Cybersecurity News - Page 203

The world in brief: Microsoft, Apple fix zero-days in their products, hackers leak 528GB of data allegedly stolen from MSI, and more.

BlackLotus comes with a slew of features, including anti-virtualization, anti-debugging, and code obfuscation, and can disable security applications and defense mechanisms on target machines.

The exploit appears to abuse invisible iCloud calendar invitations sent from the spyware’s operator to victim.

Hackers are also targeting US defense manufacturers and logistical transport companies to obtain information on the weapons supply chain to Ukraine.

The program will provide cash rewards depending on the severity of the bugs reported, starting at $200 per vulnerability.

The zero-day is said to have been exploited by threat actors to deploy Nokoyawa ransomware payloads.

Ares Leaks has been gaining notoriety in recent months for selling and leaking databases stolen from corporations and public authorities.

Following the incident, the company blocked deposit and withdrawal system and all related servers.

The hackers also gained access to Morgachev’s AliExpress account and ordered several dozen different items, including adult toys.

The threat actor abused highly privileged compromised credentials to perform encryption of on-premise devices and large-scale deletion of cloud resources.