Pro-Palestinian group GhostSec hacked Berghof PLCs in Israel
The hacktivist collective GhostSec claimed to have compromised 55 Berghof PLCs used by Israeli organizations. Pro-Palestinian Hacking Group GhostSec claimed to have...
News
Security Breaks: TeamTNT’s DockerHub Credentials Leak
One of our honeypots based on exposed Docker REST APIs showed cybercriminal group TeamTNT’s potential attack scenario and leak of...
US-CERT Bulletin (SB22-255):Vulnerability Summary for the Week of September 5, 2022
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards...
Apple fixed the eighth actively exploited zero-day this year
Apple has addressed the eighth zero-day vulnerability that is actively exploited in attacks against iPhones and Macs since January. Apple...
Google announced the completion of the acquisition of Mandiant for $5.4 billion
Google completed the acquisition of the threat intelligence firm Mandiant, the IT giant will pay $5.4 billion. Google announced the...
Cisco confirms that data leaked by the Yanluowang ransomware gang were stolen from its systems
Cisco confirmed the May attack and that the data leaked by the Yanluowang ransomware group was stolen from its systems....
Some firmware bugs in HP business devices are yet to be fixed
Six high-severity firmware bugs affecting several HP Enterprise devices are yet to be patched, some of them since July 2021....
Albania was hit by a new cyberattack and blames Iran
Albania blamed Iran for a new cyberattack that hit computer systems used by the state police on Friday. Albania blamed...
Security Affairs newsletter Round 383
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for...
Iran-linked APT42 is behind over 30 espionage attacks
Iran-linked APT42 (formerly UNC788) is suspected to be the actor behind over 30 cyber espionage attacks against activists and dissidents....
IHG suffered a cyberattack that severely impacted its booking process
InterContinental Hotels Group PLC (IHG) discloses a security breach, parts of its IT infrastructure has been subject to unauthorised activity...
China-Linked BRONZE PRESIDENT APT targets Government officials worldwide
China-linked BRONZE PRESIDENT group is targeting government officials in Europe, the Middle East, and South America with PlugX malware. Secureworks...
Scammers live-streamed on YouTube a fake Apple crypto event
Scammers live-streamed on YouTube an old interview with Tim Cook as part of a fake Apple crypto event, and tens...
US Treasury sanctioned Iran ’s Ministry of Intelligence over Albania cyberattack
The U.S. Treasury Department sanctioned Iran ‘s Ministry of Intelligence and Security (MOIS) and its Minister of Intelligence over the...
$30 Million worth of cryptocurrency stolen by Lazarus from Axie Infinity was recovered
US authorities recovered more than $30 million worth of cryptocurrency stolen by the North Korea-linked Lazarus APT from Axie Infinity....
Experts warn of attacks exploiting zero-day in WordPress BackupBuddy plugin
Threat actors are exploiting a zero-day vulnerability in a WordPress plugin called BackupBuddy, Wordfence researchers warned. On September 6, 2022, the...
Iran-linked DEV-0270 group abuses BitLocker to encrypt victims’ devices
Iran-linked APT group DEV-0270 (aka Nemesis Kitten) is abusing the BitLocker Windows feature to encrypt victims’ devices. Microsoft Security Threat...
Threat landscape for industrial automation systems for H1 2022
H1 2022 in numbers Geography In H1 2022, malicious objects were blocked at least once on 31.8% of ICS computers...
CISA adds 12 new flaws to its Known Exploited Vulnerabilities Catalog
CISA added 12 more security flaws to its Known Exploited Vulnerabilities Catalog including four D-Link vulnerabilities. The U.S. Cybersecurity and Infrastructure...
CIEM vs CWPP vs CSPM
This article will explore three solutions, CIEM, CWPP, and CSPM, detail a sample case for each, and help you to...
Biden Cybersecurity Executive Order: Ex-USSS Reflects
Ed Cabrera, former CISO of the US Secret Service and current Chief Cybersecurity Officer for Trend Micro, reflects on the...
How Malicious Actors Abuse Native Linux Tools in Attacks
Through our honeypots and telemetry, we were able to observe instances in which malicious actors abused native Linux tools to...
US-CERT Bulletin (SB22-249):Vulnerability Summary for the Week of August 29, 2022
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards...
Classified NATO documents sold on darkweb after they were stolen from Portugal
Threat actors claimed to have stolen classified NATO documents from the Armed Forces General Staff agency of Portugal (EMGFA). After...
