The UK National Crime Agency discovers over 500 million stolen passwords online
The agency handed over a total of 585,570,857 passwords to the Have I Been Pwned service, of which 225,665,425 were found to be unique.
Cybersecurity News - Page 283
FBI warns of APT hackers actively exploiting new Zoho zero-day
The zero-day bug is a critical authentication bypass vulnerability attackers could exploit to execute arbitrary code on vulnerable Desktop Central servers.
Meta takes legal action against people behind Facebook, Messenger, Instagram and WhatsApp phishing attacks
The attackers used a relay service Ngrok to redirect internet traffic to the phishing websites.
Hackers breached Belgian Defense Ministry’s network using Log4j flaw
It is unclear who the perpetrator behind the attack is.
Conti ransomware group targets vulnerable VMware vCenter servers using Log4Shell exploit
It is only a matter of time until Conti and possibly other groups will begin exploiting the Log4j flaw to the fullest, the researchers warned.
Clop ransomware gang leaks confidential UK police data on the dark web
The data was reportedly obtained during a phishing attack on an IT firm Dacoll, which provides a 'critical' service for the UK's police forces.
Apache releases a new patch to fix yet another high-risk Log4j vulnerability
The new bug impacts all Log4j versions from 2.0-beta9 to 2.16.0.
FBI believes HelloKitty ransomware gang operates out of Ukraine
While HelloKitty has been in operation since January 2021, details about the group’s likely location were not previously disclosed.
Suspected Iranian cyber spies are abusing Slack API to evade detection
The malicious actor’s activity started in 2019 and targeted an unnamed Asian airline.
Microsoft: State-sponsored hackers from China, Iran, North Korea and Turkey target the Log4Shell bug
Threat actors linked to the Log4Shell attacks include the Iran-linked APT group PHOSPHORUS, and China-linked HAFNIUM APT.
Showing elements 2821 - 2830