Posted inVulnerabilities From Cybersecurity Help – UK’s Electoral Commission reprimanded for August 2021 breach The commission failed to patch its on-premise Microsoft Exchange Server against the ProxyShell flaws. Read More Posted by Samir K July 30, 2024
Posted inVulnerabilities From Cybersecurity Help – Threat actors target Polish businesses with Agent Tesla and Formbook malware Nine significant ModiLoader phishing campaigns were detected in May 2024. Read More Posted by Samir K July 30, 2024
Posted inVulnerabilities From Cybersecurity Help – Cybercriminals exploit recently patched VMware ESXi flaw to deploy ransomware CVE-2024-37085 allows attackers to obtain full administrative permissions on domain-joined ESXi hypervisors. Read More Posted by Samir K July 30, 2024
Posted inVulnerabilities From Cybersecurity Help – SideWinder cyber spies shift focus to ports and maritime facilities in the Mediterranean Sea The group employs a variety of techniques to evade detection and deliver the implants. Read More Posted by Samir K July 30, 2024
Posted inVulnerabilities From Cybersecurity Help – Gemini crypto exchange discloses data breach involving banking info A threat actor gained access to an internal collaboration tool on the bank partner’s system. Read More Posted by Samir K July 29, 2024
Posted inVulnerabilities From Cybersecurity Help – Hackers bypass Google Workspace authentication, exposing thousands of accounts Hackers managed to bypass verification, enabling unauthorized access to third-party services through Google’s single sign-on system. Read More Posted by Samir K July 29, 2024
Posted inVulnerabilities From Cybersecurity Help – Hive0137 email spammer is now using AI to bolster its phishing campaigns Additionally, Hive0137 appears to use Generative AI for creating its tooling. Read More Posted by Samir K July 29, 2024
Posted inVulnerabilities From Cybersecurity Help – SeleniumGreed campaign exploits Selenium servers to mine cryptocurrency The threat actor uses a modified XMRig miner packed with custom UPX headers. Read More Posted by Samir K July 29, 2024
Posted inVulnerabilities From Cybersecurity Help – Cyber Security Week in Review: July 26, 2024 In brief: A North Korean hacker indicted for ransomware attacks, French police dismantle the PlugX botnet, and more. Read More Posted by Samir K July 26, 2024
Posted inVulnerabilities From Cybersecurity Help – Stargazer Goblin launch malware distribution-as-a-service via GitHub The operation is using over 3,000 fake GitHub accounts. Read More Posted by Samir K July 25, 2024
Posted inVulnerabilities From Cybersecurity Help – North Korean APT45 expanding into financially-motivated operations The threat actor has been observed targeting critical infrastructure more frequently than other North Korean hackers. Read More Posted by Samir K July 25, 2024
Posted inVulnerabilities From Cybersecurity Help – Microsoft Defender SmartScreen bug exploited to spread info-stealers FortiGuard Labs has detected this campaign targeting users in North America, Spain, and Thailand. Read More Posted by Samir K July 24, 2024
Posted inVulnerabilities From Cybersecurity Help – Belarusian hackers target project offices and local government bodies in Ukraine The discovered documents indicate the hackers' interest in financial-economic indicators, taxation, and local government reform. Read More Posted by Samir K July 24, 2024
Posted inVulnerabilities From Cybersecurity Help – CrowdStrike blames software bug for global IT crash A bug in the Content Validator allowed the faulty update to pass validation checks and be deployed into production. Read More Posted by Samir K July 24, 2024
Posted inVulnerabilities From Cybersecurity Help – Russia shifts its cyber activities to Ukraine’s frontlines The primary focus of Russian cyber efforts now includes hacking frontline devices used by Ukrainian soldiers. Read More Posted by Samir K July 24, 2024