Experts Discover Promotheus TDS, An Underground MaaS
Cybersecurity experts from Group-IB in its technical research on Promotheus TDS, an underground MaaS (Malware as a service), found that...
News
The ‘Interaction-Less’ Flaws in Messaging Apps Allowed Hackers to Eavesdrop
Last week, at the Black Hat security conference in Las Vegas, Google’s Project Zero researcher, Natalie Silvanovich presented her findings...
BHUSA: Windows Hello Passwordless Bypass Disclosed
Passwords are usually a vulnerable spot in security, which is why alternatives like Microsoft Hello, which gives a passwordless approach...
City of Joplin paid a 320K ransom after a ransomware Attack
A ransomware attack hit City of Joplin forcing the IT staff to shutdown the City computer. Finally the insurer for...
Australian Cyber Security Centre warns of a surge of LockBit 2.0 ransomware attacks
The Australian Cyber Security Centre (ACSC) warns of a surge of LockBit 2.0 ransomware attacks against Australian organizations starting July 2021. The Australian Cyber...
Threat actors are probing Microsoft Exchange servers for ProxyShell flaws
Threat actors are actively scanning for the Microsoft Exchange ProxyShell RCE flaws after technical details were released at the Black Hat...
1M compromised cards available for free in the underground market
Group-IB detected an unconventional post on several carding forums containing links to a file containing 1 million compromised cards. On...
Taiwanese Computer Hardware Company Gigabyte Suffers Ransomware Attack
Gigabyte, a motherboard developing company from Taiwan and also a hardware giant was attacked by the RansomExx ransomware hacking group,...
Golang Cryptomining Worm Offers 15% Speed Boost
Cybersecurity intelligence at the security firm Intezer has discovered a new Golang-based worm that is attacking Windows and Linux servers...
Personal Information of 2,000 FOID Cardholders Compromised in ISP Website Breach
The Illinois State Police are notifying Firearm Owners Identification cardholders regarding a possible data breach after attackers attempted to breach...
Lithuania has experienced 1,780 cyber incidents in six months
According to the Lithuanian military, the sharp increase in the number of hacks is caused by two main reasons –...
Cisco: Firewall Manager RCE Flaw is a Zero-day, Patch Arriving Soon
In a Thursday security advisory update, Cisco disclosed that a remote code execution (RCE) vulnerability discovered last month in the...
Security Affairs newsletter Round 326
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for...
A zero-day RCE in Cisco ADSM has yet to be fixed
A remote code execution (RCE) vulnerability in the Cisco Adaptive Security Device Manager (ADSM) Launcher disclosed in July has yet...
CVE-2021-20090 actively exploited to target millions of IoT devices worldwide
Threat actors are actively exploiting a critical authentication bypass issue (CVE-2021-20090) affecting home routers with Arcadyan firmware. Threat actors actively...
Telegram Bug in Mac Allows User To Save Secret Chats
Cybersecurity experts have found a technique for Telegram users of Mac to keep self disappearing texts or view the messages...
Detecting Cobalt Strike: Cybercrime Attacks
One of the latest researches revealed that cybercriminals who employ malware often use the Cobalt Strike tool to release multiple...
Several Critical Flaws Detected in Las Vegas’s Leading Casinos
External attack surface management platform, Reposify, has discovered multiple vulnerabilities in the IT networks of Las Vegas’s leading casinos. Recently,...
New DNS Flaw Enables ‘Nation-State Level Spying’ on Companies
Researchers discovered a new category of DNS vulnerabilities hitting major DNS-as-a-Service (DNSaaS) providers, which may enable attackers to get access...
Inadequate Payment Leads the Affiliate to Leak the Ransomware Gang’s Technical Manual
A frustrated Conti affiliate revealed the gang's training material during attacks and released details on one of the administrators of...
RansomEXX ransomware hit computer manufacturer and distributor GIGABYTE
Taiwanese manufacturer and distributor of computer hardware GIGABYTE was a victim of the RansomEXX ransomware gang. RansomEXX ransomware gang hit...
RansomEXX ransomware leaks files stolen from Italian luxury brand Zegna
RansomEXX ransomware operators hit the popular Italian luxury fashion house Ermenegildo Zegna Holding and started leaking stolen files. Zegna is one of...
Ivanti fixed a critical code execution issue in Pulse Connect Secure VPN
Security firm Ivanti addressed a critical vulnerability in its Pulse Connect Secure VPN appliances that could be exploited to execute...
Apple’s search for child abuse imagery raises serious privacy questions
The Internet has been on fire since the August 4 discovery (disclosed publicly by Mathew Green) that Apple will be...
