Cyber Security Ten Years Later, New Clues in the Target Breach Dec 14, 2023 krebsonsecurity.com On Dec. 18, 2013, KrebsOnSecurity broke the news that U.S. retail giant Target was battling a wide-ranging computer intrusion that…
Technology Microsoft: OAuth apps used to automate BEC and cryptomining attacks Dec 12, 2023 bleepingcomputer.com Microsoft warns that financially-motivated threat actors are using OAuth applications to automate BEC and phishing attacks, push spam, and deploy…
Cyber Security Critical WordPress Plug-in RCE Bug Exposes Reams of Websites to Takeover Dec 12, 2023 darkreading.com Attackers can inject and execute arbitrary PHP code using a flaw in Backup Migration, which has been downloaded more than…
Technology 50K WordPress sites exposed to RCE attacks by critical bug in backup plugin Dec 11, 2023 bleepingcomputer.com A critical severity vulnerability in a WordPress plugin with more than 90,000 installs can let attackers gain remote code execution…
Technology Lazarus hackers drop new RAT malware using 2-year-old Log4j bug Dec 11, 2023 bleepingcomputer.com The notorious North Korean hacking group known as Lazarus continues to exploit CVE-2021-44228, aka "Log4Shell," this time to deploy three…
Technology Linux version of Qilin ransomware focuses on VMware ESXi Dec 3, 2023 bleepingcomputer.com A sample of the Qilin ransomware gang's VMware ESXi encryptor has been found and it could be one of the…
Technology TrickBot malware dev pleads guilty, faces 35 years in prison Dec 1, 2023 bleepingcomputer.com On Thursday, a Russian national pleaded guilty to charges related to his involvement in developing and deploying the Trickbot malware,…
Technology Hackers use new Agent Raccoon malware to backdoor US targets Dec 1, 2023 bleepingcomputer.com A novel malware named 'Agent Raccoon' (or Agent Racoon) is being used in cyberattacks against organizations in the United States,…
Technology French government recommends against using foreign chat apps Dec 1, 2023 bleepingcomputer.com Prime Minister of France Élisabeth Borne signed a circular last week requesting all government employees to uninstall foreign communication apps such…
Technology Japanese Space Agency JAXA hacked in summer cyberattack Nov 29, 2023 bleepingcomputer.com The Japan Aerospace Exploration Agency (JAXA) was hacked in a cyberattack over the summer, potentially compromising sensitive space-related technology and…
Ten Years Later, New Clues in the Target Breach
On Dec. 18, 2013, KrebsOnSecurity broke the news that U.S. retail giant Target was battling a wide-ranging computer intrusion that…
Microsoft: OAuth apps used to automate BEC and cryptomining attacks
Microsoft warns that financially-motivated threat actors are using OAuth applications to automate BEC and phishing attacks, push spam, and deploy…
Critical WordPress Plug-in RCE Bug Exposes Reams of Websites to Takeover
Attackers can inject and execute arbitrary PHP code using a flaw in Backup Migration, which has been downloaded more than…
50K WordPress sites exposed to RCE attacks by critical bug in backup plugin
A critical severity vulnerability in a WordPress plugin with more than 90,000 installs can let attackers gain remote code execution…
Lazarus hackers drop new RAT malware using 2-year-old Log4j bug
The notorious North Korean hacking group known as Lazarus continues to exploit CVE-2021-44228, aka "Log4Shell," this time to deploy three…
Linux version of Qilin ransomware focuses on VMware ESXi
A sample of the Qilin ransomware gang's VMware ESXi encryptor has been found and it could be one of the…
TrickBot malware dev pleads guilty, faces 35 years in prison
On Thursday, a Russian national pleaded guilty to charges related to his involvement in developing and deploying the Trickbot malware,…
Hackers use new Agent Raccoon malware to backdoor US targets
A novel malware named 'Agent Raccoon' (or Agent Racoon) is being used in cyberattacks against organizations in the United States,…
French government recommends against using foreign chat apps
Prime Minister of France Élisabeth Borne signed a circular last week requesting all government employees to uninstall foreign communication apps such…
Japanese Space Agency JAXA hacked in summer cyberattack
The Japan Aerospace Exploration Agency (JAXA) was hacked in a cyberattack over the summer, potentially compromising sensitive space-related technology and…