#bleepingcomputer #2024

Microsoft: macOS bug lets hackers install malicious kernel drivers

Apple recently addressed a macOS vulnerability that allows attackers to bypass System Integrity Protection (SIP) and install malicious kernel drivers by loading third-party kernel extensions. #Apple #Computer #InfoSec #Integrity #Microsoft #Protection #SIP #Security #System #Vulnerability #macOS

#bleepingcomputer #EN #2024 #CVE-2024-44243 #System #macOS #Apple #Security #Integrity #SIP

·bleepingcomputer.com·Jan 13, 2025

Microsoft: macOS bug lets hackers install malicious kernel drivers

SonicWall urges admins to patch exploitable SSLVPN bug immediately

SonicWall is emailing customers urging them to upgrade their firewall's SonicOS firmware to patch an authentication bypass vulnerability in SSL VPN and SSH management that is

#bleepingcomputer #EN #2024 #Authentication-Bypass #Firewall #Security-Advisory #SonicWall #Vulnerability

·bleepingcomputer.com·Jan 9, 2025

SonicWall urges admins to patch exploitable SSLVPN bug immediately

Russian ISP confirms Ukrainian hackers "destroyed" its network

Russian internet service provider Nodex confirmed on Tuesday that its network was

#bleepingcomputer #EN #2024 #Breach #Hacktivism #ISP #Nodex #Russia #Ukraine #Ukrainian-Cyber-Alliance

·bleepingcomputer.com·Jan 9, 2025

Russian ISP confirms Ukrainian hackers "destroyed" its network

Thousands of credit cards stolen in Green Bay Packers store breach

American football team Green Bay Packers says cybercriminals stole the credit card data of over 8,500 customers after hacking its official Pro Shop online retail store in a September breach.

#bleepingcomputer #EN #2024 #Credit-Card #Credit-Card-Stealer #Data-Breach #Football #Green-Bay-Packers #MageCart #NFL #Payment-Information

·bleepingcomputer.com·Jan 8, 2025

Thousands of credit cards stolen in Green Bay Packers store breach

New details reveal how hackers hijacked 35 Google Chrome extensions

New details have emerged about a phishing campaign targeting Chrome browser extension developers that led to the compromise of at least thirty-five extensions to inject data-stealing code, including those from cybersecurity firm Cyberhaven.

#bleepingcomputer #EN #2024 #Chrome-extension #Cyberhaven #Data-Theft #Facebook #OAuth #Phishing #Supply-Chain-Attack

·bleepingcomputer.com·Jan 2, 2025

New details reveal how hackers hijacked 35 Google Chrome extensions

Clop ransomware is now extorting 66 Cleo data-theft victims

The Clop ransomware gang started to extort victims of its Cleo data theft attacks and announced on its dark web portal that 66 companies have 48 hours to respond to the demands.

#bleepingcomputer #EN #2024 #Cleo #Clop #Double-Extortion #Extortion #Ransomware

·bleepingcomputer.com·Dec 28, 2024

Clop ransomware is now extorting 66 Cleo data-theft victims

European Space Agency's official store hacked to steal payment cards

European Space Agency's official web shop was hacked as it started to load a piece of JavaScript code that generates a fake Stripe payment page at checkout.

#bleepingcomputer #EN #2024 #Credit-Card #ESA #European-Space-Agency #JavaScript #MageCart #Payment-card #Stripe

·bleepingcomputer.com·Dec 27, 2024

European Space Agency's official store hacked to steal payment cards

Malicious ads push Lumma infostealer via fake CAPTCHA pages

A large-scale malvertising campaign distributed the Lumma Stealer info-stealing malware through fake CAPTCHA verification pages that prompt users to run PowerShell commands to verify they are not a bot.

#bleepingcomputer #EN #2024 #Captcha #ClickFix #Information-Stealer #Lumma #Malvertising #Malware #PowerShell #Security #InfoSec #Computer-Security

·bleepingcomputer.com·Dec 22, 2024

Malicious ads push Lumma infostealer via fake CAPTCHA pages

Ascension: Health data of 5.6 million stolen in ransomware attack

Ascension, one of the largest private U.S. healthcare systems, is notifying over 5.6 million patients and employees that their personal and health data was stolen in a May cyberattack linked to the Black Basta ransomware operation.

#bleepingcomputer #EN #2024 #Ascension #Data-Breach #Healthcare #Ransomware #Security #InfoSec #Computer-Security

·bleepingcomputer.com·Dec 20, 2024

Ascension: Health data of 5.6 million stolen in ransomware attack

Ultralytics AI model hijacked to infect thousands with cryptominer

The popular Ultralytics YOLO11 AI model was compromised in a supply chain attack to deploy cryptominers on devices running versions 8.3.41 and 8.3.42 from the Python Package Index (PyPI)

#bleepingcomputer #EN #2024 #Artificial-Intelligence #Open-Source #Supply-Chain #Supply-Chain-Attack #Ultralytics

·bleepingcomputer.com·Dec 8, 2024

Ultralytics AI model hijacked to infect thousands with cryptominer

Veeam warns of critical RCE bug in Service Provider Console

Veeam released security updates today to address two Service Provider Console (VSPC) vulnerabilities, including a critical remote code execution (RCE) discovered during internal testing. VSPC, described by the company as a remote-managed BaaS (Backend as a Service) and DRaaS (Disaster Recovery as a Service) platform, is used by service providers to monitor the health and security of customer backups, as well as manage their Veeam-protected virtual, Microsoft 365, and public cloud workloads.

#bleepingcomputer #EN #2024 #RCE #bug #DRaaS #VSPC #Veeam

·bleepingcomputer.com·Dec 7, 2024

Veeam warns of critical RCE bug in Service Provider Console

Cloudflare’s developer domains increasingly abused by threat actors

Cloudflare's 'pages.dev' and 'workers.dev' domains, used for deploying web pages and facilitating serverless computing, are being increasingly abused by cybercriminals for phishing and other malicious activities.

#bleepingcomputer #EN #2024 #Abuse #Cloudflare #Cloudflare-Pages #Cloudflare-Workers #Cybercrime #Phishing

·bleepingcomputer.com·Dec 5, 2024

Cloudflare’s developer domains increasingly abused by threat actors

Police seize Matrix encrypted chat service after spying on criminals

An international law enforcement operation codenamed 'Operation Passionflower' has shut down MATRIX, an encrypted messaging platform used by cybercriminals to coordinate illegal activities while evading police.

#bleepingcomputer #EN #2024 #Arrest #Encrypted-Chat #Encrypted-Messaging #Europol #Matrix

·bleepingcomputer.com·Dec 3, 2024

Police seize Matrix encrypted chat service after spying on criminals

UK hospital network postpones procedures after cyberattack

Major UK healthcare provider Wirral University Teaching Hospital (WUTH), part of the NHS Foundation Trust, has suffered a cyberattack that caused a systems outage leading to postponing appointments and scheduled procedures.

#bleepingcomputer #EN #2024 #Cyberattack #Healthcare #NHS #Outage #UK

·bleepingcomputer.com·Nov 28, 2024

UK hospital network postpones procedures after cyberattack

Zello asks users to reset passwords after security incident

Zello is warning customers to reset their passwords if their account was created before November 2nd in what appears to be another security breach.

#bleepingcomputer #EN #2024 #Password-Reset #Security-Incident #Zello

·bleepingcomputer.com·Nov 28, 2024

Zello asks users to reset passwords after security incident

Apple fixes two zero-days used in attacks on Intel-based Macs

Apple released emergency security updates to fix two zero-day vulnerabilities that were exploited in attacks on Intel-based Mac systems. "Apple is aware of a report that this issue may have been exploited," the company said in an advisory issued on Tuesday. The two bugs were found in the macOS Sequoia JavaScriptCore (CVE-2024-44308) and WebKit (CVE-2024-44309) components of macOS.

#bleepingcomputer #EN #2024 #CVE-2024-44309 #CVE-2024-44308 #macos #JavaScriptCore #WebKit #exploited

·bleepingcomputer.com·Nov 23, 2024

Apple fixes two zero-days used in attacks on Intel-based Macs

Microsoft 365 Admin portal abused to send sextortion emails

The Microsoft 365 Admin Portal is being abused to send sextortion emails, making the emails appear trustworthy and bypassing email security platforms.

#bleepingcomputer #EN #2024 #Email #Extortion #Mail-Filters #Microsoft-365 #Microsoft-365-Admin-Portal #Sextortion #Security #InfoSec #Computer-Security

·bleepingcomputer.com·Nov 20, 2024

Microsoft 365 Admin portal abused to send sextortion emails

T-Mobile confirms it was hacked in recent wave of telecom breaches

T-Mobile confirms it was hacked in the wave of recently reported telecom breaches conducted by Chinese threat actors to gain access to private communications, call records, and law enforcement information requests.

#bleepingcomputer #EN #2024 #China #Cyber-espionage #Cyberattack #Salt-Typhoon #T-Mobile #Telecommunications #Security #InfoSec #Computer-Security

·bleepingcomputer.com·Nov 16, 2024

T-Mobile confirms it was hacked in recent wave of telecom breaches

D-Link won’t fix critical flaw affecting 60,000 older NAS devices

More than 60,000 D-Link network-attached storage devices that have reached end-of-life are vulnerable to a command injection vulnerability with a publicly available exploit.

#bleepingcomputer #EN #2024 #Command-Injection #D-Link #Exploit #Hardware #NAS #PoC #Proof-of-Concept #Security #InfoSec #Computer-Security

·bleepingcomputer.com·Nov 11, 2024

D-Link won’t fix critical flaw affecting 60,000 older NAS devices

Meet Interlock — The new ransomware targeting FreeBSD servers

A relatively new ransomware operation named Interlock attacks organizations worldwide, taking the unusual approach of creating an encryptor to target FreeBSD servers.

#bleepingcomputer #EN #2024 #Data-Leak-Site #Encryptor #Extortion #FreeBSD #Interlock #Ransomware #Security #InfoSec #Computer-Security

·bleepingcomputer.com·Nov 11, 2024

Meet Interlock — The new ransomware targeting FreeBSD servers

DocuSign's Envelopes API abused to send realistic fake invoices

Threat actors are abusing DocuSign's Envelopes API to create and mass-distribute fake invoices that appear genuine, impersonating well-known brands like Norton and PayPal.

#bleepingcomputer #EN #2024 #API #DocuSign #Invoice #Phishing #Signature #Security #InfoSec #Computer-Security

·bleepingcomputer.com·Nov 11, 2024

DocuSign's Envelopes API abused to send realistic fake invoices

Nokia says hackers leaked third-party app source code

Nokia's investigation of recent claims of a data breach found that the source code leaked on a hacker forum belongs to a third party and company and customer data has not been impacted.

#bleepingcomputer #EN #2024 #Data-Leak #Nokia #Source-Code #Telecommunications #Third-Party-Data-Breach #Security #InfoSec #Computer-Security

·bleepingcomputer.com·Nov 11, 2024

Nokia says hackers leaked third-party app source code

Schneider Electric confirms dev platform breach after hacker steals data

Schneider Electric has confirmed a developer platform was breached after a threat actor claimed to steal 40GB of data from the company's JIRA server.

#bleepingcomputer #EN #2024 #Data-Breach #Developer-Environment #Jira #Schneider-Electric #Security #InfoSec #Computer-Security

·bleepingcomputer.com·Nov 4, 2024

Schneider Electric confirms dev platform breach after hacker steals data

DDoS site Dstat.cc seized and two suspects arrested in Germany

The Dstat.cc DDoS review platform has been seized by law enforcement, and two suspects have been arrested after the service helped fuel distributed denial-of-service attacks for years.

#bleepingcomputer #EN #2024 #Arrest #BKA #DDoS #Dstat.cc #Germany #Operation-PowerOff

·bleepingcomputer.com·Nov 1, 2024

DDoS site Dstat.cc seized and two suspects arrested in Germany

Fog ransomware targets SonicWall VPNs to breach corporate networks

Fog and Akira ransomware operators have increased their exploitation efforts of CVE-2024-40766, a critical access control flaw that allows unauthorized access to resources on the SSL VPN feature of SonicWall SonicOS firewalls.

#bleepingcomputer #EN #2024 #Akira #CVE-2024-40766 #Firewall #Fog-Ransomware #SonicWall #SSL-VPN

·bleepingcomputer.com·Oct 27, 2024

Fog ransomware targets SonicWall VPNs to breach corporate networks

Hackers exploit Roundcube webmail flaw to steal email, credentials

Threat actors have been exploiting a vulnerability in the Roundcube Webmail client to target government organizations in the Commonwealth of Independent States (CIS) region, the successor of the former Soviet Union.

#bleepingcomputer #EN #2024 #Actively-Exploited #CVE-2024-37383 #Cross-Site-Scripting #Email #Roundcube #Vulnerability #XSS

·bleepingcomputer.com·Oct 22, 2024

Hackers exploit Roundcube webmail flaw to steal email, credentials

Internet Archive breached again through stolen access tokens

The Internet Archive was breached again, this time on their Zendesk email support platform after repeated warnings that threat actors stole exposed GitLab authentication tokens.

#bleepingcomputer #EN #2024 #Access-Token #Authentication-Tokens #Data-Breach #GitLab #Internet-Archive #Zendesk

·bleepingcomputer.com·Oct 21, 2024

Internet Archive breached again through stolen access tokens

USDoD hacker behind National Public Data breach arrested in Brazil

A notorious hacker named USDoD, who is linked to the National Public Data and InfraGard breaches, has been arrested by Brazil's Polícia Federal in

#bleepingcomputer #EN #2024 #USDoD #InfoSec #Threat #National #Hacker #InfraGard #Data #Public #Computer #Actor #Security #Breach

·bleepingcomputer.com·Oct 18, 2024

USDoD hacker behind National Public Data breach arrested in Brazil

Jetpack fixes critical information disclosure flaw existing since 2016

WordPress plugin Jetpack released a critical security update earlier today, addressing a vulnerability that allowed a logged-in user to access forms submitted by other visitors to the site.

#bleepingcomputer #2024 #EN #Information #Security #Vulnerability #WordPress #Computer #InfoSec #Plugin #Disclosure #Jetpack

·bleepingcomputer.com·Oct 16, 2024

Jetpack fixes critical information disclosure flaw existing since 2016

Ukrainian pleads guilty to operating Raccoon Stealer malware

Ukrainian national Mark Sokolovsky has pleaded guilty to his involvement in the Raccoon Stealer malware-as-a-service (MaaS) cybercrime operation.

#bleepingcomputer #EN #2024 #guilty #Cybercrime #Information #InfoSec #Raccoon #Mark-Sokolovsky #Stealer #Malware

·bleepingcomputer.com·Oct 14, 2024

Ukrainian pleads guilty to operating Raccoon Stealer malware