Cyber Security Week in Review: October 4, 2024
In brief: the US disrupts FSB-linked ColdRiver hackers’ operations, Lockbit and EvilCorp members arrested, and more.
Cybersecurity News - Page 117
Critical Ivanti EPM RCE flaw exploited in the wild
The flaw is an SQL Injection issue that allows a remote attacker to execute arbitrary SQL queries in database.
New China-aligned threat actor CeranaKeeper steals data from Southeast Asian entities
CeranaKeeper is notable for its evolving backdoor techniques, which allow it to evade detection and facilitate extensive data theft.
North Korea’s Andariel hackers caught targeting US firms
Andariel targeted three private US companies, all in industries with no apparent intelligence value.
Cybercriminals hack 5% of Adobe Commerce and Magento stores in CosmicSting attack
Sansec identified seven distinct hacker groups that have been exploiting the CosmicSting bug.
Rackspace hit with ScienceLogic zero-day attack
The breach impacted three of Rackspace’s internal web servers.
Recently patched critical Zimbra vulnerability actively exploited in the wild
Organizations are strongly recommended to patch their Zimbra email servers as soon as possible.
Law enforcement agencies announce more arrests linked to Evil Corp, LockBit gangs
Police arrested four suspects and seized servers critical for LockBit’s infrastructure.
JPCERT/CC shares tips on detecting ransomware attacks via Windows event logs
While older ransomware variants, like WannaCry and Petya, left fewer traces in Windows logs, modern ransomware tends to leave behind clearer footprints.
More than 140,000 phishing websites linked to Sniper Dz' PhaaS platform
While offering free-of-charge model, Sniper Dz collects the victim credentials stolen through phishing campaigns to compensate the costs.
Showing elements 1161 - 1170