Xynik January 8, 2024 at 02:33AM Summary: Meta introduces a new feature, Link History, to gather user data for targeted advertising. Security teams are addressing critical vulnerabilities in Chrome and other software, while Twitter accounts of security firms Mandiant and CertiK are hijacked for crypto scams. Additionally, a Nigerian national is awaiting extradition to the US … Read more
January 8, 2024 at 01:46AM The U.S. Department of Justice charged 19 individuals globally in connection with the xDedic Marketplace, accused of facilitating over $68 million in fraud. The transnational operation involved law enforcement cooperation from several countries. The marketplace allowed cybercriminals to buy or sell stolen credentials to over 700,000 hacked computers and servers, … Read more
January 8, 2024 at 12:09AM North Korean threat actors plundered over $600 million in cryptocurrency in 2023, amounting to almost a third of all funds stolen in crypto attacks. These financially-motivated attacks support the nation’s weapons programs, with stolen assets typically converted to hard currency. The U.S. Treasury Department’s sanctions have not halted their evolving … Read more
January 7, 2024 at 03:37PM LoanDepot, a leading nonbank mortgage lender in the USA, has been hit by a cyberattack, causing system outages and impacting customer payments and services. The company is actively addressing the incident and advising customers to use its call center for payment assistance. Concerns about data theft and phishing attacks have … Read more
January 7, 2024 at 03:37PM An ongoing campaign has been distributing the AsyncRAT malware for the past 11 months, utilizing various loader samples and domains. AsyncRAT, a Windows remote access tool, facilitates unauthorized access, data theft, and malware deployment. The attacks target specific individuals and companies, employing sophisticated techniques to avoid detection. Researchers provide detection … Read more
January 7, 2024 at 03:37PM The Kyber key encapsulation mechanism, including its official implementation CRYSTALS-Kyber, has been found vulnerable to flaws known collectively as KyberSlash, allowing the recovery of secret keys. Timing-based attacks and patches for KyberSlash1 and KyberSlash2 have been identified, affecting various projects, with efforts underway to address the issue. The impact varies … Read more
January 6, 2024 at 11:46AM Malware is exploiting an undocumented Google Chrome API to generate new authentication cookies from stolen ones. Multiple malware operations are using this technique to gain access to users’ Google accounts through the API, and Google has downplayed the severity of the issue. The company urges affected users to take precautionary … Read more
January 6, 2024 at 11:46AM Cybercriminals are exploiting X ads to promote crypto scams including fake airdrops and drainer sites, targeting those interested in cryptocurrencies. X’s advertising algorithm matches users’ interests, resulting in an increasing volume of malicious ads. Despite warnings and skepticism over X’s ad vetting, it’s reported that malicious ads have significantly grown, … Read more
January 6, 2024 at 08:30AM A ban on ransomware payments is suggested but is unlikely to work due to various reasons. Excluding critical infrastructure from the ban is essential, as not paying a ransom in these cases could risk lives. Additionally, enforcement and international cooperation present significant challenges. Instead, organizations should focus on enhancing their … Read more
January 6, 2024 at 03:33AM A cyber espionage campaign by the threat actor Sea Turtle targets telecommunication, media, internet service providers, and Kurdish websites in the Netherlands, collecting politically motivated information. Sea Turtle, documented in 2019, uses DNS hijacking and exploits known vulnerabilities, and was found to use a simple reverse TCP shell. Organizations are … Read more