If you’re holding important data, Iran is probably trying spearphish it

September 30, 2024 at 09:37AM US and UK security agencies are warning about ongoing Iranian spearphishing campaigns targeting high-value individuals, including government officials and journalists. The attackers use social engineering to harvest credentials and access sensitive data. The advisory provides indicators of compromise and urges vigilance against unsolicited offers. Recent indictments also highlight Iranian cyber … Read more

North Korean Hackers Moonstone Sleet Push Malicious JS Packages to npm Registry

August 6, 2024 at 08:06AM North Korean threat actor Moonstone Sleet is distributing malicious npm packages to infect Windows systems. Security researchers are tracking the threat actor, which is linked to a newly discovered North Korean malicious activity cluster. The actor’s attack chains involve bogus ZIP archives and fake technical skills assessments to deliver malicious … Read more

TeamViewer’s corporate network was breached in alleged APT hack

June 27, 2024 at 02:35PM TeamViewer disclosed a breach in its corporate IT environment due to an APT hacking group. They are working with global cybersecurity experts to investigate and address the irregularity. Although there’s no evidence of product or customer data compromise, the breach raises concerns due to TeamViewer’s extensive use in consumer and … Read more

Targeted F5 Vulnerability ‘Update’ Delivers Wiper to Israeli Victims

December 20, 2023 at 10:10AM The Israel National Cyber Directorate issued an urgent warning about a targeted email campaign impersonating F5 Networks, delivering dangerous wiper malware. The attacker capitalized on a critical F5 BIG-IP vulnerability, sending emails from “[email protected]” with an attached file named “update.zip.” The malware can delete F5 servers but cannot spread laterally. … Read more

MongoDB confirms customer data was exposed in a cyberattack

December 16, 2023 at 05:41PM MongoDB experienced a cyberattack that breached its corporate systems and exposed customer data. The attack was detected by the company, and an investigation is ongoing. Although customer account metadata and contact information were compromised, data stored in MongoDB Atlas remains secure. The company urges customers to take security measures and … Read more