Search cyberveille.decio.ch

Found 530 bookmarks

Custom sorting

TrickBot malware operation shuts down, devs move to BazarBackdoor

The TrickBot malware operation has shut down after its core developers move to the Conti ransomware gang to focus development on the stealthy BazarBackdoor and Anchor malware families.

#BazarBackdoor #Conti #Malware #Ransomware #TrickBot #2002 #EN #bleepingcomputer

·bleepingcomputer.com·Feb 26, 2022

TrickBot malware operation shuts down, devs move to BazarBackdoor

Ukraine links phishing targeting military to Belarusian hackers

The Computer Emergency Response Team of Ukraine (CERT-UA) warned today of a spearphishing campaign targeting private email accounts belonging to Ukrainian armed forces personnel.

#bleepingcomputer #Belarus #EN #2022 #cyberwar #Military #Phishing #Ukraine #CERT-UA #UNC1151

·bleepingcomputer.com·Feb 25, 2022

Ukraine links phishing targeting military to Belarusian hackers

New data-wiping malware used in destructive attacks on Ukraine

Cybersecurity firms have found a new data wiper used in destructive attacks today against Ukrainian networks just as Russia moves troops into regions of Ukraine.

#bleepingcomputer #HermeticWiper #Russia #Ukraine #cyberwar #2022 #EN #datawiping

·bleepingcomputer.com·Feb 25, 2022

New data-wiping malware used in destructive attacks on Ukraine

New DeadBolt ransomware targets QNAP devices, asks 50 BTC for master key

A new DeadBolt ransomware group is encrypting QNAP NAS devices worldwide using what they claim is a zero-day vulnerability in the device's software.

#DeadBolt #NAS #QNAP #Ransomware #EN #bleepingcomputer #0-day #2022

·bleepingcomputer.com·Feb 15, 2022

New DeadBolt ransomware targets QNAP devices, asks 50 BTC for master key

[LEAK] Maze + Egregor + Sekhmet keys along with m0yv (expiro) source code

Hello, Its developer. It was decided to release keys to the public for Egregor, Maze, Sekhmet ransomware families. also there is a little bit harmless source code of polymorphic x86/x64 modular EPO file infector m0yv detected in the wild as Win64/Expiro virus, but it is not expiro actually, but AV engines detect it like this, so no single thing in common with...

#leak #Maze #Egregor #Sekhmet #keys #decryptor #EN #forum #bleepingcomputer

·bleepingcomputer.com·Feb 13, 2022

[LEAK] Maze + Egregor + Sekhmet keys along with m0yv (expiro) source code

Google Project Zero: Vendors are now quicker at fixing zero-days

Google's Project Zero has published a report showing that organizations took less time to address the zero-day vulnerabilities that the team reported last year.

#googleprojectzero #EN #0-day #metrics #bleepingcomputer

·bleepingcomputer.com·Feb 11, 2022

Google Project Zero: Vendors are now quicker at fixing zero-days

macOS version of elusive 'LightSpy' spyware tool discovered

A macOS version of the LightSpy surveillance framework has been discovered, confirming the extensive reach of a tool only previously known for targeting Android and iOS devices.

#bleepingcomputer #EN #2024 #Apple #LightSpy #Malware #Spyware

·bleepingcomputer.com·May 30, 2024

macOS version of elusive 'LightSpy' spyware tool discovered

Cybercriminals pose as "helpful" Stack Overflow users to push malware

Cybercriminals are abusing Stack Overflow in an interesting approach to spreading malware—answering users' questions by promoting a malicious PyPi package that installs Windows information-stealing malware.

#bleepingcomputer #EN #2024 #Information-stealing-malware #Packages #PyPI #Python #Stack-OverFlow #pytoileur

·bleepingcomputer.com·May 30, 2024

Cybercriminals pose as "helpful" Stack Overflow users to push malware

New ShrinkLocker ransomware uses BitLocker to encrypt your files

A new ransomware strain called ShrinkLocker creates a new boot partition to encrypt corporate systems using Windows BitLocker.

#bleepingcomputer #EN #2024 #BitLocker #Encryption #Ransomware #ShrinkLocker #Windows #Security #InfoSec #Computer-Security

·bleepingcomputer.com·May 25, 2024

New ShrinkLocker ransomware uses BitLocker to encrypt your files

Hacker defaces spyware app’s site, dumps database and source code

A hacker has defaced the website of the pcTattletale spyware application, found on the booking systems of several Wyndham hotels in the United States, and leaked over a dozen archives containing database and source code data.

#bleepingcomputer #EN #2024 #defaced #pcTattletale #spyware #hacked

·bleepingcomputer.com·May 25, 2024

Hacker defaces spyware app’s site, dumps database and source code

Russian hackers use new Lunar malware to breach a European govt's agencies

Security researchers discovered two previously unseen backdoors dubbed LunarWeb and LunarMail that were used to compromise a European government's diplomatic institutions abroad.

#bleepingcomputer #EN #2024 #APT #Lunar #LunarMail #LunarWeb #Malware #Turla

·bleepingcomputer.com·May 17, 2024

Russian hackers use new Lunar malware to breach a European govt's agencies

PoC exploit released for RCE zero-day in D-Link EXO AX4800 routers

The D-Link EXO AX4800 (DIR-X4860) router is vulnerable to remote unauthenticated command execution that could lead to complete device takeovers by attackers with access to the HNAP port.

#bleepingcomputer #EN #2024 #Authentication-Bypass #D-Link #Exploit #Proof-of-Concept #Remote-Command-Execution #Router #Vulnerability #Zero-Day #Security #InfoSec #Computer-Security

·bleepingcomputer.com·May 14, 2024

PoC exploit released for RCE zero-day in D-Link EXO AX4800 routers

Europol confirms web portal breach, says no operational data stolen

Europol, the European Union's law enforcement agency, confirmed that its Europol Platform for Experts (EPE) portal was breached and is now investigating the incident after a threat actor claimed they stole For Official Use Only (FOUO) documents containing classified data. #Breach #Computer #Data #EPE #Europol #InfoSec #Leak #Security #Theft

#bleepingcomputer #EN #2024 #Europol #Security #EPE #Theft #Leak #InfoSec #Data #Breach #Computer

·bleepingcomputer.com·May 13, 2024

Europol confirms web portal breach, says no operational data stolen

Over 50,000 Tinyproxy servers vulnerable to critical RCE flaw

Nearly 52,000 internet-exposed Tinyproxy instances are vulnerable to CVE-2023-49606, a recently disclosed critical remote code execution (RCE) flaw.

#bleepingcomputer #EN #2024 #CVE-2023-49606 #Tinyproxy

·bleepingcomputer.com·May 12, 2024

Over 50,000 Tinyproxy servers vulnerable to critical RCE flaw

Zscaler takes "test environment" offline after rumors of a breach

Zscaler says that they discovered an exposed

#bleepingcomputer #EN #2024 #Breach #Hacking-Forum #Rumor #Test-Environment #Zscaler

·bleepingcomputer.com·May 9, 2024

Zscaler takes "test environment" offline after rumors of a breach

UK confirms Ministry of Defence payroll data exposed in data breach

The UK Government confirmed today that a threat actor recently breached the country's Ministry of Defence and gained access to part of the Armed Forces payment network.

#bleepingcomputer #EN #2024 #Breach #Ministry-of-Defence #Payroll #UK

·bleepingcomputer.com·May 7, 2024

UK confirms Ministry of Defence payroll data exposed in data breach

French hospital CHC-SV refuses to pay LockBit extortion demand

The Hôpital de Cannes - Simone Veil (CHC-SV) in France announced it received a ransom demand from the Lockbit 3.0 ransomware gang, saying they refuse to pay the ransom.

#bleepingcomputer #EN #2024 #CHC-SV #France #Healthcare #Hospital #LockBit #LockBit-3.0 #Ransomware

·bleepingcomputer.com·May 2, 2024

French hospital CHC-SV refuses to pay LockBit extortion demand

WP Automatic WordPress plugin hit by millions of SQL injection attacks

Hackers have started to target a critical severity vulnerability in the WP Automatic plugin for WordPress to create user accounts with administrative privileges and to plant backdoors for long-term access.

#bleepingcomputer #EN #2024 #Actively-Exploited #Plugin #SQL-Injection #Vulnerability #WordPress #WP-Automatic

·bleepingcomputer.com·Apr 27, 2024

WP Automatic WordPress plugin hit by millions of SQL injection attacks

Okta warns of "unprecedented" credential stuffing attacks on customers

Okta warns of an "unprecedented" spike in credential stuffing attacks targeting its identity and access management solutions, with some customer accounts breached in the attacks.

#bleepingcomputer #EN #2024 #Account-Takeover #Attack #Credential-Stuffing #Okta #warning

·bleepingcomputer.com·Apr 27, 2024

Okta warns of "unprecedented" credential stuffing attacks on customers

Microsoft: APT28 hackers exploit Windows flaw reported by NSA

Microsoft warns that the Russian APT28 threat group exploits a Windows Print Spooler vulnerability to escalate privileges and steal credentials and data using a previously unknown hacking tool called GooseEgg. #APT28 #Computer #Credential #Escalation #Exploit #GooseEgg #InfoSec #NSA #Print #Privilege #Security #Spooler #Theft #Windows

#bleepingcomputer #EN #2024 #NSA #Spooler #Print #Theft #Escalation #Credential #Windows #Privilege #GooseEgg #Exploit #APT28

·bleepingcomputer.com·Apr 22, 2024

Microsoft: APT28 hackers exploit Windows flaw reported by NSA

MITRE says state hackers breached its network via Ivanti zero-days

The MITRE Corporation says a state-backed hacking group breached its systems in January 2024 by chaining two Ivanti VPN zero-days.

#bleepingcomputer #EN #2024 #Breach #Ivanti #MITRE #Zero-Day #Security #InfoSec #Computer-Security

·bleepingcomputer.com·Apr 21, 2024

MITRE says state hackers breached its network via Ivanti zero-days

Ransomware payments drop to record low of 28% in Q1 2024

Ransomware actors have had a rough start this year, as stats from cybersecurity firm Coveware show that the trend of victims declining to pay the cybercriminals continues and has now reached a new record low of 28%.

#bleepingcomputer #EN #2024 #Cybercrime #Extortion #Law-Enforcement #Ransom #Ransomware #stats

·bleepingcomputer.com·Apr 21, 2024

Ransomware payments drop to record low of 28% in Q1 2024

Ivanti warns of critical flaws in its Avalanche MDM solution

Ivanti has released security updates to fix 27 vulnerabilities in its Avalanche mobile device management (MDM) solution, two of them critical heap overflows that can be exploited for remote command execution.

#bleepingcomputer #EN #2024 #Ivanti #Ivanti-Avalanche #Mobile-Device-Management #Remote-Command-Execution #CVE-2024-24996 #CVE-2024-29204

·bleepingcomputer.com·Apr 17, 2024

Ivanti warns of critical flaws in its Avalanche MDM solution

CISA warns of Windows and UnRAR flaws exploited in the wild

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added two more flaws to its catalog of Known Exploited Vulnerabilities, based on evidence of active exploitation.

#bleepingcomputer #EN #2022 #CISA #DogWalk #UnRAR #CVE-2022-34713 #MSDT #CVE-2022-30333

·bleepingcomputer.com·Aug 12, 2022

CISA warns of Windows and UnRAR flaws exploited in the wild

Microsoft links Raspberry Robin malware to Evil Corp attacks

Microsoft has discovered that an access broker it tracks as DEV-0206 uses the Raspberry Robin Windows worm to deploy a malware downloader on networks where it also found evidence of malicious activity matching Evil Corp tactics.

#Evil-Corp #bleepingcomputer #EN #2022 #DEV-206 #DEV-243 #FakeUpdates #Malware #Ransomware #Raspberry-Robin #Worm

·bleepingcomputer.com·Jul 30, 2022

Microsoft links Raspberry Robin malware to Evil Corp attacks

Microsoft finds Raspberry Robin worm in hundreds of Windows networks

Microsoft says that a recently spotted Windows worm has been found on the networks of hundreds of organizations from various industry sectors.

#Bleepingcomputer #EN #2022 #Malware #Microsoft #Raspberry-Robin #raspberryrobin #USB #Windows #Worm #Security #Detection

·bleepingcomputer.com·Jul 3, 2022

Microsoft finds Raspberry Robin worm in hundreds of Windows networks

LockBit 3.0 introduces the first ransomware bug bounty program

The LockBit ransomware operation has released 'LockBit 3.0,' introducing the first ransomware bug bounty program and leaking new extortion tactics and Zcash cryptocurrency payment options.

#bleepingcomputer #EN #2022 #Bug-Bounty #Extortion #LockBit-3.0 #Ransomware #Zcash

·bleepingcomputer.com·Jun 27, 2022

LockBit 3.0 introduces the first ransomware bug bounty program

Conti ransomware finally shuts down data leak, negotiation sites

The Conti ransomware operation has finally shut down its last public-facing infrastructure, consisting of two Tor servers used to leak data and negotiate with victims, closing the final chapter of the notorious cybercrime brand.

#bleepingcomputer #EN #2022 #Conti #Hive #Infrastructure #Ransomware #Shutdown #Tor

·bleepingcomputer.com·Jun 25, 2022

Conti ransomware finally shuts down data leak, negotiation sites

7-zip now supports Windows ‘Mark-of-the-Web’ security feature

7-zip has finally added support for the long-requested 'Mark-of-the-Web' Windows security feature, providing better protection from malicious downloaded files.

#bleepingcomputer #EN #2022 #7-Zip #Mark-of-the-Web #MoTW #Windows #Microsoft

·bleepingcomputer.com·Jun 25, 2022

7-zip now supports Windows ‘Mark-of-the-Web’ security feature

Canada bans Huawei and ZTE from 5G networks over security concerns

The Government of Canada announced its intention to ban the use of Huawei and ZTE telecommunications equipment and services across the country's 5G and 4G networks.

#bleepingcomputer #EN #2022 #5G #Ban #Canada #Huawei #Telecommunications #ZTE

·bleepingcomputer.com·May 21, 2022

Canada bans Huawei and ZTE from 5G networks over security concerns