March 4, 2024 at 09:36AM Cybercriminals in India use the XHelper app to manage money mules for a large money laundering operation. The scheme exploits loopholes in Indian payment system regulations and involves Chinese payment gateways and a network of compromised mule accounts. XHelper facilitates mule management, recruitment, training, and communication, contributing to a thriving … Read more
March 4, 2024 at 08:48AM Hikvision has released patches for two vulnerabilities in its security management system HikCentral Professional. The more serious flaw, CVE-2024-25063, could lead to unauthorized access to specific URLs. The second bug, CVE-2024-25064, requires authentication to be exploited. Hikvision urges customers to apply the patches promptly, as prior vulnerabilities have been exploited. … Read more
March 4, 2024 at 08:48AM Understanding the critical data types in cybersecurity, namely traffic data, state data, event data, statistical data, and organizational data, is essential for effective defense and management. Each type serves a distinct purpose, from providing visibility into network activities to offering context and ownership information. Integrating these data types through complementary … Read more
March 4, 2024 at 04:37AM Operation Cronos, a multinational effort to dismantle ransomware gang LockBit, surprises with a humorous twist as law enforcement tampered with the gang’s website. Despite the takedown, LockBit reappeared, raising concerns about the resilience of criminal organizations and the challenges of combating them, especially in the context of cryptocurrency. This event … Read more
March 4, 2024 at 03:58AM The Trend Micro threat hunting team recently discovered an RA World ransomware attack using multistage components to ensure maximum impact. The group has successfully breached organizations globally, with a focus on healthcare and financial sectors. The attack involves complex stages, including initial access, privilege escalation, lateral movement, persistence, defense evasion, … Read more
March 4, 2024 at 12:36AM U.S. cybersecurity agencies have issued warnings about Phobos ransomware targeting government and critical infrastructure entities. The ransomware, operated as a service model, has targeted various sectors and has earned millions in ransom. The attackers use various tactics and have been actively targeting entities since May 2019, posing a significant ongoing … Read more
March 3, 2024 at 10:20PM LockBit ransomware gang continues operations despite law enforcement takedown, claiming to possess sensitive data. Analyst suggests gang’s posturing to reassure affiliates, while CISA warns Ivanti vulnerabilities could persist even after factory resets. Security researchers raise concerns about potential cloud-based SAML token forgery vulnerability, advising organizations to safeguard certificates against potential … Read more
March 3, 2024 at 08:23PM The U.S. faces escalating foreign threats to election integrity, as FBI director Christopher Wray warned of adversaries utilizing new technology. Senator Mark Warner expressed concerns about foreign and domestic interference, cyber-attacks, misinformation, and AI-generated deepfakes impacting the 2024 elections. Experts emphasize the need for vigilance against disinformation and the challenges … Read more
March 3, 2024 at 08:54AM LockBit hackers disrupted government services in Georgia’s Fulton County by shutting down phone lines and threatening to release stolen data unless officials paid ransom. Despite law enforcement’s efforts to disrupt LockBit, the county is still working to restore services. The cyberattack did not affect the criminal case against former President … Read more
March 2, 2024 at 07:48AM Massachusetts Air National Guard member Jack Teixeira is expected to plead guilty to leaking highly classified military documents on a social media platform. He had previously pleaded not guilty to six counts of willful retention and transmission of national defense information. He was detected searching for “leak” in a classified … Read more