Category: Attack Feeds

– [[{“value”:” Top federal security and IT officials recently met to discuss 2025 cyber policy priorities, setting an emphasis on sustaining zero trust, building up awareness of threats against agency systems, securing the cloud and getting ready for post-quantum cryptography, the interim Federal Chief Information Security Officer said Wednesday. At that joint federal Chief Information Officers Council and Federal CISO...

– [[{“value”:” The FBI is seeing progress in the fight against ransomware gangs after conducting more than 30 disruption operations this year in which officials targeted the infrastructure used by those groups, one of the bureau’s top cybersecurity officials said Wednesday. Cynthia Kaiser, deputy assistant director of the FBI’s cyber division, said during CyberScoop’s CyberTalks event that disruption operations against...

– [[{“value”:” As federal agencies race to hit a White House deadline to submit updated zero-trust implementation plans next week, a top Cybersecurity and Infrastructure Security Agency official said she’s seen promising data leading up to that “inflection point.” Speaking Wednesday at CyberScoop’s CyberTalks event in Washington, D.C., Shelly Hartsook, acting associate director of CISA’s Cybersecurity Division, said more details...

– [[{“value”:” A White House official warned federal agencies Wednesday not to wait until their new post-quantum encryption algorithms are deployed in production to test them. Agencies have been slowly working to integrate into federal IT systems new encryption algorithms that can defend against future hacks from quantum computers, but the White House wants to make sure the new protections...

– A new, more sophisticated variant of the FakeCall malware is targeting Android devices. Learn about the advanced features…  – Read More  – Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News 

– [[{“value”:”Threat actors in North Korea have been implicated in a recent incident that deployed a known ransomware family called Play, underscoring their financial motivations. The activity, observed between May and September 2024, has been attributed to a threat actor tracked as Jumpy Pisces, which is also known as Andariel, APT45, DarkSeoul, Nickel Hyatt, Onyx Sleet (formerly Plutonium), Operation Troy,”}]] ...

– [[{“value”:” Last month, Apple sought to drop its lawsuit against spyware industry leader NSO Group, citing a number of difficulties with advancing the case. This month, WhatsApp parent company Meta asked a judge to punish the same company for not complying with orders to hand over its source code. And for years, many victims have failed to get courts...

– Atlanta, Georgia, 30th October 2024, CyberNewsWire  – Read More  – Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News 

– [[{“value”:”Cybersecurity researchers have uncovered an ongoing malvertising campaign that abuses Meta’s advertising platform and hijacked Facebook accounts to distribute information known as SYS01stealer. “The hackers behind the campaign use trusted brands to expand their reach,” Bitdefender Labs said in a report shared with The Hacker News. “The malvertising campaign leverages nearly a hundred malicious”}]]  – Read More  – The...

– [[{“value”:”A now-patched security flaw in the Opera web browser could have enabled a malicious extension to gain unauthorized, full access to private APIs. The attack, codenamed CrossBarking, could have made it possible to conduct actions such as capturing screenshots, modifying browser settings, and account hijacking, Guardio Labs said. To demonstrate the issue, the company said it managed to publish...

– [[{“value”:” Change Healthcare says it has notified approximately 100 million Americans that their personal, financial and healthcare records may have been stolen in a February 2024 ransomware attack that caused the largest ever known data breach of protected health information. Image: Tamer Tuncay, Shutterstock.com. A ransomware attack at Change Healthcare in the third week of February quickly spawned disruptions...

– [[{“value”:” More than 15,000 stolen cloud service credentials were discovered in an open Amazon Web Services bucket by the cybersecurity firm Sysdig. In a report released Wednesday, Sysdig researchers revealed that a global operation called EMERALDWHALE stole credentials belonging to cloud service and email providers, as well as other services, by targeting exposed git configurations. The credentials, which researchers...

– [[{“value”:” A deluge of cyberattacks on federal agencies, and the complexity of the challenges they face, makes it hard for them to advance new approaches to defending their networks, National Cyber Director Harry Coker Jr. said Wednesday. Speaking at CyberTalks, hosted by CyberScoop, Coker said that’s why his White House office focuses on strategy and policy to tackle complex...

– [[{“value”:”Navigating the complexities of compliance frameworks like ISO 27001, SOC 2, or GDPR can be daunting. Luckily, Intruder simplifies the process by helping you address the key vulnerability management criteria these frameworks demand, making your compliance journey much smoother. Read on to understand how to meet the requirements of each framework to keep your customer data safe. How Intruder”}]] ...

– [[{“value”:”Cybersecurity researchers have discovered a new malicious Python package that masquerades as a cryptocurrency trading tool but harbors functionality designed to steal sensitive data and drain assets from victims’ crypto wallets. The package, named “CryptoAITools,” is said to have been distributed via both Python Package Index (PyPI) and bogus GitHub repositories. It was downloaded over 1,300″}]]  – Read More ...

– [[{“value”:” The United States has charged a Russian national for his alleged role in developing infostealer malware, according to an unsealed criminal complaint from the Western District of Texas. According to the documents, Maxim Rudometov is one of the developers and administrators of RedLine, one of the most prevalent infostealers used by cybercriminals. Rudometov regularly accessed and managed RedLine,...

– An international law enforcement operation, led by the United States, Europol, and the Netherlands, has successfully dismantled the…  – Read More  – Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News 

– Russian hackers launched a targeted malware campaign via Telegram, aimed at Ukrainian military recruits. Disguised as recruitment tools,…  – Read More  – Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News 

– [[{“value”:” A Democratic Senator is pressing Meta to continue partnering with independent researchers to study the impact of their platforms on the 2024 elections. In a letter sent Tuesday to Meta CEO Mark Zuckerberg, Sen. Ed Markey, D-Mass., praised the company’s U.S. 2020 Facebook and Instagram Election Study, which opened up Meta’s platform and algorithm to study by outside...

– [[{“value”:”In episode 22 of “The AI Fix”, our hosts encounter a bowl of buttermilk king crab ice cream prepared by a baby hippo, a TV station finds an even better way to generate programme ideas than using a tank full of manatees, and Elon Musk does the world’s most expensive Blade Runner cosplay. Graham discovers a robot tongue and...

– [[{“value”:”A little over three dozen security vulnerabilities have been disclosed in various open-source artificial intelligence (AI) and machine learning (ML) models, some of which could lead to remote code execution and information theft. The flaws, identified in tools like ChuanhuChatGPT, Lunary, and LocalAI, have been reported as part of Protect AI’s Huntr bug bounty platform. The most severe of...

– Custom generative AI solutions have the potential to transform industries, equipping businesses to reach their goals with exceptional…  – Read More  – Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News 

– [[{“value”:”One of the largest internet providers in France, Free S.A.S, has confirmed that it recently suffered a cybersecurity breach after a hacker attempted to sell what purported to be stolen data from the organisation on the dark web. Read more in my article on the Hot for Security blog.”}]]  – Read More  – Graham Cluley 

– [[{“value”:” When a hospital in Wichita, Kansas, faced dangerous disruptions to patient care in May, it was not due to the challenges one might expect, such as hospital-acquired infections or staffing shortages. Ascension Via Christi St. Joseph experienced a cyberattack. Unfortunately, this hospital was not alone. In February, cybercriminals hacked Change Healthcare, a subsidiary of UnitedHealth — one of...

– [[{“value”:”The Dutch National Police, along with international partners, have announced the disruption of the infrastructure powering two information stealers tracked as RedLine and MetaStealer. The takedown, which took place on October 28, 2024, is the result of an international law enforcement task force codenamed Operation Magnus that involved authorities from the U.S., the U.K., Belgium, Portugal, and”}]]  – Read...

– [[{“value”:”Sherlock Holmes is famous for his incredible ability to sort through mounds of information; he removes the irrelevant and exposes the hidden truth. His philosophy is plain yet brilliant: “When you have eliminated the impossible, whatever remains, however improbable, must be the truth.” Rather than following every lead, Holmes focuses on the details that are needed to move him...

– [[{“value”:”The U.S. government (USG) has issued new guidance governing the use of the Traffic Light Protocol (TLP) to handle the threat intelligence information shared between the private sector, individual researchers, and Federal Departments and Agencies. “The USG follows TLP markings on cybersecurity information voluntarily shared by an individual, company, or other any organization, when not in”}]]  – Read More ...

– [[{“value”:”More than six years after the Spectre security flaw impacting modern CPU processors came to light, new research has found that the latest AMD and Intel processors are still susceptible to speculative execution attacks. The attack, disclosed by ETH Zürich researchers Johannes Wikner and Kaveh Razavi, aims to undermine the Indirect Branch Predictor Barrier (IBPB) on x86 chips, a...

– Apple unveils ‘Apple Intelligence’ for iPhone, iPad, and Mac devices while offering a $1 million bug bounty for…  – Read More  – Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News 

– [[{“value”:” HERSHEY, Pa. — A year-and-a-half after launching its global secure-by-design initiative, the Cybersecurity and Infrastructure Security Agency is “thrilled” by the progress it’s made in getting vendors on board and now turning its focus to a new program aimed at drawing more attention to especially risky software-building practices. Rina Rakipi, who leads strategic partnerships and vulnerability program development...

– Four members of the notorious REvil ransomware group have been sentenced to prison terms in Russia. This development…  – Read More  – Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News 

– Cary, NC, 28th October 2024, CyberNewsWire  – Read More  – Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News 

– [[{“value”:”A government entity and a religious organization in Taiwan were the target of a China-linked threat actor known as Evasive Panda that infected them with a previously undocumented post-compromise toolset codenamed CloudScout. “The CloudScout toolset is capable of retrieving data from various cloud services by leveraging stolen web session cookies,” ESET security researcher Anh Ho said. “Through”}]]  – Read...

– [[{“value”:” The Dutch National Police, the FBI, and a coalition of international law enforcement agencies disrupted two infostealer operations and gained “full access” to the criminals back-end infrastructure. A website announcing the operation, posted Monday, showcases the latest effort by international authorities to disrupt cybercriminal infrastructure. “On the 28th of October 2024 the Dutch National Police, working in close...

– [[{“value”:”Three malicious packages published to the npm registry in September 2024 have been found to contain a known malware called BeaverTail, a JavaScript downloader and information stealer linked to an ongoing North Korean campaign tracked as Contagious Interview. The Datadog Security Research team is monitoring the activity under the name Tenacious Pungsan, which is also known by the monikers”}]] ...

– [[{“value”:”A suspected Russian hybrid espionage and influence operation has been observed delivering a mix of Windows and Android malware to target the Ukrainian military under the Telegram persona Civil Defense. Google’s Threat Analysis Group (TAG) and Mandiant are tracking the activity under the name UNC5812. The threat group, which operates a Telegram channel named civildefense_com_ua, was created on”}]]  –...

– [[{“value”:”Cybersecurity news can sometimes feel like a never-ending horror movie, can’t it? Just when you think the villains are locked up, a new threat emerges from the shadows. This week is no exception, with tales of exploited flaws, international espionage, and AI shenanigans that could make your head spin. But don’t worry, we’re here to break it all down...

– This article details a new campaign by TeamTNT, a notorious hacking group, leveraging exposed Docker daemons to deploy…  – Read More  – Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News 

– [[{“value”:” A suspected Russian group is targeting potential Ukrainian military recruits in an espionage campaign that’s running concurrently with an influence operation designed to undermine Ukraine’s broader military mobilization, according to research published Monday. The hybrid campaign apparently looks to capitalize on fears about a Ukrainian mobilization law that went into effect this year that lowered the minimum conscription...

– [[{“value”:” Scoop News Group is delighted to present the outstanding recipients of the 2024 CyberScoop 50 Awards. These prestigious accolades recognize the exceptional achievements of cybersecurity leaders who safeguard our essential networks, data, and infrastructure while pioneering innovation in this critical field. This year, voters from across the nation spent three months nominating and selecting leaders who have exhibited...

– [[{“value”:”Operational Technology (OT) security has affected marine vessel and port operators, since both ships and industrial cranes are being digitalized and automated at a rapid pace, ushering in new types of security challenges. Ships come to shore every six months on average. Container cranes are mostly automated. Diagnostics, maintenance, upgrade and adjustments to these critical systems are done”}]]  –...

– [[{“value”:”Cybersecurity researchers have warned of a spike in phishing pages created using a website builder tool called Webflow, as threat actors continue to abuse legitimate services like Cloudflare and Microsoft Sway to their advantage. “The campaigns target sensitive information from different crypto wallets, including Coinbase, MetaMask, Phantom, Trezor, and Bitbuy, as well as login credentials for”}]]  – Read More ...

– [[{“value”:”A new attack technique could be used to bypass Microsoft’s Driver Signature Enforcement (DSE) on fully patched Windows systems, leading to operating system (OS) downgrade attacks. “This bypass allows loading unsigned kernel drivers, enabling attackers to deploy custom rootkits that can neutralize security controls, hide processes and network activity, maintain stealth, and much more,” SafeBreach”}]]  – Read More  –...

– SafeBreach Labs unveils ‘Windows Downdate,’ a new attack method which compromises Windows 11 by downgrading system components, and…  – Read More  – Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News 

– [[{“value”:”Four members of the now-defunct REvil ransomware operation have been sentenced to several years in prison in Russia, marking one of the rare instances where cybercriminals from the country have been convicted of hacking and money laundering charges. Russian news publication Kommersant reported that a court in St. Petersburg found Artem Zaets, Alexei Malozemov, Daniil Puzyrevsky, and Ruslan”}]]  –...

– [[{“value”:”The infamous cryptojacking group known as TeamTNT appears to be readying for a new large-scale campaign targeting cloud-native environments for mining cryptocurrencies and renting out breached servers to third-parties. “The group is currently targeting exposed Docker daemons to deploy Sliver malware, a cyber worm, and cryptominers, using compromised servers and Docker Hub as the infrastructure”}]]  – Read More  –...

– [[{“value”:”The Computer Emergency Response Team of Ukraine (CERT-UA) has detailed a new malicious email campaign targeting government agencies, enterprises, and military entities. “The messages exploit the appeal of integrating popular services like Amazon or Microsoft and implementing a zero-trust architecture,” CERT-UA said. “These emails contain attachments in the form of Remote Desktop Protocol (‘.rdp’”}]]  – Read More  – The...

– [[{“value”:” Federal authorities say they are investigating “unauthorized access to telecommunications commercial infrastructure” from Chinese hackers as news reports allege that the hackers may have used that access to target the phones and data of Republican presidential candidate Donald Trump and vice-presidential candidate J.D. Vance. In a joint statement released Friday, the FBI and the Cybersecurity and Infrastructure Security...

– [[{“value”:” An elections office in key presidential swing state Pennsylvania said a video circulating online this week purporting to depict the destruction of valid ballots is  fake, and a prominent disinformation researcher claims a Russian influence actor is behind the effort. The video appeared on X and other social media sites this week showing an unidentified individual opening envelopes...