Recent Security News
-
New Findings Challenge Attribution in Denmark’s Energy Sector Cyberattacks
January 14, 2024 at 04:51AM Forescout’s recent findings reveal that the cyber attacks on Denmark’s energy sector in 2023, involving Zyxel firewall vulnerability and Mirai botnet, were not linked to the Russia-based Sandworm group. The attacks consisted of two separate waves and targeted multiple entities across Europe and the U.S., posing ongoing threats to critical…
-
Hacker spins up 1 million virtual servers to illegally mine crypto
January 13, 2024 at 09:31PM A 29-year-old Ukrainian man was arrested for orchestrating a massive cryptojacking scheme, using hacked accounts to create 1 million virtual servers and mine $2 million in cryptocurrency. Europol, in collaboration with Ukrainian authorities, tracked down the hacker, who is now facing criminal charges under the Criminal Code of Ukraine. Mitigating…
-
Critical RCE Vulnerability Uncovered in Juniper SRX Firewalls and EX Switches
January 13, 2024 at 06:54AM Juniper Networks released updates to fix a critical remote code execution vulnerability in its SRX Series firewalls and EX Series switches, tracked as CVE-2024-21591 with a CVSS score of 9.8. The flaw can allow attackers to cause Denial-of-Service or Remote Code Execution, affecting specific Junos OS versions. Juniper also resolved…
-
29-Year-Old Ukrainian Cryptojacking Kingpin Arrested for Exploiting Cloud Services
January 13, 2024 at 05:24AM A 29-year-old Ukrainian national was arrested for a “sophisticated cryptojacking scheme,” making over $2 million in illicit profits. The arrest was made in Mykolaiv with help from Europol and a cloud service provider. The suspect used compromised cloud user accounts to mine cryptocurrencies, avoiding infrastructure costs. Properties were searched for…
-
Urgent: GitLab Releases Patch for Critical Vulnerabilities – Update ASAP
January 12, 2024 at 10:42PM GitLab released security updates to address two critical vulnerabilities, CVE-2023-7028 and CVE-2023-5356. CVE-2023-7028 allows account takeover without user interaction, affecting versions 16.1 to 16.7. CVE-2023-5356 enables execution of slash commands as another user through Slack/Mattermost integrations. Users are advised to upgrade instances and enable 2FA for elevated privileges. Key takeaways…