Magecart hackers accidentally exposed list of compromised victims
The list was included within the group’s dropper code.
Cybersecurity News - Page 344
Vulnerability summary for the week: December 18, 2020
A weekly vulnerability digest.
Hackers hit US nuclear weapons agency
A DOE spokesperson said that the attackers did not gain access to critical defense systems.
Microsoft’s systems were also affected in recent SolarWinds hack
Microsoft denied the allegations that the threat actor used its production systems to stage attacks on its customers.
SystemBC commodity malware evolves into Tor backdoor
The SystemBC backdoor has been observed in recent Ryuk, Egregor ransomware attacks.
Cybercrooks steal millions of dollars from US, EU banks by spoofing mobile devices
In some cases the fraudsters were observed using more than 20 emulators to spoof over 16,000 mobile devices and access compromised accounts.
Hackers attempted to sell access to SolarWinds computers years before a security breach
A notorious hacker known as “fxmsp” had been offering access to SolarWinds machines in online forums during 2017.
Wormable Gitpaste-12 botnet returns with new capabilities
The botnet is now using at least 31 vulnerabilities in attacks against web applications, IP cameras, and routers.
Research finds over 45M medical images left exposed online
Images typically included up to 200 lines of metadata per record, and could be accessed without the need for login credentials.
Microsoft and tech companies take over C&C domain used in SolarWinds attack
The domain was used to deliver trojanized Orion updates to SolarWinds customers.
Showing elements 3431 - 3440