Cybersecurity

Adalanche: Open-source Active Directory ACL visualizer, explorer – Help Net Security

Adalanche provides immediate insights into the permissions of users and groups within an Active Directory. It’s an effective open-source tool for visualizing and investigating potential account, machine, or domain takeovers. Additionally, it helps identify and display any misconfigurations. What unique features make Adalanche stand out? “The best feature is the low user effort to get […]

Cybersecurity

Myanmar rebels take control of ‘pig butchering’ scam city amid Chinese pressure on junta

A coalition of rebel groups in Myanmar is now in control of the city of Laukkaing — a notorious hub of online scamming operations near the border with China. Late on Thursday, Myanmar’s military government relinquished control of the city to the Three Brotherhood Alliance, which launched a surprise operation in Shan state, along the […]

Cybersecurity

Remote Encryption Attacks Surge: How One Vulnerable Device Can Spell Disaster

Dec 20, 2023NewsroomNetwork Security / Data Breach Ransomware groups are increasingly switching to remote encryption in their attacks, marking a new escalation in tactics adopted by financially motivated actors to ensure the success of their campaigns. “Companies can have thousands of computers connected to their network, and with remote ransomware, all it takes is one […]

Cybersecurity

Russian and Chinese interference networks are ‘building audiences’ ahead of 2024, warns Meta

Foreign interference groups are attempting to build and reach online audiences ahead of a number of significant elections next year, “and we need to remain alert,” Meta warned on Thursday. National elections are set to be held in the United States, United Kingdom and India — three of the world’s largest economies — as well […]

Cybersecurity

Experts Warn of Ransomware Hackers Exploiting Atlassian and Apache Flaws

Nov 07, 2023NewsroomCyber Threat / Malware Multiple ransomware groups have begun to actively exploit recently disclosed flaws in Atlassian Confluence and Apache ActiveMQ. Cybersecurity firm Rapid7 said it observed the exploitation of CVE-2023-22518 and CVE-2023-22515 in multiple customer environments, some of which have been leveraged for the deployment of Cerber (aka C3RB3R) ransomware. Both vulnerabilities […]

Cybersecurity

Pro-Russian Hackers Exploiting Recent WinRAR Vulnerability in New Campaign

Oct 16, 2023NewsroomVulnerability / Hacking Pro-Russian hacking groups have exploited a recently disclosed security vulnerability in the WinRAR archiving utility as part of a phishing campaign designed to harvest credentials from compromised systems. “The attack involves the use of malicious archive files that exploit the recently discovered vulnerability affecting the WinRAR compression software versions prior […]