From cybersafe.news
0 1
Russian authorities have sentenced Stanislav Moiseyev, the leader of the criminal group behind the infamous dark web platform Hydra Market, to life in prison. Moiseyev, described as the "organizer" of the operation, was also fined 4 million rubles. Along with him, more than a dozen accomplices...
on Wed, 1AM
From cybersafe.news
Interpol busts African Cybercrime | Cybersafe News Interpol busts African Cybercrime
0 0
An Interpol-led operation has led to the arrest of 1,006 suspects across 19 African countries and 134,089 malicious infrastructures and networks were taken down as part of a coordinated effort to disrupt cybercrime in Africa. The law enforcement operation dubbed Serengeti, took place between...
on Nov 27
From cybersafe.news
0 0
Meta has announced that it has taken down over 2 million accounts linked to cyber crime activities, particularly focusing on schemes like ‘pig butchering.’ ‘Pig butchering’ is a notorious scam where fraudsters build trust with victims online, and then manipulate them into investing more money...
on Nov 25
From cybersafe.news
0 0
German police shut down DDoS-for-hire platform Dstat.cc and arrested two men accused of operating the site used for launching DDoS attacks. Two men, aged 19 and 28 from Darmstadt and Rhein-Lahn, were arrested in Germany for allegedly managing criminal infrastructure used for DDoS attacks and...
on Nov 5
From cybersafe.news
0 0
Researchers at Google said that they have discovered the first vulnerability using a large language model which is an exploitable stack buffer underflow in SQLite. According to a blog post, Google said it believes the bug is the first public example of an AI tool finding a previously unknown...
on Nov 4
From cybersafe.news
0 0
The Bumblebee malware loader was found in recent attacks after Europol disrupted it during 'Operation Endgame' in May. The malware, believed to be the creation of TrickBot developers, emerged in 2022 as a replacement for the BazarLoader backdoor to provide ransomware threat actors access to...
on Oct 23
From cybersafe.news
0 0
Google’s Threat Analysis Group researchers warn of a Samsung zero-day vulnerability that is actively exploited in the wild. The vulnerability tracked as CVE-2024-44068 (CVSS score of 8.1) is a use-after-free issue, which could be exploited to escalate privileges on a vulnerable Android device. A...
on Oct 23
From cybersafe.news
0 0
Cloudflare disclosed that it mitigated a record-breaking distributed denial-of-service (DDoS) attack that peaked at 3.8 terabits per second (Tbps) which lasted 65 seconds. The company has fended off more than one hundred hyper-volumetric DDoS attacks throughout the month, with most of the...
on Oct 4
From cybersafe.news
0 0
The Japanese video-sharing platform, Niconico, was forced to temporarily suspend its services following a large-scale cyberattack on June 8th. In response to the incident, the company temporarily suspended Niconico Family Services such as Niconico Video, Niconico Live Broadcast, Niconico...
on Jun 24
From cybersafe.news
0 0
Semiconductor and software design company Arm warns of an actively exploited zero-day vulnerability tracked as CVE-2024-4610, in Mali GPU Kernel Driver. The vulnerability is a use-after-free issue that impacts Bifrost GPU Kernel Driver (all versions from r34p0 to r40p0) and Valhall GPU Kernel...
on Jun 24
From cybersafe.news
0 0
Ticketmaster parent company Live Nation has confirmed that internal data was exposed in a cyber-attack identified last month compromising the data of 560 million customers. ShinyHunters, the current administrator of BreachForums, recently claimed the hack of Ticketmaster and offered for sale 1.3...
on Jun 3
From cybersafe.news
0 0
Dutch bank ABN Amro disclosed a data breach after third-party services provider AddComm suffered a ransomware attack. AddComm distributes documents and tokens physically and digitally to clients and employees. The ransomware attack occurred last week and unauthorized parties may have obtained...
on May 30
From cybersafe.news
0 0
Microsoft has linked a North Korean hacking group named Moonstone Sleet to FakePenny ransomware attacks, which have led to millions of dollars in ransom demands. Previously tracked as Storm-1789, Moonstone Sleet was found attacking both financial and cyberespionage targets using trojanized...
on May 29
From cybersafe.news
0 0
Security researchers have reported a significant rise in cyber activity targeting the upcoming Indian general election. This surge, driven by various hacktivist groups, has resulted in the leakage of personal identifiable information (PII) of Indian citizens on the dark web. The election, set to...
on May 25
From cybersafe.news
0 0
Western Sydney University (WSU) has notified students and academic staff about a data breach after threat actors breached its Microsoft 365 and Sharepoint environment. WSU is an educational institute in Australia offering a wide range of undergraduate, postgraduate, and research programs across...
on May 22
From cybersafe.news
0 0
A malicious crypto mining campaign called 'REF4578,' was found deploying a malicious payload named GhostEngine that uses vulnerable drivers to turn off security products and deploy an XMRig miner. Researchers at Elastic Security Labs and Antiy have underlined the unusual sophistication of these...
on May 22
From cybersafe.news
0 0
The threat actors behind the Windows-based Grandoreiro banking trojan have returned in a large-scale phishing campaign in over 60 countries, targeting customer accounts of around 1,500 banks since March 2024 following a law enforcement takedown in January. In January 2024, an international law...
on May 21
From cybersafe.news
0 0
Google has released a new emergency Chrome security update to address the third zero-day vulnerability exploited in attacks within a week. Google is aware that an exploit for CVE-2024-4947 exists in the wild. The company fixed the zero-day flaw with the release of 125.0.6422.60/.61 for...
on May 16
From cybersafe.news
0 0
Financially motivated cybercriminals abuse the Windows Quick Assist feature in social engineering attacks to deploy Black Basta ransomware payloads on victims' networks. Microsoft has been investigating this campaign since at least mid-April 2024, and it was observed that the threat group...
on May 16
From cybersafe.news
0 0
The threat actor behind the recent Dell data breach revealed they scraped information of 49 million customer records using a partner portal API they accessed as a fake company. Dell had started to send notifications warning customers that their personal data was stolen in a data breach. This...
on May 14
From cybersafe.news
0 0
Since April, millions of phishing emails have been sent through the Phorpiex botnet to conduct a large-scale LockBit Black ransomware campaign. New Jersey's Cybersecurity and Communications Integration Cell (NJCCIC) warned that the attackers use ZIP attachments containing an executable that...
on May 14
From cybersafe.news
0 0
Japanese tech giant Fujitsu discovered that several of its systems were infected by malware and threat actors may have stolen personal and customer information. Fujitsu is the world's sixth largest IT services provider, employing 124,000 people and having an annual revenue of $23.9 billion. The...
on May 9
From cybersafe.news
0 0
The U.S. Department of the Treasury's Office of Foreign Assets Control (OFAC) sanctioned three cryptocurrency exchanges for providing services used to evade economic restrictions imposed on Russia following its invasion of Ukraine in early 2022. This includes Bitpapa IC FZC LLC, Crypto Explorer...
on May 9
From cybersafe.news
0 0
Indian government entities and energy companies have been targeted by hackers with an aim to deliver a modified version of an open-source information stealer malware called HackBrowserData and collect sensitive information. Dutch cybersecurity firm EclecticIQ researcher, Arda Büyükkaya, said...
on May 8
From cybersafe.news
0 0
A new phishing-as-a-service (PhaaS) named ‘Darcula’ uses 20,000 domains to spoof brands and steal credentials from Android and iPhone users in more than 100 countries. Darcula has been used against various services and organizations, from postal, financial, government, taxation departments, to...
on May 8
From cybersafe.news
0 0
AT&T confirmed that it has been impacted by a data breach affecting 73 million current and former customers after initially denying the leaked data originated from them. AT&T has repeatedly denied for the past two weeks that a massive trove of leaked customer data originated from them or that...
on May 8
From cybersafe.news
0 0
Trend Micro researchers uncovered a sophisticated campaign conducted by a threat actor tracked as Earth Krahang that breached 70 organizations worldwide. The campaign seems active since at least early 2022 and focuses primarily on government organizations. The group often exploited access to...
on May 8
From cybersafe.news
0 0
Jackson County in Missouri, United States, reported significant disruptions within its IT systems and has confirmed that a ransomware attack was responsible for the disruptions. The disturbances have led to the declaration of a state of emergency caused by operational inconsistencies across...
on May 8
From cybersafe.news
0 0
Trend Micro’s Zero Day Initiative (ZDI) announced that security researchers earned $1,132,500 on the Pwn2Own Vancouver 2024 hacking competition for uncovering 29 unique zero-day vulnerabilities. Throughout the event, the researchers targeted software and products in the web browser,...
on May 8
From cybersafe.news
Beware of the new Latrodectus Malware | Cybersafe News Beware of the new Latrodectus Malware
0 0
A new malware called Latrodectus has been discovered by security researchers which has been distributed as part of email phishing campaigns since at least late November 2023. Researchers from Proofpoint and Team Cymru said in a joint analysis that the Latrodectus is an up-and-coming downloader...
on May 8
From cybersafe.news
0 0
A new variant of the data wiping malware AcidRain, known as AcidPour, has been discovered by SentinelOne’s threat intelligence team that may have been deployed in attacks targeting four telecom providers in Ukraine. AcidPour's expanded capabilities would enable it to better disable embedded...
on May 8
From cybersafe.news
0 0
Attackers are now actively targeting over 92,000 end-of-life D-Link Network Attached Storage (NAS) devices exposed online and unpatched against a critical remote code execution (RCE) zero-day flaw. The security vulnerability (CVE-2024-3273) is the result of a backdoor facilitated through a...
on May 8
From cybersafe.news
0 0
Microsoft warns that the Russian APT28 threat group exploits a Windows Print Spooler vulnerability to escalate privileges and steal credentials and data using a previously unknown hacking tool called GooseEgg. APT28 has been using this tool to exploit the CVE-2022-38028 vulnerability since at...
on May 8
From cybersafe.news
0 0
Dutch chipmaker Nexperia confirmed that hackers breached its network in March 2024 after a ransomware gang leaked samples of the allegedly stolen data. Nexperia is a subsidiary of Chinese company Wingtech Technology that operates semiconductor fabrication plants in Germany and the UK, producing...
on May 8
From cybersafe.news
0 1
Hackers are targeting a critical severity vulnerability in the WP Automatic plugin for WordPress to create user accounts with administrative privileges and to plant backdoors for long-term access. The plugin, which has been installed on more than 30,000 websites, lets administrators automate...
on May 7
From cybersafe.news
0 0
Panda Restaurant Group, the parent company of Panda Express, Panda Inn, and Hibachi-San, disclosed a data breach after threat actors compromised its corporate systems in March and stole the personal information of an undisclosed number of associates. Panda Express is the largest Chinese fast...
on May 7
From cybersafe.news
0 0
An active Android malware campaign dubbed eXotic Visit was found targeting users in South Asia, particularly those in India and Pakistan, with malware distributed via dedicated websites and Google Play Store. According to the Slovak cybersecurity firm, the activity which has been ongoing since...
on May 7
From cybersafe.news
0 0
The US government has taken down Samourai Wallet, a cryptocurrency mixing service that executed over $2billion in unlawful transactions and laundered over $100m in criminal proceeds. According to a press release by the US Department of Justice (DoJ), Samourai’s web servers and domain were seized...
on May 7
From cybersafe.news
0 0
A new malware family, named Cuttlefish, was discovered which targets enterprise-grade and small office/home office (SOHO) routers to harvest public cloud authentication data from internet traffic. The malware creates a proxy or VPN tunnel on the compromised router to exfiltrate data, and then...
on May 7
From cybersafe.news
0 0
UK police claim to have successfully infiltrated and disrupted a phishing-as-a-service (PhaaS) operation that made cybercriminals over £1m ($1.3m) from tens of thousands of victims. One of the world’s largest PhaaS platforms, LabHost offered all the tools fraudsters needed to launch...
on May 7
From cybersafe.news
0 0
Finland's Transport and Communications Agency (Traficom) is warning about an ongoing Android malware campaign trying to breach online bank accounts. The agency has highlighted multiple cases of text messages written in Finnish language that instruct recipients to call a number. The scammer who...
on May 7
From cybersafe.news
0 0
Threat actors are actively exploiting critical vulnerabilities in OpenMetadata to gain unauthorized access to Kubernetes workloads and leverage them for cryptocurrency mining activity. OpenMetadata is an open-source metadata management platform that helps data engineers and scientists to catalog...
on May 7
From cybersafe.news
0 0
France’s Employment Agency has suffered a data breach in its systems that could result in the leak or exploit of personal details of around 43 million potential users. France Travail, the French national employment agency, is responsible for registering unemployed individuals, providing...
on Mar 16
From cybersafe.news
0 0
Acer Philippines disclosed a data breach after employee data was compromised in an attack on a third-party vendor who manages the company's employee attendance data after a threat actor leaked the data on a hacking forum. Acer Inc. is a Taiwanese multinational company that produces computer...
on Mar 13
From cybersafe.news
0 0
Hackers are breaching WordPress sites by exploiting a vulnerability in outdated versions of the Popup Builder plugin, infecting over 3,300 websites with malicious code. The flaw used in the attacks tracked as CVE-2023-6000, is a cross-site scripting (XSS) vulnerability impacting Popup Builder...
on Mar 11
From cybersafe.news
0 0
A Chinese national who was a former Google software engineer has been charged with stealing intellectual property from the tech giant connected to its work on artificial intelligence (AI). Linwei Ding (aka Leon Ding), who was hired by Google in 2019, worked on developing software deployed in...
on Mar 7
From cybersafe.news
0 0
The Main Intelligence Directorate (GUR) of Ukraine’s Ministry of Defense announced it had breached the Russian Ministry of Defense (Minoborony) servers as part of a special operation, and stolen confidential documents. The stolen documents include: Confidential documents, including orders and...
on Mar 5
From cybersafe.news
0 0
American Express is warning customers that its credit cards were exposed in a third-party data breach after a merchant processor was hacked. This incident was not caused by a data breach at American Express, but rather at a merchant processor in which American Express Card member data was...
on Mar 5
From cybersafe.news
0 0
The Düsseldorf Police in Germany have seized Crimemarket, a massive German-speaking illicit trading platform with over 180,000 users, arresting six people, including one of its operators. Crimemarket was the largest cybercrime market in the country and a hub for trading illegal drugs, narcotics,...
on Mar 4
From cybersafe.news
0 0
An Iran-linked threat actor known as UNC1549 has been attributed to a new espionage campaign targeting aerospace, aviation, and defense industries in the Middle East, including Israel and the U.A.E. According to researchers from the threat intelligence firm Mandiant, the other targets of the...
on Mar 2