Tag: service
-
8Base ransomware group hacked Croatia’s Port of Rijeka
by
in SecurityNewsThe 8Base ransomware group attacked Croatia’s Port of Rijeka, stealing sensitive data, including contracts and accounting info. A cyber attack hit the Port of Rijeka in Croatia, the 8Base ransomware group claimed responsibility for the security breach. The Port of Rijeka (Luka Rijeka d.d.), Croatia’s largest dry cargo concessionaire, provides maritime traffic services, port operations,…
-
Russia’s FSB used spyware against a Russian programmer
by
in SecurityNewsRussia’s FSB used spyware against a Russian programmer after detaining him for allegedly donating to Ukraine earlier this year. The Federal Security Service (FSB) used spyware to monitor a Russian programmer, Kirill Parubets, after he was detained earlier this year for allegedly donating to Ukraine. Researchers from the First Department and the Citizen Lab discovered that the…
-
Romania ‘s election systems hit by 85,000 attacks ahead of presidential vote
by
in SecurityNews
Tags: access, attack, country, credentials, cyberattack, cybercrime, data-breach, election, hacker, intelligence, russia, service, threatRomania ‘s election systems suffered over 85,000 attacks, with leaked credentials posted on a Russian hacker forum before the presidential election. Romania ‘s Intelligence Service revealed that over 85,000 cyberattacks targeted the country’s election systems. Threat actors gained access to credentials for election-related websites, and then leaked them on Russian cybercrime forums a few days…
-
Supply chain compromise of Ultralytics AI library results in trojanized versions
by
in SecurityNewsAttackers have compromised Ultralytics YOLO packages published on PyPI, the official Python package index, by compromising the build environment of the popular library for creating custom machine learning models. The malicious code deployed cryptocurrency mining malware on systems that installed the package, but the attackers could have delivered any type of malware.According to researchers from…
-
New Atrium Health data breach impacts 585,000 individuals
by
in SecurityNewsAtrium Health disclosed a data breach affecting 585,000 individuals to the HHS, potentially linked to the use of online tracking tools. Healthcare company Atrium Health disclosed a data breach that impacted 585,000 individuals. The company notified the US Department of Health and Human Services (HHS). Atrium Health launched an investigation into the security breach and…
-
AWS Uses AI for New Cyberthreat Detection Service
by
in SecurityNewsFirst seen on scworld.com Jump to article: www.scworld.com/news/aws-uses-ai-for-new-cyberthreat-detection-service
-
BlueAlpha Russian hackers caught abusing CloudFlare services
by
in SecurityNewsFirst seen on scworld.com Jump to article: www.scworld.com/news/bluealpha-russian-hackers-caught-abusing-cloudflare-services
-
Blue Yonder SaaS giant breached by Termite ransomware gang
by
in SecurityNewsThe Termite ransomware gang has officially claimed responsibility for the November breach of software as a service (SaaS) provider Blue Yonder. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/blue-yonder-saas-giant-breached-by-termite-ransomware-gang/
-
FSB Uses Trojan App to Monitor Russian Programmer Accused of Supporting Ukraine
A Russian programmer accused of donating money to Ukraine had his Android device secretly implanted with spyware by the Federal Security Service (FSB) after he was detained earlier this year.The findings come as part of a collaborative investigation by First Department and the University of Toronto’s Citizen Lab.”The spyware placed on his device allows the…
-
In Other News: Cloudflare Abuse, UK and EU Cybersecurity Reports, FBI Gen-AI Alert
by
in SecurityNewsNoteworthy stories that might have slipped under the radar: ENISA and NCSC release cybersecurity reports, abuse of Cloudflare services, FBI warns of gen-AI enabling fraud. The post In Other News: Cloudflare Abuse, UK and EU Cybersecurity Reports, FBI Gen-AI Alert appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/in-other-news-cloudflare-abuse-uk-and-eu-cybersecurity-reports-fbi-gen-ai-alert/
-
Recently Charged Scattered Spider Suspect Did Poor Job at Covering Tracks
by
in SecurityNewsA California teen suspected of being a Scattered Spider member left a long trail of evidence and even used an FBI service to launder money. The post Recently Charged Scattered Spider Suspect Did Poor Job at Covering Tracks appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/recently-charged-scattered-spider-suspect-did-poor-job-at-covering-tracks/
-
Django Security Update, Patch for DoS SQL Injection Vulnerability
by
in SecurityNewsThe Django team has issued critical security updates for versions 5.1.4, 5.0.10, and 4.2.17. These updates address two vulnerabilities: a potential denial-of-service (DoS) attack in the strip_tags() method and a high-severity SQL injection risk in Oracle databases. All developers and system administrators using affected versions are strongly encouraged to update to the newly released versions to ensure…
-
More_eggs MaaS Expands Operations with RevC2 Backdoor and Venom Loader
The threat actors behind the More_eggs malware have been linked to two new malware families, indicating an expansion of its malware-as-a-service (MaaS) operation.This includes a novel information-stealing backdoor called RevC2 and a loader codenamed Venom Loader, both of which are deployed using VenomLNK, a staple tool that serves as an initial access vector for the…
-
Provinzregierung in Kanada von Cyberangriff auf einen Dienstleister betroffen
by
in SecurityNewsCyberattack hits 3rd-party service provider that collects court fines: Manitoba Justice First seen on cbc.ca Jump to article: www.cbc.ca/news/canada/manitoba/cyberattack-manitoba-justice-department-1.7403000
-
8 biggest cybersecurity threats manufacturers face
by
in SecurityNews
Tags: access, ai, apt, attack, authentication, automation, awareness, business, china, cloud, computer, control, cyber, cyberattack, cybercrime, cybersecurity, data, data-breach, ddos, detection, email, encryption, exploit, extortion, firmware, framework, group, Hardware, india, infrastructure, intelligence, international, Internet, iot, iran, lazarus, leak, malicious, malware, monitoring, network, nis-2, north-korea, open-source, password, phishing, ransom, ransomware, regulation, risk, risk-analysis, risk-assessment, russia, service, software, strategy, supply-chain, technology, threat, update, vulnerability, windowsThe manufacturing sector’s rapid digital transformation, complex supply chains, and reliance on third-party vendors make for a challenging cyber threat environment for CISOs.Manufacturers, often prime targets for state-sponsored malicious actors and ransomware gangs, face the difficult task of maintaining cost-effective operations while modernizing their network infrastructure.”Many manufacturing systems rely on outdated technology that lacks modern…
-
Data deletion enters the ransomware chat
by
in SecurityNewsRansomware remains one of the biggest cyber threats to companies today. In a survey by security provider Cohesity, 83% of respondents said they were affected by a ransomware attack in the first half of 2024. According to security experts, there is no relief in sight for 2025 either.But according to security provider G Data, an unsettling…
-
Romania’s election systems targeted in over 85,000 cyberattacks
by
in SecurityNewsA declassified report from Romania’s Intelligence Service says that the country’s election infrastructure was targeted by more than 85,000 cyberattacks. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/romanias-election-systems-targeted-in-over-85-000-cyberattacks/
-
Government agencies urged to use encrypted messaging after Chinese Salt Typhoon hack
by
in SecurityNewsChinese hacking of US telecom networks raises questions about the exploitation by hostile hacking groups of government backdoors to provide lawful access to telecoms services First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366616972/Government-agencies-urged-to-use-encrypted-messaging-after-Chinese-Salt-Typhoon-hack
-
Russia’s ‘BlueAlpha’ APT Hides in Cloudflare Tunnels
by
in SecurityNewsCloudflare Tunnels is just the latest legitimate cloud service that cybercriminals and state-sponsored threat actors are abusing to hide their tracks. First seen on darkreading.com Jump to article: www.darkreading.com/cloud-security/russias-bluealpha-apt-cloudflare-tunnels
-
Trojan-as-a-Service Hits Euro Banks, Crypto Exchanges
At least 17 affiliate groups have used the DroidBot Android banking Trojan against 77 financial services companies across Europe, with more to come, researchers warn. First seen on darkreading.com Jump to article: www.darkreading.com/threat-intelligence/trojan-service-hits-euro-banks-crypto-exchanges
-
Channel Brief: Wipro, Netskope Team Up on Cybersecurity Advisory Services
by
in SecurityNewsFirst seen on scworld.com Jump to article: www.scworld.com/news/channel-brief-wipro-netskope-team-up-on-cybersecurity-advisory-services
-
Russian state hackers abuse Cloudflare services to spy on Ukrainian targets
First seen on therecord.media Jump to article: therecord.media/russian-state-hackers-abuse-cloudflare-tunnels-spy-on-ukraine
-
New Android spyware found on phone seized by Russian FSB
After a Russian programmer was detained by Russia’s Federal Security Service (FSB) for fifteen days and his phone confiscated, it was discovered that a new spyware was secretly installed on his device upon its return. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/new-android-spyware-found-on-phone-seized-by-russian-fsb/