SecureWorld News

AUGUST 8, 2022

Cybersecurity and Infrastructure Security Agency (CISA) and the Australian Cyber Security Centre (ACSC) released a joint Cybersecurity Advisory (CSA) providing details on the top malware strains of 2021. The top malware strains in 2021 included remote access Trojans (RATs), banking Trojans, information stealers, and ransomware.

Malware 90

Malware Banking Healthcare Penetration Testing 90

Malwarebytes

DECEMBER 7, 2021

Microsoft has taken control of 42 web domains that a hacking group was using to try to breach its targets. Sadly, any setback to the Chinese hacking group or others will likely be temporary as the hackers will find and build new infrastructure to use in forthcoming attacks. An overview of Chinese hacking groups and their aliases.

Hacking 100

Hacking Malware Surveillance Data collection 100

Malwarebytes

DECEMBER 7, 2021

Microsoft has taken control of 42 web domains that a hacking group was using to try to breach its targets. Sadly, any setback to the Chinese hacking group or others will likely be temporary as the hackers will find and build new infrastructure to use in forthcoming attacks. An overview of Chinese hacking groups and their aliases.

Hacking 78

Hacking Malware Surveillance Data collection 78

Security Affairs

MARCH 19, 2021

The Russian national who attempted to convince a Tesla employee to plant malware on Tesla systems has pleaded guilty. Justice Department announced on Thursday that the Russian national Egor Igorevich Kriuchkov (27), who attempted to convince a Tesla employee to install malware on the company’s computers, has pleaded guilty.

Malware 127

Malware Surveillance Hacking Technology 127

Security Affairs

JULY 20, 2023

Lookout also discovered a link between the C2 infrastructure hard-coded into the malware’s source code and Chengdu 404. The experts noticed the use of an IP address that was part of the hacking infrastructure used by APT41 between May 2014 and August 2020. Most recent samples of DraginEgg are dated April 2023.

Spyware 82

Spyware Surveillance Mobile Malware 82

Security Affairs

MAY 6, 2023

Twitter confirmed that a security incident publicly exposed Circle tweets FBI seized other domains used by the shadow eBook library Z-Library WordPress Advanced Custom Fields plugin XSS exposes +2M sites to attacks Fortinet fixed two severe issues in FortiADC and FortiOS Pro-Russia group NoName took down multiple France sites, including the French (..)

Data breaches 94

Data breaches Malware Mobile Spyware 94

Security Affairs

JULY 23, 2023

Multiple DDoS botnets were observed targeting Zyxel devices CISA warns of attacks against Citrix NetScaler ADC and Gateway Devices Experts believe North Korea behind JumpCloud supply chain attack Nice Suzuki, sport: shame dealer left your data up for grabs Experts attribute WyrmSpy and DragonEgg spyware to the Chinese APT41 group ALPHV/BlackCat and (..)

DDOS 89

DDOS Hacking Spyware Surveillance 89

Security Affairs

AUGUST 7, 2022

Greek intelligence service used surveillance malware to spy on a journalist, Reuters reports Slack resets passwords for about 0.5% Greek intelligence service used surveillance malware to spy on a journalist, Reuters reports Slack resets passwords for about 0.5% SecurityAffairs – hacking, newsletter).

Spyware 124

Spyware Manufacturing Small Business Surveillance 124

SecureWorld News

FEBRUARY 8, 2024

The Super Bowl stadium and its vendors will connect everything from digital ticketing and payments to lighting, scoreboards, and surveillance cameras—exponentially expanding the attack surface. Potential risks span from malware infections to denial-of-service attacks to theft of sensitive data.

Penetration Testing 108

Penetration Testing Surveillance Cyber Risk Malware 108

Security Affairs

APRIL 17, 2022

SecurityAffairs – hacking, newsletter). To nominate, please visit:? Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini. The post Security Affairs newsletter Round 361 by Pierluigi Paganini appeared first on Security Affairs.

Wireless 76

Wireless Data breaches Hacking Surveillance 76

Security Affairs

JULY 15, 2023

Government agencies SonicWall urges organizations to fix critical flaws in GMS/Analytics products Citrix fixed a critical flaw in Secure Access Client for Ubuntu Cl0p hacker operating from Russia-Ukraine war front line – exclusive Fortinet fixed a critical flaw in FortiOS and FortiProxy Microsoft mitigated an attack by Chinese threat actor Storm-0558 (..)

Spyware 90

Spyware Hacking Data breaches Mobile 90

Security Affairs

SEPTEMBER 24, 2023

0-days exploited by commercial surveillance vendor in Egypt PREDATOR IN THE WIRES OilRig’s Outer Space and Juicy Mix: Same ol’ rig, new drill pipes Cybersecurity Apple and Google Are Introducing New Ways to Defeat Cell Site Simulators, But Is it Enough?

Cyber Attacks 84

Cyber Attacks Firewall Data breaches Telecommunications 84

Security Affairs

APRIL 16, 2023

hacking tools and electronics A new round of the weekly SecurityAffairs newsletter arrived! hacking tools and electronics A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free for you in your email box.

Data breaches 73

Data breaches Spyware Retail Surveillance 73

Security Affairs

SEPTEMBER 3, 2022

Google rolled out emergency fixes to address actively exploited Chrome zero-day Samsung discloses a second data breach this year The Prynt Stealer malware contains a secret backdoor. SecurityAffairs – hacking, newsletter). Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Data breaches 66

Data breaches Malware Surveillance Ransomware 66

Security Affairs

MAY 14, 2023

ransom Dragon Breath APT uses double-dip DLL sideloading strategy International Press Cybercrime San Bernardino County pays $1.1-million ransom Dragon Breath APT uses double-dip DLL sideloading strategy International Press Cybercrime San Bernardino County pays $1.1-million

Data breaches 89

Data breaches DDOS Artificial Intelligence Ransomware 89

Security Affairs

MARCH 26, 2023

NCA infiltrates the cybercriminal underground with fake DDoS-for-hire sites Pwn2Own Vancouver 2023 awarded $1,035,000 and a Tesla for 27 0-days CISA announced the Pre-Ransomware Notifications initiative China-linked hackers target telecommunication providers in the Middle East City of Toronto is one of the victims hacked by Clop gang using GoAnywhere (..)

Data breaches 78

Data breaches DDOS Backups Ransomware 78

Security Affairs

JULY 31, 2022

increased rewards for info on North Korea-linked threat actors to $10 million Threat actors leverages DLL-SideLoading to spread Qakbot malware Zero Day attacks target online stores using PrestaShop? SecurityAffairs – hacking, newsletter). and Blackmatter ransomware U.S. and Blackmatter ransomware U.S. and Blackmatter ransomware U.S.

Firmware 72

Firmware Surveillance Malware DDOS 72

Security Affairs

JULY 24, 2022

ransom and sued its insurance firm for refusing to cover this payment Crooks stole $375k from Premint NFT, it is one of the biggest NFT hacks ever Google is going to remove App Permissions List from the Play Store Security Affairs newsletter Round 374 by Pierluigi Paganini APT groups target journalists and media organizations since 2021.

Spyware 92

Spyware Surveillance Insurance Malware 92

Security Affairs

SEPTEMBER 23, 2023

CBS News Texas obtained an image the ransomware note dropped by the malware on the infected systems. The Royal group began reconnaissance activity in April 2023, and the analysis of system log data dates the beginning of the surveillance operations on April 7, 2023. ” reads the report. ” continues the report.

Ransomware 105

Ransomware Surveillance Healthcare Accountability 105

Security Affairs

SEPTEMBER 14, 2023

A joint investigation conducted by Access Now and the Citizen Lab revealed that the journalist, who is at odds with the Russian government, was infected with the surveillance software. However, there is no public evidence that the Russian government is a client of the Israeli surveillance firm NSO Group. ” states Access Now.

Spyware 93

Spyware Surveillance Media Government 93

Security Affairs

MARCH 21, 2021

Hackers also posted images captured from the hacked surveillance video on Twitter with an #OperationPanopticon hashtag, published images show that they have gained root shell access to the surveillance cameras used by Telsa and Cloudflare. SecurityAffairs – hacking, cybercrime). ” continues the DoJ.

Identity Theft 73

Identity Theft Computers and Electronics Surveillance Hacking 73

Security Affairs

APRIL 23, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, newsletter ) The post Security Affairs newsletter Round 416 by Pierluigi Paganini – International edition appeared first on Security Affairs.

Spyware 73

Spyware Ransomware Malware Data breaches 73

Malwarebytes

SEPTEMBER 27, 2021

Last week on Malwarebytes Labs. Stay safe, everyone! The post A week in security (Sept 20 – Sept 26) appeared first on Malwarebytes Labs.

Phishing 59

Phishing Surveillance Malware Backups 59

Security Affairs

JULY 31, 2022

. “We’re publishing the details of a new vulnerability (tracked under CVE-2022-30563) affecting the implementation of the Open Network Video Interface Forum (ONVIF) WS-UsernameToken authentication mechanism in some IP cameras developed by Dahua, a very popular manufacturer of IP-based surveillance solutions.” Pierluigi Paganini.

Surveillance 144

Surveillance Authentication Telecommunications Manufacturing 144

Security Affairs

JANUARY 16, 2022

US NCSC and DoS share best practices against surveillance tools Swiss army asks its personnel to use the Threema instant-messaging app Russian submarines threatening undersea cables, UK defence chief warns. SecurityAffairs – hacking, newsletter). Threat actors stole $18.7M Threat actors stole $18.7M Threat actors stole $18.7M

Surveillance 76

Surveillance Ransomware Malware Hacking 76

Malwarebytes

OCTOBER 11, 2021

Android malware pretends to be a security update. Source: CNET) New cyberattacks will involve the use of 5G technology , according to study (Source: Teiss) According to a different study, Millennials and Gen Z are bigger cybercrime victims than other generations (Source: Global News Wire) Data of 1.5 Other cybersecurity news.

Surveillance 66

Surveillance Data breaches Ransomware Cybercrime 66

Security Affairs

DECEMBER 24, 2019

According to a report published by the New York Times, the popular app ToTok was used by the UAE government as a surveillance tool. The report said US intelligence officials and a security researcher determined the app was being used by the UAE government for detailed surveillance. SecurityAffairs – ToTok, surveillence).

Government 62

Government Surveillance Advertising Mobile 62

Security Affairs

AUGUST 29, 2021

SecurityAffairs – hacking, newsletter). SecurityAffairs – hacking, newsletter). Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini. If you want to also receive for free the international pre ss subscribe here. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Spyware 103

Spyware Data breaches Surveillance Hacking 103

Security Affairs

FEBRUARY 13, 2022

to replace Chinese equipment Hackers breached a server of National Games of China days before the event Russian Gamaredon APT is targeting Ukraine since October Israeli surveillance firm QuaDream emerges from the dark Argo CD flaw could allow stealing sensitive data from Kubernetes Apps. SecurityAffairs – hacking, newsletter).

Spyware 73

Spyware Surveillance Ransomware Hacking 73

Security Affairs

APRIL 2, 2022

CVE-2016-5674 targets NUUO NVRmini2, NVRsolo, Crystal Devices, and NETGEAR ReadyNAS Surveillance products. SecurityAffairs – hacking, Beastmode botnet). CVE-2017-17215 targets Huawei HG532 routers. ” concludes the report. ” Follow me on Twitter: @securityaffairs and Facebook. . ” concludes the report.

DDOS 86

DDOS Firmware Surveillance IoT 86

Security Affairs

APRIL 16, 2023

Remcos is a legitimate remote monitoring and surveillance software developed by the company BreakingSecurity. In 2021, CISA added Remcos to the list of top malware strains due to its use in mass phishing attacks using COVID-19 pandemic themes targeting businesses and individuals.

Accountability 90

Accountability Phishing Financial Services Surveillance 90

Security Affairs

NOVEMBER 25, 2021

The PowerShortShell stealer is also used for Telegram surveillance and gathering system information from infected systems. “The adversary might be tied to Iran’s Islamic regime since the Telegram surveillance usage is typical of Iran’s threat actors like Infy, Ferocious Kitten, and Rampant Kitten. fn= hxxp://hr.dedyn.io/upload2.aspx

Surveillance 89

Surveillance Social Engineering Cybercrime Phishing 89

Security Affairs

OCTOBER 18, 2018

The malware was offered for sale in the criminal underground for as little as $40, it allows attackers to take complete control over the infected system. Grubbs offered for sale the malware for $39.99 to more than 6,000 customers, he also helped them to hack computers worldwide. ” reads the DoJ’s sentence.

Computers and Electronics 77

Computers and Electronics Cybercrime Advertising Marketing 77

Security Affairs

JANUARY 14, 2022

Hensoldt AG focuses on sensor technologies for protection and surveillance missions in the defence, security and aerospace sectors. SecurityAffairs – hacking, Hensoldt). Ransom demands have been quite high, between $500.000 and $700.000. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Ransomware 120

Ransomware Surveillance Mobile Encryption 120

Security Affairs

APRIL 19, 2020

April 17 – Gmail blocked 18 Million phishing and malware emails using COVID-19 lures in a week. Google says that the Gmail malware scanners have blocked around 18 million phishing and malware emails using COVID-19 lures in just one week. SecurityAffairs – malware, COVID19). adrotate banner=”9″].

Scams 105

Scams Malware Phishing Surveillance 105

Malwarebytes

NOVEMBER 2, 2023

Unlike other generations whose privacy fears are deeply entangled with concerns of traditional cybercrimes like identity and credit card theft, Gen Z worries most about the exposure of their private information because of the chance of harassment, bullying, and lost friendships. But it isn’t that Gen Z, wholesale, doesn’t care about privacy.

Identity Theft 121

Identity Theft Data breaches Hacking Surveillance 121

Security Affairs

JUNE 10, 2022

The attack impacted the municipal police, surveillance cameras and ZTL traffic control systems, the authorities confirmed that the problems can last for days. SecurityAffairs – hacking, City of Palermo). Municipal Administration announced that demographic services are guaranteed. Follow me on Twitter: @securityaffairs and Facebook.

Ransomware 109

Ransomware Data breaches Cyber Attacks Surveillance 109