Caffeine, a new Phishing-as-a-Service toolkit available in the underground
Researchers warn of a new phishing-as-a-service (PhaaS) toolkit, called Caffeine, which is being used by cybercriminals. In March 2022, Mandiant researchers...
News
Experts analyzed the evolution of the Emotet supply chain
Threat actors behind the Emotet bot are continually improving their tactics, techniques, and procedures to avoid detection. VMware researchers have...
DeepFakes Are The Cybercriminal Economy’s Latest Business Line
California-based Resecurity has identified a new spike of underground services enabling bad actors to generate deepfakes. According to cybersecurity experts,...
Toyota discloses accidental leak of some customers’ personal information
Toyota Motor Corporation discloses data leak, customers’ personal information may have been exposed after an access key was exposed on...
CVE-2022-40684 flaw in Fortinet products is being exploited in the wild
Fortinet has confirmed that the recently disclosed critical authentication bypass issue (CVE-2022-40684) is being exploited in the wild. Last week,...
Pro-Russia group KillNet targets US airports
The pro-Russia hacktivist group ‘KillNet’ is behind massive DDoS attacks that hit websites of several major airports in the US....
The head of the Federal Cyber Security Authority (BSI) faces dismissal
The German Interior Minister wants to dismiss the head of the Federal Cyber Security Authority (BSI), Arne Schoenbohm, due to...
Dark web carding site BidenCash gives 1.2M payment cards for free
BidenCash, a popular dark web carding site, released a dump of more than 1.2 million credit cards to promote its...
Harvard Business Publishing licensee hit by ransomware
Threat actors got to a database with over 152,000 customer records before its owner, the Turkish branch of Harvard Business...
Everest gang demands $200K for data stolen from South Africa state-owned electricity company ESKOM
Everest ransomware operators claimed to have hacked South Africa state-owned company ESKOM Hld SOC Ltd. In March 2022, the Everest...
Security Affairs newsletter Round 387
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for...
CommonSpirit hospital chains hit by ransomware, patients are facing problems
CommonSpirit, one of the largest hospital chains in the US, suffered a ransomware cyberattack that impacted its operations. Common Spirit,...
Lloyd’s of London investigates alleged cyber attack
Lloyd’s of London launched on Wednesday an investigating into a possible cyber attack after having detected unusual activity on its...
BlackByte Ransomware abuses vulnerable driver to bypass security solutions
The BlackByte ransomware operators are leveraging a flaw in a legitimate Windows driver to bypass security solutions. Researchers from Sophos...
Unpatched remote code execution flaw in Zimbra Collaboration Suite actively exploited
Threat actors are exploiting an unpatched severe remote code execution vulnerability in the Zimbra collaboration platform. Researchers from Rapid7 are...
TOP 10 unattributed APT mysteries
Targeted attack attribution is always a tricky thing, and in general, we believe that attribution is best left to law...
VMware fixed a high-severity bug in vCenter Server
VMware this week addressed a severe vulnerability in vCenter Server that could lead to arbitrary code execution. VMware on Thursday...
How Will the Metaverse Affect Cloud Security?
The metaverse is an immersive digital world of augmented reality. While supporting a virtual universe relies on cloud storage, questions...
Fortinet urges customers to immediately fix a critical authentication bypass flaw in FortiGate and FortiProxy
Fortinet addressed a critical authentication bypass vulnerability that impacted FortiGate firewalls and FortiProxy web proxies. Fortinet addressed a critical authentication...
Hacker stole $566 million worth of Binance Coins from Binance Bridge
Threat actors have stolen 2 million Binance Coins (BNB), worth $566 million, from the popular Binance Bridge. Hackers have reportedly...
LilithBot Malware, a new MaaS offered by the Eternity Group
Researchers linked the threat actor behind the Eternity malware-as-a-service (MaaS) to a new malware strain called LilithBot. Zscaler researchers linked a...
A look at the 2020–2022 ATM/PoS malware landscape
During the pandemic, lockdowns forced people to stay at home and do their shopping online, which was mirrored in point-of-sale...
LilithBot Malware, a new MaaS offere by the Eternity Group
Researchers linked the threat actor behind the Eternity malware-as-a-service (MaaS) to a new malware strain called LilithBot. Zscaler researchers linked a...
Watch out, a bug in Linux Kernel 5.19.12 can damage displays on Intel laptops
A bug in Linux Kernel 5.19.12 that was released at the end of September 2022 can potentially damage the displays...
