Russian APT28 targets government entities in Ukraine in new phishing campaign
The primary purpose of the attack is establishing an SSH tunnel for exfiltrating authentication and other sensitive data.
Cybersecurity News - Page 100
China-lLinked telecom hacks target US officials' phones
The hackers reportedly compromised devices used by prominent political figures, including Vice President Kamala Harris, former President Donald Trump, and Republican vice-presidential candidate JD Vance.
Cyber Security Week in Review: October 25, 2024
In brief: Fortinet FortiManager zero-day, Amazon seizes the domains used by APT29, and more.
New Fortinet FortiManager RCE flaw exploited in zero-day attacks
A threat actor, tracked as UNC5820, has been actively exploiting FortiManager devices since June.
AWS and Azure authentication keys found in popular Android and iOS apps
This issue exposes user data and app source codes to potential unauthorized access, data manipulation, and data theft.
VMware releases additional updates to address recently patched critical bug
The fixes released on September 17 did not fully address CVE-2024-38812, the company said.
Hackers target Ukraine with malicious emails disguised as Amazon and Microsoft integration
The campaign, tracked under the identifier UAC-0215, has been in preparation since at least August 2024.
Four security companies hit with fines over SolarWinds disclosures
Collectively, the four firms will pay over $6.9 million in penalties.
Malicious npm packages attempt to steal Ethereum private keys
The malicious code activates only when the package is actively used.
Over 92K Transak users affected by employee phishing attack
The attackers used the compromised credentials to infiltrate the system of a third-party KYC vendor.
Showing elements 991 - 1000