UK domain registrar Nominet compromised via Ivanti zero-day
The company said that it currently has no evidence of a data breach and that no backdoors were found on its systems.
Cybersecurity News - Page 86
Global police op removes Chinese-backed PlugX malware from thousands of infected computers
The malware campaign has been attributed to a China-backed threat actor tracked as Mustang Panda or Twill Typhoon.
Fortinet firewalls mass exploited, possible zero-day may be involved
The campaign involves unauthorized admin access to the management interfaces of firewalls, creating new accounts, altering configurations, and exploiting VPN services.
Russia-linked cyber espionage campaign targets Kazakhstan
The recent UAC-0063 campaign involves sophisticated spear-phishing attacks leveraging malware strains known as HATVIBE and CHERRYSPY.
Critical Aviatrix Controller flaw exploited to install backdoors and cryptominers
The vulnerability allows attackers to escalate privileges and gain full control of cloud resources.
Over 4K active hacker backdoors found in expiring or abandoned domains
Several of the web shells had been backdoored by their original maintainers, leaking critical information.
Microsoft takes legal action against hackers exploiting AI for malicious purposes
The group accessed generative AI services and manipulated the system to produce harmful content.
US charges operators of Blender and Sinbad cryptomixers
Both mixers were allegedly used by criminals to launder funds tied to theft, ransomware, and other cybercrimes.
Cyber Security Week in Review: January 10, 2025
In brief: Hackers are exploiting Ivanti Connect Secure 0Day flaw, Ukrainian hacktivists breach Russian ISP Nodex, and more.
Ivanti warns of zero-day exploits targeting critical Connect Secure flaw
The flaw allows unauthenticated attackers to execute arbitrary code remotely on vulnerable devices.
Showing elements 851 - 860