UK’s Electoral Commission reprimanded for August 2021 breach
The commission failed to patch its on-premise Microsoft Exchange Server against the ProxyShell flaws.
Cybersecurity News - Page 115
Threat actors target Polish businesses with Agent Tesla and Formbook malware
Nine significant ModiLoader phishing campaigns were detected in May 2024.
Cybercriminals exploit recently patched VMware ESXi flaw to deploy ransomware
CVE-2024-37085 allows attackers to obtain full administrative permissions on domain-joined ESXi hypervisors.
SideWinder cyber spies shift focus to ports and maritime facilities in the Mediterranean Sea
The group employs a variety of techniques to evade detection and deliver the implants.
Gemini crypto exchange discloses data breach involving banking info
A threat actor gained access to an internal collaboration tool on the bank partner’s system.
Hackers bypass Google Workspace authentication, exposing thousands of accounts
Hackers managed to bypass verification, enabling unauthorized access to third-party services through Google’s single sign-on system.
Hive0137 email spammer is now using AI to bolster its phishing campaigns
Additionally, Hive0137 appears to use Generative AI for creating its tooling.
SeleniumGreed campaign exploits Selenium servers to mine cryptocurrency
The threat actor uses a modified XMRig miner packed with custom UPX headers.
Cyber Security Week in Review: July 26, 2024
In brief: A North Korean hacker indicted for ransomware attacks, French police dismantle the PlugX botnet, and more.
Stargazer Goblin launch malware distribution-as-a-service via GitHub
The operation is using over 3,000 fake GitHub accounts.
Showing elements 1141 - 1150