Month: November 2024

Cybersecurity researchers are warning about malicious email campaigns leveraging a phishing-as-a-service (PhaaS) toolkit called Rockstar 2FA with an aim to steal Microsoft 365 account credentials. "This campaign employs an AitM [adversary-in-the-middle] attack, allowing attackers to intercept user credentials and session cookies, which means that even users with multi-factor authentication (MFA)

Microsoft has addressed four security flaws impacting its artificial intelligence (AI), cloud, enterprise resource planning, and Partner Center offerings, including one that it said has been exploited in the wild. The vulnerability that has been tagged with an "Exploitation Detected" assessment is CVE-2024-49035 (CVSS score: 8.7), a privilege escalation flaw in partner.microsoft[.]com. "An

 A sophisticated phishing scam targeting corporate internet banking users has emerged in Japan, prompting authorities to issue urgent warnings to businesses nationwide. This new fraud scheme combines social engineering tactics…

 A former U.S. telecommunications and IT worker has been sentenced to four years in prison for acting as an agent of the Chinese government. Ping Li, 59, of Wesley Chapel,…

 Cybersecurity experts have uncovered a wave of attacks exploiting vulnerabilities in Zyxel firewall to deploy the Helldown ransomware. This new ransomware operation, first observed in August 2024, has quickly gained…

 A major cyberattack has disrupted operations at Wirral University Teaching Hospital (WUTH), part of the NHS Foundation Trust, leading to postponed appointments and procedures. The incident, which began earlier this…

A 59-year-old U.S. citizen who immigrated from the People's Republic of China (PRC) has been sentenced to four years in prison for conspiring to act as a spy for the country and sharing sensitive information about his employer with China's principal civilian intelligence agency. Ping Li, 59, of Wesley Chapel, Florida, is said to have served as a cooperative contact for the Ministry of State

 A critical vulnerability in Microsoft’s Active Directory Certificate Services (AD CS) that could allow attackers to escalate privileges and potentially gain domain admin access. This new exploit, dubbed ESC15 or…

Nearly two dozen security vulnerabilities have been disclosed in Advantech EKI industrial-grade wireless access point devices, some of which could be weaponized to bypass authentication and execute code with elevated privileges. "These vulnerabilities pose significant risks, allowing unauthenticated remote code execution with root privileges, thereby fully compromising the confidentiality,

 In today’s rapidly evolving threat landscape, security leaders must make informed decisions to protect their organizations effectively. The “MITRE Engenuity ATT&CK Evaluations: Enterprise” serve as an essential resource for cybersecurity…

 A major cryptocurrency exchange, XT.com suspended all withdrawals on November 28, 2024 following a suspected hack that resulted in the theft of approximately $1.7 million worth of digital assets. The…

 North Korean threat actors target software developers with weaponized Javascript projects that include BeaverTail malware deployed via NPM packages. It is intended to steal information and load additional stages of…

 A new skimmer malware is targeting Magento-powered eCommerce websites, stealing sensitive credit card information from checkout pages.  This malware dynamically creates a false credit card form or directly extracts payment…

 With the rise of cyber threats, surveillance, and unauthorized access, protecting sensitive information has become a critical challenge for individuals, businesses, and governments alike. One technology at the forefront of…