September 9, 2024 at 04:22PM US officials are reportedly concerned about heightened Russian naval activity near undersea cables, potentially driven by a secretive military unit called GUGI. The cables carry over 95% of international data and also electricity between European countries, making them vulnerable to cyber and physical attacks. The US is closely monitoring the … Read more
September 6, 2024 at 04:06PM Russia-based attackers injected data-stealing JavaScript into Cisco’s online store, exploiting an Adobe Magento flaw. Cisco has fixed the issue and addressed the security concern, assuring that only a limited number of users were affected and no credentials were compromised. The attackers exploited a critical vulnerability, and the malicious JS code … Read more
September 5, 2024 at 02:03PM The United States and its allies have linked Russian military intelligence hackers to Unit 29155 of Russia’s Main Directorate of the General Staff of the Armed Forces. The hackers have been carrying out sabotage and cyberattacks in Europe and North America since 2020. The U.S. State Department announced a reward … Read more
September 3, 2024 at 09:54AM Head Mare, a hacktivist group active since 2023, targets organizations in Russia and Belarus using advanced methods. Exploiting a recent WinRAR vulnerability, the group conceals and delivers malicious payloads effectively. It employs ransomware like LockBit and Babuk, with tools such as PhantomDL and PhantomCore, and is linked to the Russo-Ukrainian … Read more
August 30, 2024 at 12:31AM Iranian government-backed actors were reportedly using fake recruiting websites and social media accounts to target Farsi speakers suspected of collaborating with Iran’s enemies, including Israel. Google’s Mandiant team uncovered the operation, linking it to Iran’s regime and cyber unit APT42. The campaign’s purpose was to gather personal information and potentially … Read more
August 29, 2024 at 12:24PM A non-profit supporting Vietnamese human rights has been targeted by a multi-year cyber espionage campaign attributed to APT32. The group uses various malware delivery methods, including spear-phishing and watering hole attacks. The intrusion has resulted in the compromise of several hosts and the theft of sensitive information, with a focus … Read more
August 29, 2024 at 11:49AM The Corona Mirai-based malware botnet is exploiting a 5-year-old remote code execution zero-day vulnerability in AVTECH IP cameras, impacting models no longer supported by the vendor. The flaw has a high-severity score and allows unauthenticated attackers to inject commands, potentially leading to distributed denial of service (DDoS) attacks. Users are … Read more
August 27, 2024 at 05:13PM Netwrix released findings from a survey on cybersecurity in the education sector. The study shows a 77% increase in cyberattacks from 2023, with common vectors being phishing and ransomware. Nearly half of organizations faced unplanned expenses due to security breaches, with some also incurring compliance fines and leadership changes. Remediation … Read more
August 27, 2024 at 01:38PM China’s Volt Typhoon exploited a critical bug affecting Versa’s SD-WAN customers using Versa Director, planting custom web shells to harvest credentials on networks. Lumen Technologies linked this to the new malware, VersaMem. Versa has issued a patch and recommends customers to upgrade, but the vulnerability was already exploited, attributed to … Read more
August 25, 2024 at 11:36PM Cyberattacks on critical infrastructure sectors are on the rise in India, with a significant increase in incidents against finance and government systems. The banking and financial sectors consider cybersecurity a top challenge, with concerns about financial stability, data breaches, and the speed of information flow. India is urged to strengthen … Read more