January 24, 2024 at 05:06AM The US, UK, and Australia have sanctioned Russian national Alexander Ermakov for his alleged involvement in the 2022 ransomware attack on Australia’s Medibank. Ermakov was linked to the cyberattack and targeted for the first time under Australian cyber sanction powers. The US and UK followed suit, imposing similar sanctions in … Read more
January 22, 2024 at 08:45AM Security researchers detect exploitation attempts for the critical CVE-2023-22527 vulnerability affecting older Atlassian Confluence servers, potentially exposing them to remote code execution. Atlassian provides fixes for affected versions and reports multiple attempts to exploit the flaw, mainly from Russian IP addresses. Server administrators are advised to update to a secure … Read more
January 19, 2024 at 03:28PM Many Payoneer users in Argentina woke up to find their 2FA-protected accounts hacked, with funds stolen after receiving SMS OTP codes while sleeping. Suspected hacking methods include a potential Movistar data leak or a breached SMS provider. Payoneer has not provided specific answers but acknowledged the fraud and advised users … Read more
January 17, 2024 at 10:10AM The Border0 security researchers have identified a malicious extortion bot targeting publicly exposed PostgreSQL and MySQL databases with weak passwords. This bot autonomously wipes out vulnerable databases and leaves a ransom note, claiming to back up the data when in reality it only saves a small portion. It has managed … Read more
January 10, 2024 at 01:59PM Ivanti has disclosed two zero-day vulnerabilities in its Connect Secure (ICS) and Policy Secure products. The CVE-2023-46805 flaw bypasses authentication, while CVE-2024-21887 allows arbitrary command execution. Chaining the two enables attackers to run commands without authentication. Ivanti is working on patches, with mitigation available until then. The company reports limited … Read more
January 3, 2024 at 05:52PM Today, Mandiant’s Twitter account was hijacked by threat actors, who impersonated the Phantom crypto wallet and shared a fraudulent cryptocurrency scam. Mandiant is aware of the incident and is working to resolve it. The attackers rebranded the account and promoted a fake website, posing a phishing threat. The original Mandiant … Read more
January 2, 2024 at 12:33PM Xerox Business Solutions (XBS) U.S. division was hacked, with limited personal information possibly exposed. Xerox Corporation is working with cybersecurity experts to investigate and secure the IT environment. The attack has not affected operations, but sensitive data may have been stolen. Xerox assures it will notify affected individuals. This follows … Read more
December 28, 2023 at 10:54AM Kaspersky’s GReAT team uncovered a hidden iPhone feature, exploited through CVE-2023-38606, allowing attackers to evade memory protection. The issue affected iPhones on iOS up to 16.6 and may have been for testing or debugging. The team’s thorough analysis revealed a sophisticated attack vector, demonstrating how even advanced hardware protection can … Read more
December 27, 2023 at 05:17PM The Ohio Lottery experienced a cyberattack on Christmas Eve, disrupting some internal applications. Services are being restored, but mobile cashing above $599 and some winning numbers are unavailable. The lottery advises customers to check numbers at retailers, and smaller prizes can be cashed at retailers, while larger prizes require mailing … Read more
December 22, 2023 at 06:45AM The Donald W. Wyatt Detention Facility in Rhode Island experienced a data breach affecting around 2,000 inmates, staff, and vendors. The breach, which occurred in November, involved malware and data theft, compromising personal details like financial info, medical records, and Social Security numbers. The facility is providing affected individuals with … Read more