RansomEXX gang claims to have hacked Ferrari and leaked online internal documents
The Italian luxury sports car manufacturer Ferrari confirmed the availability of internal documents online, but said it has no evidence...
News
Finnish intelligence warns of Russia’s cyberespionage activities
The Finnish Security Intelligence Service (SUPO) warns Russia will highly likely intensify its cyber activity over the winter. The Finnish...
Reflected XSS bugs in Canon Medical ’s Vitrea View could expose patient info
Trustwave researchers discovered two XSS flaws in Canon Medical ’s Vitrea View tool that could expose patient information. During a...
BlackCat ransomware gang claims to have hacked US defense contractor NJVC
Another US defense contractor suffered a data breach, the BlackCat ransomware gang claims to have hacked NJVC. The ALPHV/BlackCat ransomware...
Security Affairs newsletter Round 386
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for...
German police identified a gang that stole €4 million via phishing attacks
German police arrested one individual suspected of having stolen €4 million from users via large-scale phishing campaigns. Germany’s Bundeskriminalamt (BKA)...
Common Cloud-Native Security Misconfigurations & Fixes
Cloud configuration errors are a major concern for modern DevOps teams, introducing a new attack surface with numerous potential points...
CISA adds Atlassian Bitbucket Server flaw to its Known Exploited Vulnerabilities Catalog
CISA added a recently disclosed flaw in Atlassian Bitbucket Server, tracked as CVE-2022-36804, to its Known Exploited Vulnerabilities Catalog. The U.S....
Guacamaya hacktivists stole sensitive data from Mexico and Latin American countries
A hacker group called Guacamaya stole classified government information from multiple military and government agencies across several Latin American countries....
Luxury hotel chain Shangri-La suffered a security breach
The Shangri-La hotel group disclosed a data breach, a database containing the personal information of its customers was compromised. The...
Witchetty APT used steganography in attacks against Middle East entities
A cyberespionage group, tracked as Witchetty, used steganography to hide a previously undocumented backdoor in a Windows logo. Broadcom’s Symantec...
US DoD announced the results of the Hack US bug bounty challenge
The US Department of Defense (DoD) shared the results of the Hack US bug bounty program that took place in July....
Microsoft confirms Exchange zero-day flaws actively exploited in the wild
Microsoft confirmed that two recently disclosed zero-day flaws in Microsoft Exchange are being actively exploited in the wild. Microsoft confirmed...
Unpatched Microsoft Exchange Zero-Day actively exploited in the wild
Security researchers are warning of a new Microsoft Exchange zero-day that are being exploited by malicious actors in the wild....
Experts uncovered novel Malware persistence within VMware ESXi Hypervisors
Researchers from Mandiant have discovered a novel malware persistence technique within VMware ESXi Hypervisors. Mandiant detailed a novel technique used...
The secrets of Schneider Electric’s UMAS protocol
UMAS (Unified Messaging Application Services) is a proprietary Schneider Electric (SE) protocol used to configure and monitor Schneider Electric PLCs....
Incident Response Services & Playbooks Guide
63% of c-level executives in the US don’t have an incident response plan yet 50% of organizations experience a cyberattack....
Stronger Cloud Security in Azure Function Using Custom Cloud Container
In this entry, we discuss how developers can use custom cloud container image and the distroless approach to minimize security...
Stronger Cloud Security in Azure Functions Using Custom Cloud Container
In this entry, we discuss how developers can use custom cloud container image and the distroless approach to minimize security...
Hacker groups support protestors in Iran using Telegram, Signal and Darkweb
Several hacker groups are assisting protestors in Iran using Telegram, Signal and other tools to bypass government censorship. Check Point...
A cracked copy of Brute Ratel post-exploitation tool leaked on hacking forums
The Brute Ratel post-exploitation toolkit has been cracked and now is available in the underground hacking and cybercrime communities. Threat...
Go-based Chaos malware is rapidly growing targeting Windows, Linux and more
A new multifunctional Go-based malware dubbed Chaos is targeting both Windows and Linux systems, experts warn. Researchers from Black Lotus Labs...
Prilex: the pricey prickle credit card complex
Prilex is a Brazilian threat actor that has evolved out of ATM-focused malware into modular point-of-sale malware. The group was...
Threat actors use Quantum Builder to deliver Agent Tesla malware
The recently discovered malware builder Quantum Builder is being used by threat actors to deliver the Agent Tesla RAT. A...
