Search cyberveille.decio.ch

Found 52 bookmarks

Custom sorting

Ransomware abuses Amazon AWS feature to encrypt S3 buckets

A new ransomware campaign encrypts Amazon S3 buckets using AWS's Server-Side Encryption with Customer Provided Keys (SSE-C) known only to the threat actor, demanding ransoms to receive the decryption key.

#bleepingcomputer #EN #2025 #Encryption #Ransomware #Computer #S3 #Amazon #AES #Security #AWS

·bleepingcomputer.com·Jan 13, 2025

Ransomware abuses Amazon AWS feature to encrypt S3 buckets

Microsoft: macOS bug lets hackers install malicious kernel drivers

Apple recently addressed a macOS vulnerability that allows attackers to bypass System Integrity Protection (SIP) and install malicious kernel drivers by loading third-party kernel extensions. #Apple #Computer #InfoSec #Integrity #Microsoft #Protection #SIP #Security #System #Vulnerability #macOS

#bleepingcomputer #EN #2024 #CVE-2024-44243 #System #macOS #Apple #Security #Integrity #SIP

·bleepingcomputer.com·Jan 13, 2025

Microsoft: macOS bug lets hackers install malicious kernel drivers

Malicious ads push Lumma infostealer via fake CAPTCHA pages

A large-scale malvertising campaign distributed the Lumma Stealer info-stealing malware through fake CAPTCHA verification pages that prompt users to run PowerShell commands to verify they are not a bot.

#bleepingcomputer #EN #2024 #Captcha #ClickFix #Information-Stealer #Lumma #Malvertising #Malware #PowerShell #Security #InfoSec #Computer-Security

·bleepingcomputer.com·Dec 22, 2024

Malicious ads push Lumma infostealer via fake CAPTCHA pages

Ascension: Health data of 5.6 million stolen in ransomware attack

Ascension, one of the largest private U.S. healthcare systems, is notifying over 5.6 million patients and employees that their personal and health data was stolen in a May cyberattack linked to the Black Basta ransomware operation.

#bleepingcomputer #EN #2024 #Ascension #Data-Breach #Healthcare #Ransomware #Security #InfoSec #Computer-Security

·bleepingcomputer.com·Dec 20, 2024

Ascension: Health data of 5.6 million stolen in ransomware attack

Microsoft 365 Admin portal abused to send sextortion emails

The Microsoft 365 Admin Portal is being abused to send sextortion emails, making the emails appear trustworthy and bypassing email security platforms.

#bleepingcomputer #EN #2024 #Email #Extortion #Mail-Filters #Microsoft-365 #Microsoft-365-Admin-Portal #Sextortion #Security #InfoSec #Computer-Security

·bleepingcomputer.com·Nov 20, 2024

Microsoft 365 Admin portal abused to send sextortion emails

T-Mobile confirms it was hacked in recent wave of telecom breaches

T-Mobile confirms it was hacked in the wave of recently reported telecom breaches conducted by Chinese threat actors to gain access to private communications, call records, and law enforcement information requests.

#bleepingcomputer #EN #2024 #China #Cyber-espionage #Cyberattack #Salt-Typhoon #T-Mobile #Telecommunications #Security #InfoSec #Computer-Security

·bleepingcomputer.com·Nov 16, 2024

T-Mobile confirms it was hacked in recent wave of telecom breaches

D-Link won’t fix critical flaw affecting 60,000 older NAS devices

More than 60,000 D-Link network-attached storage devices that have reached end-of-life are vulnerable to a command injection vulnerability with a publicly available exploit.

#bleepingcomputer #EN #2024 #Command-Injection #D-Link #Exploit #Hardware #NAS #PoC #Proof-of-Concept #Security #InfoSec #Computer-Security

·bleepingcomputer.com·Nov 11, 2024

D-Link won’t fix critical flaw affecting 60,000 older NAS devices

Meet Interlock — The new ransomware targeting FreeBSD servers

A relatively new ransomware operation named Interlock attacks organizations worldwide, taking the unusual approach of creating an encryptor to target FreeBSD servers.

#bleepingcomputer #EN #2024 #Data-Leak-Site #Encryptor #Extortion #FreeBSD #Interlock #Ransomware #Security #InfoSec #Computer-Security

·bleepingcomputer.com·Nov 11, 2024

Meet Interlock — The new ransomware targeting FreeBSD servers

DocuSign's Envelopes API abused to send realistic fake invoices

Threat actors are abusing DocuSign's Envelopes API to create and mass-distribute fake invoices that appear genuine, impersonating well-known brands like Norton and PayPal.

#bleepingcomputer #EN #2024 #API #DocuSign #Invoice #Phishing #Signature #Security #InfoSec #Computer-Security

·bleepingcomputer.com·Nov 11, 2024

DocuSign's Envelopes API abused to send realistic fake invoices

Nokia says hackers leaked third-party app source code

Nokia's investigation of recent claims of a data breach found that the source code leaked on a hacker forum belongs to a third party and company and customer data has not been impacted.

#bleepingcomputer #EN #2024 #Data-Leak #Nokia #Source-Code #Telecommunications #Third-Party-Data-Breach #Security #InfoSec #Computer-Security

·bleepingcomputer.com·Nov 11, 2024

Nokia says hackers leaked third-party app source code

Schneider Electric confirms dev platform breach after hacker steals data

Schneider Electric has confirmed a developer platform was breached after a threat actor claimed to steal 40GB of data from the company's JIRA server.

#bleepingcomputer #EN #2024 #Data-Breach #Developer-Environment #Jira #Schneider-Electric #Security #InfoSec #Computer-Security

·bleepingcomputer.com·Nov 4, 2024

Schneider Electric confirms dev platform breach after hacker steals data

USDoD hacker behind National Public Data breach arrested in Brazil

A notorious hacker named USDoD, who is linked to the National Public Data and InfraGard breaches, has been arrested by Brazil's Polícia Federal in

#bleepingcomputer #EN #2024 #USDoD #InfoSec #Threat #National #Hacker #InfraGard #Data #Public #Computer #Actor #Security #Breach

·bleepingcomputer.com·Oct 18, 2024

USDoD hacker behind National Public Data breach arrested in Brazil

Jetpack fixes critical information disclosure flaw existing since 2016

WordPress plugin Jetpack released a critical security update earlier today, addressing a vulnerability that allowed a logged-in user to access forms submitted by other visitors to the site.

#bleepingcomputer #2024 #EN #Information #Security #Vulnerability #WordPress #Computer #InfoSec #Plugin #Disclosure #Jetpack

·bleepingcomputer.com·Oct 16, 2024

Jetpack fixes critical information disclosure flaw existing since 2016

Ivanti warns of three more CSA zero-days exploited in attacks

American IT software company Ivanti has released security updates to fix three new Cloud Services Appliance (CSA) zero-days tagged as actively exploited in attacks.

#bleepingcomputer #EN #2024 #Bypass #Ivanti #Code #Command #Actively #Remote #Services #Exploited #Injection #Execution #Security #Zero-Day #CSA #Cloud #Appliance #CVE-2024-9379 #CVE-2024-9380 #CVE-2024-9381

·bleepingcomputer.com·Oct 8, 2024

Ivanti warns of three more CSA zero-days exploited in attacks

Critical flaw in NVIDIA Container Toolkit allows full host takeover

A critical vulnerability in NVIDIA Container Toolkit impacts all AI applications in a cloud or on-premise environment that rely on it to access GPU resources.

#bleepingcomputer #EN #2024 #AI #Artificial-Intelligence #Cloud #Cloud-Security #Container-Escape #NVIDIA #Vulnerability #Security #InfoSec #Computer-Security

·bleepingcomputer.com·Oct 1, 2024

Critical flaw in NVIDIA Container Toolkit allows full host takeover

Sextortion scams now use your "cheating" spouse’s name as a lure

A new variant of the ongoing sextortion email scams is now targeting spouses, saying that their husband or wife is cheating on them, with links to the alleged proof.

#bleepingcomputer #EN #2024 #Cheating #Spouse #Extortion #Security #Sextortion

·bleepingcomputer.com·Sep 9, 2024

Sextortion scams now use your "cheating" spouse’s name as a lure

Litespeed Cache bug exposes millions of WordPress sites to takeover attacks

A critical vulnerability in the LiteSpeed Cache WordPress plugin can let attackers take over millions of websites after creating rogue admin accounts. #Admin #Cache #Computer #InfoSec #LiteSpeed #Plugin #Security #Takeover #Website #WordPress

#bleepingcomputer #EN #2024 #Plugin #Computer #LiteSpeed #InfoSec #Takeover #WordPress #Cache #Security #Website #Admin

·bleepingcomputer.com·Aug 21, 2024

Litespeed Cache bug exposes millions of WordPress sites to takeover attacks

Google ads push fake Google Authenticator site installing malware

Google has fallen victim to its own ad platform, allowing threat actors to create fake Google Authenticator ads that push the DeerStealer information-stealing malware.

#bleepingcomputer #EN #2024 #Malvertising #Security #Authenticator #Info #Stealer #Malware #Google

·bleepingcomputer.com·Jul 31, 2024

Google ads push fake Google Authenticator site installing malware

Microsoft finds Raspberry Robin worm in hundreds of Windows networks

Microsoft says that a recently spotted Windows worm has been found on the networks of hundreds of organizations from various industry sectors.

#Bleepingcomputer #EN #2022 #Malware #Microsoft #Raspberry-Robin #raspberryrobin #USB #Windows #Worm #Security #Detection

·bleepingcomputer.com·Jul 3, 2022

Microsoft finds Raspberry Robin worm in hundreds of Windows networks

New ShrinkLocker ransomware uses BitLocker to encrypt your files

A new ransomware strain called ShrinkLocker creates a new boot partition to encrypt corporate systems using Windows BitLocker.

#bleepingcomputer #EN #2024 #BitLocker #Encryption #Ransomware #ShrinkLocker #Windows #Security #InfoSec #Computer-Security

·bleepingcomputer.com·May 25, 2024

New ShrinkLocker ransomware uses BitLocker to encrypt your files

PoC exploit released for RCE zero-day in D-Link EXO AX4800 routers

The D-Link EXO AX4800 (DIR-X4860) router is vulnerable to remote unauthenticated command execution that could lead to complete device takeovers by attackers with access to the HNAP port.

#bleepingcomputer #EN #2024 #Authentication-Bypass #D-Link #Exploit #Proof-of-Concept #Remote-Command-Execution #Router #Vulnerability #Zero-Day #Security #InfoSec #Computer-Security

·bleepingcomputer.com·May 14, 2024

PoC exploit released for RCE zero-day in D-Link EXO AX4800 routers

Europol confirms web portal breach, says no operational data stolen

Europol, the European Union's law enforcement agency, confirmed that its Europol Platform for Experts (EPE) portal was breached and is now investigating the incident after a threat actor claimed they stole For Official Use Only (FOUO) documents containing classified data. #Breach #Computer #Data #EPE #Europol #InfoSec #Leak #Security #Theft

#bleepingcomputer #EN #2024 #Europol #Security #EPE #Theft #Leak #InfoSec #Data #Breach #Computer

·bleepingcomputer.com·May 13, 2024

Europol confirms web portal breach, says no operational data stolen

MITRE says state hackers breached its network via Ivanti zero-days

The MITRE Corporation says a state-backed hacking group breached its systems in January 2024 by chaining two Ivanti VPN zero-days.

#bleepingcomputer #EN #2024 #Breach #Ivanti #MITRE #Zero-Day #Security #InfoSec #Computer-Security

·bleepingcomputer.com·Apr 21, 2024

MITRE says state hackers breached its network via Ivanti zero-days

Microsoft finds Raspberry Robin worm in hundreds of Windows networks

Microsoft says that a recently spotted Windows worm has been found on the networks of hundreds of organizations from various industry sectors.

#Bleepingcomputer #EN #2022 #Malware #Microsoft #Raspberry-Robin #raspberryrobin #USB #Windows #Worm #Security #Detection

·bleepingcomputer.com·Jul 3, 2022

Microsoft finds Raspberry Robin worm in hundreds of Windows networks

Targus discloses cyberattack after hackers detected on file servers

Laptop and tablet accessories maker Targus disclosed that it suffered a cyberattack disrupting operations after a threat actor gained access to the company's file servers.

#bleepingcomputer #EN #2024 #Mobile #InfoSec #Security #Targus #cyberattack

·bleepingcomputer.com·Apr 14, 2024

Targus discloses cyberattack after hackers detected on file servers

Ivanti fixes VPN gateway vulnerability allowing RCE, DoS attacks

IT security software company Ivanti has released patches to fix multiple security vulnerabilities impacting its Connect Secure and Policy Secure gateways.

#bleepingcomputer #EN #2024 #Connect-Secure #Denial-of-Service #DoS #Ivanti #Policy-Secure #RCE #Remote-Code-Execution #Security #InfoSec #Computer-Security

·bleepingcomputer.com·Apr 4, 2024

Ivanti fixes VPN gateway vulnerability allowing RCE, DoS attacks

Microsoft finds Raspberry Robin worm in hundreds of Windows networks

Microsoft says that a recently spotted Windows worm has been found on the networks of hundreds of organizations from various industry sectors.

#Bleepingcomputer #EN #2022 #Malware #Microsoft #Raspberry-Robin #raspberryrobin #USB #Windows #Worm #Security #Detection

·bleepingcomputer.com·Jul 3, 2022

Microsoft finds Raspberry Robin worm in hundreds of Windows networks

Finland confirms APT31 hackers behind 2021 parliament breach

The Finnish Police confirmed on Tuesday that the APT31 hacking group linked to the Chinese Ministry of State Security (MSS) was behind a breach of the country's parliament disclosed in March 2021.

#bleepingcomputer #EN #2024 #APT31 #China #Finland #Security #InfoSec #Computer-Security

·bleepingcomputer.com·Mar 27, 2024

Finland confirms APT31 hackers behind 2021 parliament breach

Ivanti fixes critical Standalone Sentry bug reported by NATO

Ivanti warned customers to immediately patch a critical severity Standalone Sentry vulnerability reported by NATO Cyber Security Centre researchers.

#bleepingcomputer #EN #2024 #Ivanti #NATO #Vulnerability #Security #InfoSec #Computer-Security

·bleepingcomputer.com·Mar 20, 2024

Ivanti fixes critical Standalone Sentry bug reported by NATO

Microsoft finds Raspberry Robin worm in hundreds of Windows networks

Microsoft says that a recently spotted Windows worm has been found on the networks of hundreds of organizations from various industry sectors.

#Bleepingcomputer #EN #2022 #Malware #Microsoft #Raspberry-Robin #raspberryrobin #USB #Windows #Worm #Security #Detection

·bleepingcomputer.com·Jul 3, 2022

Microsoft finds Raspberry Robin worm in hundreds of Windows networks