Cybersecurity News - Page 245

The vulnerability could have been used to hijack over a hundred million of requests to distribute malicious dependencies and compromise millions of servers.

Sebastian Vachon-Desjardins was extradited from Canada to the United States in March 2022.

The threat actors leveraged the Impacket toolkit to gain a foothold within the environment, and used the custom CovalentStealer malware to exfiltrate sensitive data.

Microsoft has yet to release security updates to fix the bugs.

The campaign involved malware that was deployed via a trojanized installer for the Comm100 Live Chat app signed using a valid Comm100 certificate.

Unpatched Microsoft Exchange zero-days exploited in hacker attacks, Meta dismantles a sprawling Russia-linked disinformation network, and more.

The campaign reportedly targeted a strategic supplier to the F-35 Lightning II fighter aircraft.

The builder includes a configuration file that can easily be customized to use different ransom notes, statistics servers, and features, allowing anyone to create their own ransomware.

The campaign was one of the largest and most complex operations Meta has disrupted since the start of the Russia’s invasion of Ukraine.

Lazarus has been using lures for attractive job offers in a number of campaigns since at least 2020.