giant Avery says website hacked to steal credit cards
Label giant Avery says website hacked to steal credit cards Avery Products Corporation is warning it suffered a data breach after its website was hacked to steal customers’ credit cards and personal information. […] Bill Toulas Go to bleepingcomputer
-
January Windows updates may fail if Citrix SRA is installed
January Windows updates may fail if Citrix SRA is installed Microsoft is warning that the January 2025 Windows 11 and Windows 10 cumulative updates may fail if Citrix Session Recording Agent (SRA) version 2411 is installed on the device. […] Lawrence Abrams Go to bleepingcomputer
-
Allstate car insurer sued for tracking drivers without permission
Allstate car insurer sued for tracking drivers without permission Texas Attorney General Ken Paxton has filed a lawsuit against Allstate and its data subsidiary Arity for unlawfully collecting, using, and selling driving data from over 45 million Americans. […] Bill Toulas Go to bleepingcomputer
-
WP3.XYZ malware attacks add rogue admins to 5,000+ WordPress sites
WP3.XYZ malware attacks add rogue admins to 5,000+ WordPress sites A new malware campaign has compromised more than 5,000 WordPress sites to create admin accounts, install a malicious plugin, and steal data. […] Bill Toulas Go to bleepingcomputer
-
US govt says North Korea stole over $659 million in crypto last year
US govt says North Korea stole over $659 million in crypto last year North Korean state-backed hacking groups have stolen over $659 million worth of cryptocurrency in multiple crypto-heists, according to a joint statement issued by the United States, South Korea, and Japan on Tuesday. […] Sergiu Gatlan Go to bleepingcomputer
-
Windows 10 KB5049981 update released with new BYOVD blocklist
Windows 10 KB5049981 update released with new BYOVD blocklist Microsoft has released the KB5049981 cumulative update for Windows 10 22H2 and Windows 10 21H2, which contains an updated Kernel driver blocklist to prevent Bring Your Own Vulnerable Driver (BYOVD) attacks. […] Lawrence Abrams Go to bleepingcomputer
-
OneBlood confirms personal data stolen in July ransomware attack
OneBlood confirms personal data stolen in July ransomware attack Blood-donation not-for-profit OneBlood confirms that donors’ personal information was stolen in a ransomware attack last summer. […] Bill Toulas Go to bleepingcomputer
-
CISA orders agencies to patch BeyondTrust bug exploited in attacks
CISA orders agencies to patch BeyondTrust bug exploited in attacks CISA tagged a vulnerability in BeyondTrust’s Privileged Remote Access (PRA) and Remote Support (RS) as actively exploited in attacks, ordering agencies to secure their systems within three weeks. […] Sergiu Gatlan Go to bleepingcomputer
-
Stolen Path of Exile 2 admin account used to hack player accounts
Stolen Path of Exile 2 admin account used to hack player accounts Path of Exile 2 developers confirmed that a hacked admin account allowed a threat actor to change the password and access at least 66 accounts, finally explaining how PoE 2 accounts have been breached since November. […] Bill Toulas Go to bleepingcomputer
-
Microsoft: macOS bug lets hackers install malicious kernel drivers
Microsoft: macOS bug lets hackers install malicious kernel drivers Apple recently addressed a macOS vulnerability that allows attackers to bypass System Integrity Protection (SIP) and install malicious kernel drivers by loading third-party kernel extensions. […] Sergiu Gatlan Go to bleepingcomputer