Cybersecurity News

Cybersecurity News | QUICK READ

A Microsoft Exchange ProxyToken Bug May Allow Hackers to Steal User Emails

The Vulnerability Doesn’t Require Authentication to Access Emails From a Target Account.

Cybersecurity News | QUICK READ

QNAP Will Soon Release Security Patches for OpenSSL Vulnerabilities Affecting Its NAS Devices

Among Others, these Flaws Could Enable Remote Hackers to Get Access to Memory Data Without Authorization, and Trigger (DoS) Attacks.

Cybersecurity News | QUICK READ

BazaLoader Malware Hides in False DMCA and DDoS Complaints

The Hackers Use Contact Forms to Spread BazaLoader Malware which Can Cause Data Theft or Ransomware Attacks.

Cybersecurity News | QUICK READ

Boston Public Library Hit by Cyberattack

The Attack Caused a System-Wide Technical Outage.

Cybersecurity News | QUICK READ

Mastercard and Maestro PIN Bypass: a Test Made by Swiss Researchers

A Vulnerability That Would Have Allowed Hackers to Perform Transactions on the Users’ Behalf.

Cybersecurity News | QUICK READ

LokiBot Banking Trojan Uses Old Tricks to Lure Victims

A New Malware Distribution Campaign That Is Delivering the LokiBot Banking Trojan Was Recently Discovered.

Cybersecurity News | QUICK READ

Microsoft Azure Customers Warned of Critical Bug Found in Cosmos DB

Microsoft Disclosed the Vulnerability Allows Hackers to Read, Change or Completely Delete Databases.

Cybersecurity News | QUICK READ

DirtyMoe Botnet Is Back and It Has Surprises

With the New DirtyMoe Botnet Variant, Cybercriminals Now Have a Threat Profile that Can’t Be Detected or Tracked.

Cybersecurity News | QUICK READ

SideWalk Modular Backdoor Discovered in Newly Launched APT Campaigns

The APT Group SparklingGoblin Seems to Be Behind the New Backdoor.

Cybersecurity News | QUICK READ

Microsoft Notifies About an Ongoing Open Redirects Phishing Campaign

Hackers Use Legitimate Tools Related E-mail Messages to Make Users Click on Compromised Links.

Cybersecurity News | QUICK READ

Hive Ransomware: Technical Info Released by the FBI

Details Regarding Hive Ransomware’s Modus Operandi.

Cybersecurity News | QUICK READ

Kaseya Releases Patches for New Vulnerabilities Impacting Unitrends Servers

Kaseya Unitrends Customers Were Urged to Patch Servers and Apply the Recommended Mitigations.

Cybersecurity News | QUICK READ

OpenSSL Vulnerabilities Impact Various Synology Products

They Could Be Exploited for Remote Code Execution and DoS Attacks.

Cybersecurity News | QUICK READ

Ragnarok Ransomware Victims Receive Decryptor Key After the Gang Decided to Shutdown

12 Organizations Around the World Have Been Impacted by Ragnarok Ransomware Group Between July and August 2021.

Cybersecurity News | QUICK READ

US Bank Impacted By FIN8 Threat Actor with New Sardonic Backdoor

Financial, Retail, and Hospitality Organizations Are Advised to Stay Alert and Check their Systems for Familiar FIN8 IOC.

Cybersecurity News | QUICK READ

Customers in Sensitive Fields Affected by Critical F5 BIG-IP Vulnerability

The CVE-2021-23031 Flaw May Result in Complete System Compromise.

Cybersecurity News | QUICK READ

Hackers Impersonate OpenSea Employees in an Attempt to Steal Cryptocurrency Assets and NFTs

The Cryptogoods Platform Is Aware of the Attacks and Urges the Users to Only Open Support Requests via Its Help Center.

Cybersecurity News | QUICK READ

Medical Records of 12,000 Revere Health Patients Exposed in Phishing Attack

The Threat Actor Gained Access to An Employee’s Email Account for Approximately Forty-Five Minutes.

Cybersecurity News | QUICK READ

Popular WhatsApp Mod Spreads Malware on Android Devices

A Malware Called Trojan Triada Has Been Discovered in the WhatsApp Mod FMWhatsapp Along with the Advertising Software Development Kit.

Cybersecurity News | QUICK READ

Hundreds of Thousands of Devices Using Realtek SDK Targeted by Mirai Botnet

These Kinds of Flaws Are Easy to Exploit and Can Be Integrated Quickly into Existing Hacking Frameworks that Hackers Employ.

Cybersecurity News | QUICK READ

Cybercriminal Gives Back the Stolen Cryptocurrency and Receives a 500K Reward

Poly Network Recovered All Its Stolen Assets.

Cybersecurity News | QUICK READ

Iranian Threat Actor Siamesekitten Spies on Israeli Organizations

The Group Impersonated HR and Employees in An Attempt to Lure Potential Victims and Gain Access to Their Company’s Clients.

Cybersecurity News | QUICK READ

US Organizations Targeted by OnePercent Ransomware Group, FBI Says

The Threat Actor Has Been Actively Targeting US Orgs as a Ransomware Affiliate Since at Least November 2020.

Cybersecurity News | QUICK READ

UPS Phishing Campaign: Malware Is Distributed By Making Use of an XSS Flaw

The Malicious File Seems to be Downloaded from the Legitimate UPS Website, but It’s a Scam.

Cybersecurity News | QUICK READ

Nokia Branch SAC Wireless Had Suffered a Data Breach Following a Conti Ransomware Incident

SAC Wireless Disclosed that Current and Former Employees Had their Sensitive Data Stolen.

Cybersecurity News | QUICK READ

LockFile Ransomware Compromises Microsoft Exchange via ProxyShell

Hackers Encrypt Windows Domains by Making Use of Known ProxyShell Flaws.

Cybersecurity News | QUICK READ

ShadowPad Malware – A Popular Choice Among Chinese Espionage Groups

The Malware Was Dubbed the “Masterpiece of Privately Sold Malware in Chinese Espionage.”

Cybersecurity News | QUICK READ

New Evidence Shows Strong Connection Between Diavol Ransomware and TrickBot Gang

Following a New Analysis, It Has Been Found the Diavol Ransomware Sample Shares Similarities to Other Malware that Has Been Imputed to the TrickBot Operation.

Cybersecurity News | QUICK READ

Razer Synapse Vulnerability: with a Simple Mouse Plugging in, Windows System Privileges Are Achieved

The Targets Are Windows 10 and Windows 11.