Security Affairs

FEBRUARY 21, 2023

Resecurity warns about the increase of malicious cyber activity targeting data center service providers globally. Such organizations act as a critical part of the enterprise supply chain and become a juicy target for nation-state, criminal and cyberespionage groups.

Cyber Attacks 88

Cyber Attacks Passwords Cybersecurity Risk 88

Security Affairs

JUNE 9, 2023

Researchers discovered that the Clop ransomware gang was looking for a zero-day exploit in the MOVEit Transfer since 2021. Kroll security experts discovered that the Clop ransomware gang was looking for a zero-day exploit in the MOVEit Transfer since 2021. ” reads the analysis published by the security firm.

Ransomware 78

Ransomware Hacking Retail Internet 78

Security Affairs

MARCH 3, 2021

Cybersecurity firm Qualys is the latest victim of a cyber attack, the company was likely hacked by threat actors that exploited a zero-day vulnerability in their Accellion FTA server. In response to the wave of attacks, the vendor has released multiple security patches to address the vulnerabilities exploited by the hackers.

Ransomware 128

Ransomware Cybersecurity Cyber Attacks Data breaches 128

Security Affairs

MARCH 14, 2024

The ransomware attack that hit the systems of Nissan Oceania in December 2023 impacted roughly 100,000 individuals. Nissan Oceania, the regional division of the multinational carmaker, announced in December 2023 that it had suffered a cyber attack and launched an investigation into the incident.

Data breaches 93

Data breaches Identity Theft Financial Services Cybercrime 93

Security Affairs

OCTOBER 17, 2021

Many services of the bank were disrupted, including online banking, mobile app, and ATM network, many customers crowded the Pichincha bank branches that remained open the days after the cyber attack. Compruebe el giro — FIDEL EGAS (@FEGASG) October 14, 2021. The Banco Pichincha has about 1.5 El sistema no está caído.

Banking 94

Banking InfoSec Cyber Attacks Cybercrime 94

Security Affairs

MARCH 19, 2023

The shipping industry is a privileged target of cybercrime organizations. In January, about 1,000 vessels have been impacted by a ransomware attack against DNV , one of the major maritime software suppliers. According to the media, the attack also impacted the oil supplier Mabanaft GmbH.

Ransomware 89

Ransomware Cybercrime Hacking Cyber Attacks 89

eSecurity Planet

MAY 3, 2022

The Attack Surface Management team at Group-IB said it constantly scans the IPv4 landscape for exposed databases, potentially unwanted programs, and other risks. From Q1 2021 to Q1 2022, the team discovered 399,200 exposed databases due to those efforts. Also read: Database Security: 7 Best Practices & Tips. Ransomware.

Social Engineering 128

Social Engineering Internet Internet Risk 128

Security Affairs

OCTOBER 8, 2021

Cyberespionage and sabotage attacks, and also ransomware attacks against critical infrastructure and government offices will trigger the response of the Dutch authorities, explained Ben Knapen, Dutch Minister of Foreign Affairs. “For several years, the threat of ransomware attacks has been increasing around the world.

Ransomware 116

Ransomware Cybercrime Government Cyber Attacks 116

Security Affairs

JUNE 11, 2023

Experts found new MOVEit Transfer SQL Injection flaws The University of Manchester suffered a cyber attack and suspects a data breach Russians charged with hacking Mt.

Social Engineering 89

Social Engineering Data breaches Ransomware Cybercrime 89

Herjavec Group

DECEMBER 15, 2021

Needless to say, in 2021 cybersecurity was front and center for individuals, enterprises, and governments alike. This forced security leaders and enterprise executives to assess their information security operations and overall cybersecurity posture to ensure their organizations were ready to face the challenges ahead.

Cybersecurity 52

Cybersecurity Digital transformation Ransomware Cyber Risk 52

Security Affairs

JANUARY 21, 2024

Admin of the BreachForums hacking forum sentenced to 20 years supervised release Russia-linked Midnight Blizzard APT hacked Microsoft corporate emails VF Corp December data breach impacts 35 million customers China-linked APT UNC3886 exploits VMware zero-day since 2021 Ransomware attacks break records in 2023: the number of victims rose by 128% U.S.

Artificial Intelligence 96

Artificial Intelligence VPN Hacking Firewall 96

Security Affairs

JULY 30, 2022

It is quite easy today for cybercrime groups to launch a cyber attack benefitting from the Ransomware-as-a-Service model causing damages of any size. The findings are worrisome. of all the stolen data contains GDPR personal data based on this analysis; In 95.3%

Ransomware 85

Ransomware Cybercrime Cyber Attacks Encryption 85

Security Affairs

MARCH 23, 2021

According to a data breach notification published by the company on its website, the cyber attack did not affect its network, but it only impacted an Accellion FTA server. “Shell has been impacted by a data security incident involving Accellion’s File Transfer Appliance. .” billion in 2020.

Data breaches 123

Data breaches Hacking Cybercrime Cyber Attacks 123

Security Affairs

JULY 8, 2021

The security breach was first reported by BleepingComputer that also shared a copy of the data breach notification letter sent to the impacted customers. ” The provider notified Morgan Stanley in May 2021 that hackers compromised its FTA install back in January by exploiting a zero-day vulnerability later addressed by the vendor. .

Data breaches 120

Data breaches Hacking Banking Financial Services 120

Security Affairs

MAY 21, 2023

Please vote for Security Affairs ( [link] ) as the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS Vote for me in the sections where is reported Securityaffairs or my name Pierluigi Paganini Please nominate Security Affairs as your favorite blog.

Data breaches 88

Data breaches Cybercrime Ransomware Passwords 88

Security Affairs

MARCH 11, 2021

On March 2nd, Microsoft has released emergency out-of-band security updates that address four zero-day issues (CVE-2021-26855, CVE-2021-26857, CVE-2021-26858, and CVE-2021-27065) in all supported Microsoft Exchange versions that are actively exploited in the wild. Pierluigi Paganini.

Data breaches 96

Data breaches Cybercrime Cyber Attacks Hacking 96

Security Affairs

NOVEMBER 28, 2021

Italy’s Antitrust Agency fines Apple and Google for aggressive practices of data acquisition HAEICHI-II: Interpol arrested +1,000 suspects linked to various cybercrimes IKEA hit by a cyber attack that uses stolen internal reply-chain emails Marine services provider Swire Pacific Offshore (SPO) hit by Clop ransomware Threat actors target crypto and (..)

Spyware 82

Spyware Data breaches Cyber Attacks Ransomware 82

Security Affairs

APRIL 19, 2024

China-linked threat actors are preparing cyber attacks against U.S. FBI Director Christopher Wray warned this week that China-linked threat actors are preparing an attack against U.S. The Volt Typhoon group has been active since at least mid-2021 it carried out cyber operations against critical infrastructure.

Energy and Utilities 97

Energy and Utilities Telecommunications Technology VPN 97

Security Affairs

OCTOBER 20, 2022

The Brazilian police, the Polícia Federal, launched its investigation in December 2021 after the website of Brazil’s Ministry of Health suffered a data breach. National Crime Agency’s cybercrime unit. The post Brazilian police arrested a man suspected of being a member of LAPSUS$ gang appeared first on Security Affairs.

Hacking 77

Hacking Government Data breaches Cybercrime 77

Security Affairs

JANUARY 1, 2023

Every week the best security articles from Security Affairs free for you in your email box. Personal health information of 42M Americans leaked between 2016 and 2021 Malvertising campaign MasquerAds abuses Google Ads New Linux malware targets WordPress sites by exploiting 30 bugs NETGEAR fixes a severe bug in its routers.

Cyber Attacks 87

Cyber Attacks Advertising Cryptocurrency Hacking 87

Security Affairs

JUNE 1, 2021

JBS said that it is not aware of any data breach caused by the cyber attack, it added that transactions with customers and suppliers will be delayed. The White House said Tuesday that the cyberattack was likely originating from a cybercrime organization based in Russia. reads the press release published by the company.

Backups 98

Backups Cyber Attacks Ransomware Government 98

Security Affairs

APRIL 5, 2023

For some, a cyber criminal matches some of the Hollywood tropes: a person sitting alone in a dimly lit room, furiously mashing on a keyboard to steal information from a person or company. Those days are behind us, however, as cybercrime is establishing itself as a business in and of itself.

Energy and Utilities 77

Energy and Utilities Cyber threats Risk Cyber Risk 77

Security Affairs

FEBRUARY 9, 2023

“Today, the United States, in coordination with the United Kingdom, is designating seven individuals who are part of the Russia-based cybercrime gang Trickbot.” “Russia is a haven for cybercriminals, where groups such as Trickbot freely perpetrate malicious cyber activities against the U.S., and allies and partners.

Banking 83

Banking Ransomware Cybercrime Malware 83

Security Affairs

SEPTEMBER 10, 2023

[link] [link] pic.twitter.com/akostKZtoK — Dominic Alvieri (@AlvieriD) September 10, 2023 The systems at three hospitals and other medical facilities operated by Singing River Health System were hit by a cyber attack at the end of August. Cyberattacks on smaller regional healthcare providers can have a devastating impact.

Hacking 126

Hacking Ransomware Healthcare Cyber Attacks 126

Security Affairs

FEBRUARY 6, 2023

The attackers are attempting to exploit the CVE-2021–21974 vulnerability. According to the ACN, most of the attacks targeted systems in France, followed by Finland, North America, Canada, and the United States. x earlier than ESXi650-202102101-SG The virtualization giant addressed the CVE-2021-21974 bug in February 2021.

Ransomware 84

Ransomware Cybersecurity Cyber Attacks Encryption 84

Security Affairs

OCTOBER 25, 2022

On October 14, Tata Power, India’s largest power generation company, announced that was hit by a cyber attack. Threat actors hit the Information Technology (IT) infrastructure of the company. The company confirmed that the security breach impacted “some of its IT systems.”. key files.

Ransomware 88

Ransomware Data breaches Cyber Attacks Engineering 88

Security Affairs

FEBRUARY 28, 2021

Bug bounty hacker earned $5,000 reporting a Stored XSS flaw in iCloud.com Experts warn of threat actors abusing Google Alerts to deliver unwanted programs FBI warns of the consequences of telephony denial-of-service (TDoS) attacks An attacker was able to siphon audio feeds from multiple Clubhouse rooms Georgetown County has yet to recover from a sophisticated (..)

Spyware 81

Spyware Backups Manufacturing Data breaches 81

Security Affairs

OCTOBER 23, 2022

Multiple supply chains potentially impacted Bulgaria hit by a cyber attack originating from Russia Interpol arrested 75 members of the cybercrime ring Black Axe 45,654 VMware ESXi servers reached End of Life on Oct.

Data breaches 65

Data breaches Retail Ransomware Cybercrime 65

Security Affairs

JUNE 20, 2021

Every week the best security articles from Security Affairs free for you in your email box. If you want to also receive for free the international press subscribe here.

Data breaches 99

Data breaches DDOS Small Business Ransomware 99

Security Affairs

FEBRUARY 28, 2022

Researchers from cybersecurity firm Hold Security confirmed that the researcher was able to access the database XMPP chat server of the Conti group. BREAKING: @HoldSecurity tells me Conti's systems have been infiltrated by cybercrime researchers for some time. Feb 7- Feb 27 Ukraine – Russia the silent cyber conflict.

Digital transformation 93

Digital transformation Ransomware Cybercrime Banking 93

Security Affairs

MARCH 12, 2021

On January 2021, NCA arrested 21 people in the UK as part of an operation targeting customers of WeLeakInfo service that advertised stolen personal credentials. Data breach notification services like WeLeakInfo are a mine for threat actors that could gather information on their targets before launching a cyber attack.

Data breaches 74

Data breaches Accountability Cybercrime Hacking 74

Security Affairs

JULY 4, 2023

Poly Network platform suspended its services during the weekend due to a cyber attack that resulted in the theft of millions of dollars in crypto assets. This isn’t the first time that the Poly Network has been hacked , in August 2021, threat actors stole $611 million, making this hack the largest DeFi hack to date.

Cryptocurrency 93

Cryptocurrency Hacking Cyber Attacks Risk 93

Security Affairs

JUNE 10, 2022

The Vice Society group has claimed responsibility for the ransomware attack that hit the Italian city of Palermo forcing the IT admins to shut down its infrastructure. The Vice Society ransomware group has claimed responsibility for the recent cyber attack that hit the city of Palermo in the South of Italy.

Ransomware 108

Ransomware Data breaches Cyber Attacks Surveillance 108

Security Affairs

MARCH 7, 2021

jailbreaking tool Attackers took over the Perl.com domain in September 2020 Bug bounty hunter awarded $50,000 for a Microsoft account hijack flaw Clop ransomware gang leaks data allegedly stolen from cybersecurity firm Qualys Cyber Defense Magazine – March 2021 has arrived. Enjoy it! Pierluigi Paganini.

Data breaches 68

Data breaches Data collection Ransomware Hacking 68

Security Affairs

OCTOBER 3, 2021

Threat actors exploit a flaw in Coinbase 2FA to steal user funds Flubot Android banking Trojan spreads via fake security updates Th Tim’s RED Team Research reports 3 new CVEs, two of which in 4G/5G Baby died at Alabama Springhill Medical Center due to cyber attack Hydra Android trojan campaign targets customers of European banks Neiman Marcus discloses (..)

Banking 52

Banking Data breaches Malware VPN 52

Security Affairs

NOVEMBER 8, 2021

It is not possible to collect or return the products due to the cyber attack. Update November 8, 2021. The Hive gang has been active since June 2021, it implements a Ransomware-as-a-Service model and employs a wide variety of tactics, techniques, and procedures (TTPs). ” reported the local outlet RTLNieuws.

Computers and Electronics 113

Computers and Electronics Ransomware Retail Spyware 113

Security Affairs

AUGUST 1, 2022

The company Encevo, which owns the majority of Creos, published a security advisory to announce that the gas pipeline form has suffered a cyber attack that took place between July 22 and 23. During this attack, a number of data were exfiltrated from computer systems or made inaccessible by hackers.”

Ransomware 120

Ransomware Passwords Cyber Attacks Hacking 120