October 23, 2023 at 09:08AM Microsoft is launching the early access program for Security Copilot, an AI cybersecurity tool embedded in the Microsoft 365 Defender XDR platform. The tool aims to save time for security teams by providing step-by-step instructions on managing incidents and offering insights to upskill existing staff. It can generate natural language … Read more
October 23, 2023 at 04:35AM The District of Columbia Board of Elections (DCBOE) announced that a web server operated by DataNet Systems, a hosting provider, was breached, potentially exposing the personal information of registered voters, including driver’s license numbers, birthdates, social security numbers, and contact information. The DCBOE is investigating the breach with the help … Read more
October 22, 2023 at 01:42PM The number of Cisco IOS XE devices hacked with a malicious backdoor implant has dramatically decreased from over 50,000 to only a few hundred. It is unclear why this decline has occurred, with researchers speculating that the threat actors may have deployed an update to hide their presence or a … Read more
October 21, 2023 at 12:41PM Trigona ransomware suffered a data breach after Ukrainian hacktivists exploited a vulnerability in their server. The hackers breached several sites, taking data and defacing the Tor negotiation and data leak sites. Similarly, law enforcement disrupted the RagnarLocker ransomware operation, seizing the group’s dark websites and arresting a malware developer. In … Read more
October 21, 2023 at 10:21AM Europol has successfully taken down the infrastructure associated with the Ragnar Locker ransomware and arrested a key suspect in France. Searches were conducted in Czechia, Spain, and Latvia, resulting in the arrest of the main perpetrator. Five other accomplices were interviewed, and servers and data leak portals were seized in … Read more
October 20, 2023 at 05:48PM Hackers breached Okta’s support case management system and accessed sensitive data that can be used for identity impersonation. The stolen data includes cookies and session tokens, which can be used for further attacks. Okta has taken steps to protect its customers, but recommends sanitizing credentials and tokens before sharing them. … Read more
October 20, 2023 at 02:18PM DarkGate, a remote access trojan (RAT), has been linked to the Vietnamese financial cybercrime operation behind the Ducktail infostealer. Researchers have found similarities in the lure documents and targeting used by both malware. DarkGate is a multifunctional malware that can steal information, distribute malware, and mine cryptocurrency. Understanding connections between … Read more
October 20, 2023 at 11:24AM Law enforcement agencies from multiple countries have seized the dark web site used by the RagnarLocker ransomware group to shame victims. Operating since 2020, the group targeted 52 entities across critical infrastructure sectors. Unlike other ransomware operations, RagnarLocker was not advertised as a service but operated by a private group. … Read more
October 20, 2023 at 08:50AM LinkedIn users are being targeted by a threat actor spreading malware through fake job posts at Corsair. The cybercriminal group responsible for the attacks, believed to be Vietnamese, is linked to previous campaigns targeting Facebook business accounts. The malware, including DarkGate and RedLine, is distributed through malicious files downloaded from … Read more
October 20, 2023 at 07:57AM The Internet of Things (IoT) is revolutionizing business operations worldwide, but its full potential can only be realized with strong cyber security. IoT adoption faces challenges like security concerns, privacy issues, interoperability, and lack of standards. Addressing these factors and integrating cyber security into IoT design and development can unlock … Read more