BeyondTrust December 2024 breach linked to compromised infrastructure API key
The breach was traced back to a third-party application vulnerability that allowed a threat actor to gain access to a BeyondTrust AWS account.
Cybersecurity News - Page 82
WhatsApp claims Israeli spyware targeted journalists and civil society members
The platform said that the attack was a “zero-click” operation.
Backdoor found in widely used Contec CMS8000 patient monitors
CISA urges organizations to disconnect vulnerable Contec CMS8000 devices.
Cyber Security Week in Review: January 31, 2025
In brief: the Cracked and Nulled cybercrime forums shut down, Zyxel zero-day exploited in the wild, and more.
International police operation takes down world’s two largest cybercrime forums
Cracked and Nulled served as hubs for illegal activity, from discussions about cybercrime to the sale of stolen data, malware, and hacking tools.
Unpatched flaw in Zyxel CPE series devices exploited in the wild
The flaw allows unauthenticated attackers to execute arbitrary commands via the vulnerable devices’ ‘supervisor’ or ‘zyuser’ service accounts.
New side-channel attacks SLAP and FLOP targeting Apple silicon processors
In both SLAP and FLOP, attackers can use side-channel techniques to infer data about the CPU's internal state.
Poland accuses Russia of recruiting citizens to influence presidential election
Russia's GRU and its FSB were offering Polish citizens between 3,000 and 4,000 euros to spread disinformation.
UAC-0063 expands operations, targets European embassies with advanced malware
The campaign leverages stolen documents from one compromised victim to infiltrate other high-value targets.
Ongoing phishing campaign targets Poland and Germany with advanced malware
The operation involves well-known malware like Agent Tesla and Snake Keylogger, as well as a previously undocumented backdoor known as TorNet.
Showing elements 811 - 820