Cybersecurity
Category Added in a WPeMatico Campaign
The hacker responsible for launching a credential stuffing attack against biotechnology company 23andMe to steal users’ personal data has leaked more data stolen in the cyber attack via the dark web. The data leaked to the notorious dark web forum, BreachForums, includes the genetic data profiles of 4.1 million people across Great Britain and Germany. […]
The BlackCat group has yet again added a new tool to its arsenal to evade detection by security solutions offered by different vendors. The attackers have created a new utility called Munchkin that allows them to run the ransomware payload on remote machines, or to encrypt remote Server Message Block (SMB)/Common Internet File Shares (CIFS). […]
An updated version of a sophisticated backdoor framework called MATA has been used in attacks aimed at over a dozen Eastern European companies in the oil and gas sector and defense industry as part of a cyber espionage operation that took place between August 2022 and May 2023. “The actors behind the attack used spear-phishing […]
A former US Navy IT manager was sentenced to five years and five months in prison for hacking into a database, stealing personally identifiable information (PII), and selling it on the dark web. The man, Marquis Hooper, 32, of Selma, California, who was a chief petty officer, opened under false pretenses an account at a […]
Californian IT company DNA Micro leaks private mobile phone data Pierluigi Paganini October 18, 2023 Hundreds of thousands of clients who opted-in for a screen warranty were exposed when DNA Micro leaked data from its systems. The Cybernews research team found that DNA Micro, a California-based IT company, exposed the sensitive data of more than […]
EDF, the company operating several nuclear power plants in Britain, has been placed under “significantly enhanced regulatory attention” after an inspection into its cybersecurity practices. The new attention is an escalation of the enhanced regulatory attention that EDF — a subsidiary of the French state-owned energy company Électricité de France — received last year. Since […]
The Iranian Crambus espionage group (aka OilRig, MuddyWater, APT34) staged an eight-month-long intrusion against a government in the Middle East between February and September 2023. During the compromise, the attackers stole files and passwords and, in one case, installed a PowerShell backdoor (dubbed PowerExchange) that was used to monitor incoming mails sent from an Exchange […]
In our digital age, data is king. It drives businesses, informs decision-making, and plays an essential role in our everyday lives. However, with the convenience of technology comes the risk of data breaches and leaks. One often overlooked aspect of this risk is the role that lost and stolen computers play in compromising sensitive information. […]
The time between a vulnerability being discovered and hackers exploiting it is narrower than ever – just 12 days. So it makes sense that organizations are starting to recognize the importance of not leaving long gaps between their scans, and the term “continuous vulnerability scanning” is becoming more popular. Hackers won’t wait for your next […]