Recent Security News
-
Orange Spain Faces BGP Traffic Hijack After RIPE Account Hacked by Malware
January 5, 2024 at 05:27AM On January 3, Orange Spain experienced an internet outage due to a threat actor using stolen admin credentials to manipulate BGP traffic. Personal data was not compromised, but browsing services were affected. The incident was linked to an employee’s system infiltration by Raccoon Stealer malware. Security flaws in RIPE’s system…
-
Alert: Ivanti Releases Patch for Critical Vulnerability in Endpoint Manager Solution
January 5, 2024 at 03:27AM Ivanti has issued security updates for a critical flaw in its Endpoint Manager solution, posing a remote code execution risk. The vulnerability, rated 9.6 on the CVSS scale, affects EPM 2021 and 2022 prior to SU5. Ivanti also addressed multiple security flaws in its Avalanche enterprise mobile device management solution,…
-
Russian Hackers Had Covert Access to Ukraine’s Telecom Giant for Months
January 5, 2024 at 03:27AM Ukrainian authorities reported a cyber attack by the Russian state-sponsored group Sandworm, which breached telecom operator Kyivstar’s systems, leading to service disruption for millions. A Russia-linked hacking group, Solntsepyok, claimed responsibility. The attack wiped out data from thousands of servers, and the Security Service of Ukraine suspects the attackers had…
-
Sandworm’s Kyivstar attack should serve as a reminder of the Kremlin crew’s ‘global reach’
January 5, 2024 at 02:36AM Sandworm crew, linked to Russia, launched a sophisticated cyber attack on Kyivstar, Ukraine’s telco giant, causing disruption to 24 million users’ mobile and internet services. The attack resulted in damage to infrastructure, air raid alert systems, and banking services. Experts believe this attack highlights the potential impact of cyber warfare…
-
New Bandook RAT Variant Resurfaces, Targeting Windows Machines
January 5, 2024 at 01:27AM A new variant of the Bandook trojan is being spread through phishing attacks, targeting Windows machines. The malware is distributed via a PDF file embedding a link to a password-protected .7z archive. After extraction, the malware injects its payload into msinfo32.exe. This off-the-shelf malware can remotely control infected systems and…