threatnote – Page 1156

From The Hacker News – New Magecart Campaign Alters 404 Error Pages to Steal Shoppers’ Credit Cards

A sophisticated Magecart campaign has been observed manipulating websites' default 404 error page to conceal malicious code in what's been described as the latest evolution of the attacks. The activity, per Akamai, targets Magento and WooCommerce websites, with some of the victims belonging to large organizations in the food and retail industries. "In this campaign, all the victim websites we

Samir K October 10, 2023

News

From The Hacker News – libcue Library Flaw Opens GNOME Linux Systems Vulnerable to RCE Attacks

A new security flaw has been disclosed in the libcue library impacting GNOME Linux systems that could be exploited to achieve remote code execution (RCE) on affected hosts. Tracked as CVE-2023-43641 (CVSS score: 8.8), the issue is described as a case of memory corruption in libcue, a library designed for parsing cue sheet files. It impacts versions 2.2.1 and prior. libcue is incorporated into

Samir K October 10, 2023

Toolkit

From Cyber Security News – HackerGPT: A ChatGPT Empowered Penetration Testing Tool

HackerGPT is a ChatGPT-enabled penetrating testing tool that can help with network hacking, mobile hacking, different hacking tactics, and other specific tasks. The main foundation of HackerGPT is the training…

Samir K October 10, 2023

News

From The Hacker News – Citrix Devices Under Attack: NetScaler Flaw Exploited to Capture User Credentials

A recently disclosed critical flaw in Citrix NetScaler ADC and Gateway devices is being exploited by threat actors to conduct a credential harvesting campaign. IBM X-Force, which uncovered the activity last month, said adversaries exploited "CVE-2023-3519 to attack unpatched NetScaler Gateways to insert a malicious script into the HTML content of the authentication web page to capture user

Samir K October 10, 2023

News

From Dark Reading – Hacktivists Enter Fray Following Hamas Strikes Against Israel

Killnet, Anonymous Sudan, along with other groups, pick up up their Middle East activities as war breaks out. Read More

Samir K October 9, 2023

Articles

From Krebs on Security – Phishers Spoof USPS, 12 Other Natl’ Postal Services

Recent weeks have seen a sizable uptick in the number of phishing scams targeting U.S. Postal Service (USPS) customers. Here's a look at an extensive SMS phishing operation that tries…

Samir K October 9, 2023

News

From Dark Reading – ‘Looney Tunables’ Linux Flaw Sees Snowballing Proof-of-Concept Exploits

Following the publication of the critical Linux security vulnerability, security specialists released PoC exploits to test the implications of CVE-2023-4911. Read More

Samir K October 9, 2023

Breaches

From The Hacker News – PEACHPIT: Massive Ad Fraud Botnet Powered by Millions of Hacked Android and iOS

An ad fraud botnet dubbed PEACHPIT leveraged an army of hundreds of thousands of Android and iOS devices to generate illicit profits for the threat actors behind the scheme. The botnet is part of a larger China-based operation codenamed BADBOX, which also entails selling off-brand mobile and connected TV (CTV) devices on popular online retailers and resale sites that are backdoored with an

Samir K October 9, 2023

News

From Cyber Security News – ConnectedIO’s 3G/4G Routers Vulnerability Let Hackers Execute Malicious Code

Critical issues in ConnectedIO’s ER2000 edge routers have been discovered, and an attacker can leverage them to compromise the cloud infrastructure completely, remotely execute malicious code, and expose all user…

Samir K October 9, 2023

Research

From Cyber Security News – Snake Keylogger Steals victim Logins, Keystrokes, & Capture Screen

Emails are extremely common in today’s digital communication landscape, with billions sent daily for personal, professional, and promotional purposes. While most emails are harmless, there is a risk associated with…

Samir K October 9, 2023

News

From Cybercrime Magazine – How Reality TV Star Mishel Karen Lost $160,000 In Double Whammy

Romance and investment scams overwhelmed Australian Married at First Sight contestant and OnlyFans content creator – David Braue Melbourne, Australia – Oct. 9, 2023 She hoped they would help her…

Samir K October 9, 2023

Vulnerabilities

From Cybersecurity Help – Threat actors target Ukrainian government agencies in new wave of SmokeLoader attacks

Between August and September 2023, UAC-0006 attempted to steal millions of hryvnias from organizations. Read More

Samir K October 9, 2023

News

From Cyber Security News – Webwyrm Malware Affects More Than 100,000 Users in 50 Countries

Threat actors are evolving their Tactics, Techniques, and Procedures (TTPs) at an alarming rate. With technological advancements and increased awareness of cybersecurity measures, they continually adapt to exploit vulnerabilities and…

Samir K October 9, 2023

Toolkit

From The Hacker News – Cybercriminals Using EvilProxy Phishing Kit to Target Senior Executives in U.S. Firms

Senior executives working in U.S.-based organizations are being targeted by a new phishing campaign that leverages a popular adversary-in-the-middle (AiTM) phishing toolkit named EvilProxy to conduct credential harvesting and account takeover attacks. Menlo Security said the activity started in July 2023, primarily singling out banking and financial services, insurance, property management and

Samir K October 9, 2023

Vulnerabilities

From Cybersecurity Help – The US, Ukraine, and Israel remain top targets of nation-state hackers

In addition to attacks on Ukraine, Russian threat actors intensified cyber operations against Western countries. Read More

Samir K October 9, 2023