#bleepingcomputer

Fog ransomware targets SonicWall VPNs to breach corporate networks

Fog and Akira ransomware operators have increased their exploitation efforts of CVE-2024-40766, a critical access control flaw that allows unauthorized access to resources on the SSL VPN feature of SonicWall SonicOS firewalls.

#bleepingcomputer #EN #2024 #Akira #CVE-2024-40766 #Firewall #Fog-Ransomware #SonicWall #SSL-VPN

·bleepingcomputer.com·Oct 27, 2024

Fog ransomware targets SonicWall VPNs to breach corporate networks

Hackers exploit Roundcube webmail flaw to steal email, credentials

Threat actors have been exploiting a vulnerability in the Roundcube Webmail client to target government organizations in the Commonwealth of Independent States (CIS) region, the successor of the former Soviet Union.

#bleepingcomputer #EN #2024 #Actively-Exploited #CVE-2024-37383 #Cross-Site-Scripting #Email #Roundcube #Vulnerability #XSS

·bleepingcomputer.com·Oct 22, 2024

Hackers exploit Roundcube webmail flaw to steal email, credentials

Internet Archive breached again through stolen access tokens

The Internet Archive was breached again, this time on their Zendesk email support platform after repeated warnings that threat actors stole exposed GitLab authentication tokens.

#bleepingcomputer #EN #2024 #Access-Token #Authentication-Tokens #Data-Breach #GitLab #Internet-Archive #Zendesk

·bleepingcomputer.com·Oct 21, 2024

Internet Archive breached again through stolen access tokens

USDoD hacker behind National Public Data breach arrested in Brazil

A notorious hacker named USDoD, who is linked to the National Public Data and InfraGard breaches, has been arrested by Brazil's Polícia Federal in

#bleepingcomputer #EN #2024 #USDoD #InfoSec #Threat #National #Hacker #InfraGard #Data #Public #Computer #Actor #Security #Breach

·bleepingcomputer.com·Oct 18, 2024

USDoD hacker behind National Public Data breach arrested in Brazil

Jetpack fixes critical information disclosure flaw existing since 2016

WordPress plugin Jetpack released a critical security update earlier today, addressing a vulnerability that allowed a logged-in user to access forms submitted by other visitors to the site.

#bleepingcomputer #2024 #EN #Information #Security #Vulnerability #WordPress #Computer #InfoSec #Plugin #Disclosure #Jetpack

·bleepingcomputer.com·Oct 16, 2024

Jetpack fixes critical information disclosure flaw existing since 2016

Ukrainian pleads guilty to operating Raccoon Stealer malware

Ukrainian national Mark Sokolovsky has pleaded guilty to his involvement in the Raccoon Stealer malware-as-a-service (MaaS) cybercrime operation.

#bleepingcomputer #EN #2024 #guilty #Cybercrime #Information #InfoSec #Raccoon #Mark-Sokolovsky #Stealer #Malware

·bleepingcomputer.com·Oct 14, 2024

Ukrainian pleads guilty to operating Raccoon Stealer malware

Dutch police arrest admin of 'Bohemia/Cannabia' dark web market

An international law enforcement operation led to the arrest of one of the three administrators of the dual dark web market 'Bohemia/Cannabia,' known for hosting ads for drug sales and distributed denial of service (DDoS) attacks.

#bleepingcomputer #EN #2024 #Bohemia/Cannabia #busted #Arrest #Dark #Bohemia #Dutch #Cannabia #Web #Legal #Police #Politie

·bleepingcomputer.com·Oct 14, 2024

Dutch police arrest admin of 'Bohemia/Cannabia' dark web market

Microsoft deprecates PPTP and L2TP VPN protocols in Windows Server

Microsoft has officially deprecated the Point-to-Point Tunneling Protocol (PPTP) and Layer 2 Tunneling Protocol (L2TP) in future versions of Windows Server, recommending admins switch to different protocols that offer increased security. #Deprecated #L2TP #Microsoft #PPTP #Server #VPN #Windows

#bleepingcomputer #EN #2024 #Windows #Microsoft #PPTP #L2TP #Server #VPN #Deprecated

·bleepingcomputer.com·Oct 13, 2024

Microsoft deprecates PPTP and L2TP VPN protocols in Windows Server

Internet Archive hacked, data breach impacts 31 million users

Internet Archive's "The Wayback Machine" has suffered a data breach after a threat actor compromised the website and stole a user authentication database containing 31 million unique records. News of the breach began circulating Wednesday afternoon after visitors to archive.org began seeing a JavaScript alert created by the hacker, stating that the Internet Archive was breached.

#bleepingcomputer #EN #2024 #Wayback #Machine #Archive #Breach #Archive.org

·bleepingcomputer.com·Oct 10, 2024

Internet Archive hacked, data breach impacts 31 million users

Ivanti warns of three more CSA zero-days exploited in attacks

American IT software company Ivanti has released security updates to fix three new Cloud Services Appliance (CSA) zero-days tagged as actively exploited in attacks.

#bleepingcomputer #EN #2024 #Bypass #Ivanti #Code #Command #Actively #Remote #Services #Exploited #Injection #Execution #Security #Zero-Day #CSA #Cloud #Appliance #CVE-2024-9379 #CVE-2024-9380 #CVE-2024-9381

·bleepingcomputer.com·Oct 8, 2024

Ivanti warns of three more CSA zero-days exploited in attacks

Recently patched CUPS flaw can be used to amplify DDoS attacks

A recently disclosed vulnerability in the Common Unix Printing System (CUPS) open-source printing system can be exploited by threat actors to launch distributed denial-of-service (DDoS) attacks with a 600x amplification factor.

#bleepingcomputer #CUPS #DDoS #Denial-of-Service #Distributed-Denial-of-Service #DoS-Amplification

·bleepingcomputer.com·Oct 4, 2024

Recently patched CUPS flaw can be used to amplify DDoS attacks

Dutch Police: ‘State actor’ likely behind recent data breach

The national Dutch police (Politie) says that a state actor was likely behind the data breach it detected last week.

#bleepingcomputer #EN #2024 #Data-Breach #Dutch-Police #Netherlands #Police #Politie #State-Sponsored

·bleepingcomputer.com·Oct 4, 2024

Dutch Police: ‘State actor’ likely behind recent data breach

Critical flaw in NVIDIA Container Toolkit allows full host takeover

A critical vulnerability in NVIDIA Container Toolkit impacts all AI applications in a cloud or on-premise environment that rely on it to access GPU resources.

#bleepingcomputer #EN #2024 #AI #Artificial-Intelligence #Cloud #Cloud-Security #Container-Escape #NVIDIA #Vulnerability #Security #InfoSec #Computer-Security

·bleepingcomputer.com·Oct 1, 2024

Critical flaw in NVIDIA Container Toolkit allows full host takeover

Critical Ivanti vTM auth bypass bug now exploited in attacks

CISA has tagged another critical Ivanti security vulnerability, which can let threat actors create rogue admin users on vulnerable Virtual Traffic Manager (vTM) appliances, as actively exploited in attacks.

#bleepingcomputer #EN #2024 #Authentication-Bypass #Bypass #CISA #Exploit #Ivanti #PoC

·bleepingcomputer.com·Sep 24, 2024

Critical Ivanti vTM auth bypass bug now exploited in attacks

Microsoft ends development of Windows Server Update Services (WSUS)

Microsoft has officially announced that Windows Server Update Services (WSUS) is now deprecated, but plans to maintain current functionality and continue publishing updates through the channel.

#bleepingcomputer #EN #2024 #Deprecated #Deprecation #Windows #Windows-Server-Update-Services #WSUS #Microsoft

·bleepingcomputer.com·Sep 22, 2024

Microsoft ends development of Windows Server Update Services (WSUS)

Clever 'GitHub Scanner' campaign abusing repos to push malware

A clever threat campaign is abusing GitHub repositories to distribute malware targeting users who frequent an open source project repository or are subscribed to email notifications from it. A malicious GitHub user opens a new

#bleepingcomputer #EN #2024 #GitHub #Malware #Phishing

·bleepingcomputer.com·Sep 19, 2024

Clever 'GitHub Scanner' campaign abusing repos to push malware

Europol takes down "Ghost" encrypted messaging platform used for crime

Europol and law enforcement from nine countries successfully dismantled an encrypted communications platform called

#bleepingcomputer #EN #2024 #Arrest #Encrypted-Messaging #Europol #Ghost #Legal

·bleepingcomputer.com·Sep 18, 2024

Europol takes down "Ghost" encrypted messaging platform used for crime

UK arrests teen linked to Transport for London cyber attack

U.K.'s National Crime Agency says it arrested a 17-year-old teenager who is suspected of being connected to the cyberattack on Transport for London, the city's public transportation agency.

#bleepingcomputer #EN #2024 #Arrest #Cyberattack #London #Teenager #TfL #Transport-for-London #United-Kingdom #UK

·bleepingcomputer.com·Sep 14, 2024

UK arrests teen linked to Transport for London cyber attack

RansomHub claims Kawasaki cyberattack, threatens to leak stolen data

Kawasaki Motors Europe has announced that it's recovering from a cyberattack that caused service disruptions as the RansomHub ransomware gang threatens to leak stolen data.

#bleepingcomputer #EN #2024 #Data-Breach #Kawasaki #RansomHub #Ransomware

·bleepingcomputer.com·Sep 14, 2024

RansomHub claims Kawasaki cyberattack, threatens to leak stolen data

Critical SonicWall SSLVPN bug exploited in ransomware attacks

Ransomware affiliates exploit a critical security vulnerability in SonicWall SonicOS firewall devices to breach victims' networks.

#bleepingcomputer #EN #2024 #SonicWall #SSLVPN #bug #CVE-2024-40766

·bleepingcomputer.com·Sep 10, 2024

Critical SonicWall SSLVPN bug exploited in ransomware attacks

Sextortion scams now use your "cheating" spouse’s name as a lure

A new variant of the ongoing sextortion email scams is now targeting spouses, saying that their husband or wife is cheating on them, with links to the alleged proof.

#bleepingcomputer #EN #2024 #Cheating #Spouse #Extortion #Security #Sextortion

·bleepingcomputer.com·Sep 9, 2024

Sextortion scams now use your "cheating" spouse’s name as a lure

Progress LoadMaster vulnerable to 10/10 severity RCE flaw

Progress Software has issued an emergency fix for a maximum (10/10) severity vulnerability impacting its LoadMaster and LoadMaster Multi-Tenant (MT) Hypervisor products that allows attackers to remotely execute commands on the device.

#bleepingcomputer #EN #2024 #LoadMaster #Progress-Software #RCE #Remote-Command-Execution #Vulnerability

·bleepingcomputer.com·Sep 8, 2024

Progress LoadMaster vulnerable to 10/10 severity RCE flaw

D-Link says it is not fixing four RCE flaws in DIR-846W routers

D-Link is warning that four remote code execution (RCE) flaws impacting all hardware and firmware versions of its DIR-846W router will not be fixed as the products are no longer supported.

#bleepingcomputer #EN #2024 #D-Link #End-of-Life #End-of-Service #Hardware #RCE #Remote-Code-Execution #Vulnerability #DIR-846W

·bleepingcomputer.com·Sep 7, 2024

D-Link says it is not fixing four RCE flaws in DIR-846W routers

Veeam warns of critical RCE flaw in Backup & Replication software

Veeam has released security updates for several of its products as part of a single September 2024 security bulletin that addresses 18 high and critical severity flaws in Veeam Backup & Replication, Service Provider Console, and One.

#bleepingcomputer #EN #2024 #RCE #Remote-Code-Execution #Veeam #Veeam-Backup-&-Replication #Veeam-ONE #Vulnerability

·bleepingcomputer.com·Sep 6, 2024

Veeam warns of critical RCE flaw in Backup & Replication software

Cisco warns of backdoor admin account in Smart Licensing Utility

Cisco has removed a backdoor account in the Cisco Smart Licensing Utility (CSLU) that can be used to log into unpatched systems with administrative privileges.

#bleepingcomputer #EN #2024 #Backdoor #Cisco #Smart-Licensing-Utility

·bleepingcomputer.com·Sep 4, 2024

Cisco warns of backdoor admin account in Smart Licensing Utility

Admins of MFA bypass service plead guilty to fraud

Three men have pleaded guilty to running OTP.Agency, an online platform that provided social engineering help to obtain one-time passcodes from customers of various banks and services in the U.K.

#bleepingcomputer #EN #2024 #Cybercrime #Legal #Multi-Factor-Authentication #One-time-Password #OTP #OTP.Agency #MFA

·bleepingcomputer.com·Sep 3, 2024

Admins of MFA bypass service plead guilty to fraud

Docker-OSX image used for security research hit by Apple DMCA takedown

The popular Docker-OSX project has been removed from Docker Hub after Apple filed a DMCA (Digital Millennium Copyright Act) takedown request, alleging that it violated its copyright.

#bleepingcomputer #EN #2024 #Apple #DMCA #Docker-Hub #Legal #macOS

·bleepingcomputer.com·Sep 2, 2024

Docker-OSX image used for security research hit by Apple DMCA takedown

Fake Palo Alto GlobalProtect used as lure to backdoor enterprises

Threat actors target Middle Eastern organizations with malware disguised as the legitimate Palo Alto GlobalProtect Tool that can steal data and execute remote PowerShell commands to infiltrate internal networks further.

#bleepingcomputer #EN #2024 #fake #Malware #Middle-East #Palo-Alto-Networks

·bleepingcomputer.com·Aug 30, 2024

Fake Palo Alto GlobalProtect used as lure to backdoor enterprises

Litespeed Cache bug exposes millions of WordPress sites to takeover attacks

A critical vulnerability in the LiteSpeed Cache WordPress plugin can let attackers take over millions of websites after creating rogue admin accounts. #Admin #Cache #Computer #InfoSec #LiteSpeed #Plugin #Security #Takeover #Website #WordPress

#bleepingcomputer #EN #2024 #Plugin #Computer #LiteSpeed #InfoSec #Takeover #WordPress #Cache #Security #Website #Admin

·bleepingcomputer.com·Aug 21, 2024

Litespeed Cache bug exposes millions of WordPress sites to takeover attacks

Toyota confirms breach after stolen data leaks on hacking forum

Toyota confirmed that its network was breached after a threat actor leaked an archive of 240GB of data stolen from the company's systems on a hacking forum.

#bleepingcomputer #EN #2024 #Data-Breach #Data-Leak #Toyota

·bleepingcomputer.com·Aug 20, 2024

Toyota confirms breach after stolen data leaks on hacking forum