Security Affairs

OCTOBER 29, 2024

Fog and Akira ransomware operators are exploiting SonicWall VPN flaw CVE-2024-40766 to breach enterprise networks. Fog and Akira ransomware operators are exploiting the critical SonicWall VPN vulnerability CVE-2024-40766 (CVSS v3 score: 9.3) to breach corporate networks via SSL VPN access. reads the SonicWall’s advisory.

VPN 128

VPN Ransomware Firewall Internet 128

Security Affairs

JULY 29, 2024

Microsoft warns that ransomware gangs are exploiting the recently patched CVE-2024-37085 flaw in VMware ESXi flaw. Microsoft researchers warned that multiple ransomware gangs are exploiting the recently patched vulnerability CVE-2024-37085 (CVSS score of 6.8) in VMware ESXi flaw. ” warned Microsoft. .

Ransomware 135

Ransomware Engineering Encryption Authentication 135

Security Affairs

JULY 11, 2024

Multiple threat actors exploit a recently disclosed security PHP flaw CVE-2024-4577 to deliver multiple malware families. The flaw CVE-2024-4577 (CVSS score: 9.8) Cybersecurity and Infrastructure Security Agency (CISA) added the the vulnerability to its Known Exploited Vulnerabilities (KEV) catalog.

Malware 138

Malware DDOS Internet Internet 138

Security Affairs

OCTOBER 11, 2024

Sophos researchers warn that ransomware operators are exploiting the critical vulnerability CVE-2024-40711 in Veeam Backup & Replication to create rogue accounts and deploy malware. Sophos reports ransomware operators are exploiting a critical code execution flaw in Veeam Backup & Replication.

Backups 130

Backups Ransomware VPN Authentication 130

Security Affairs

OCTOBER 25, 2024

The Change Healthcare data breach in the February 2024 impacted over 100 million, the largest-ever healthcare data breach in the US. UnitedHealth Group announced that the data breach suffered by Change Healthcare in February 2024 impacted more than 100 million individuals.

Data breaches 128

Data breaches Healthcare Cybercrime Insurance 128

eSecurity Planet

SEPTEMBER 21, 2024

Each of these regulations addresses different aspects of cybersecurity and data protection, making it essential for businesses and organizations to stay informed and proactive. The act also covers various forms of cybercrime, including malware distribution and data theft. You can unsubscribe at any time.

Cybersecurity 114

Cybersecurity Computers and Electronics Cyber threats Healthcare 114

Security Affairs

APRIL 2, 2024

million customers on a cybercrime forum. “In April 2024, almost 3M+ rows of data from the store company Pandabuy was posted to a popular hacking forum. The data is available for sale on the cybercrime forum, Sanggiero published a sample as proof of the data breach. million customers.

Data breaches 141

Data breaches Cybercrime Hacking Information Security 141

Krebs on Security

NOVEMBER 16, 2023

In a 2,200-page report, Finnish authorities laid out how they connected the extortion spree to Kivimäki, a notorious hacker who was convicted in 2015 of perpetrating tens of thousands of cybercrimes, including data breaches, payment fraud, operating a botnet and calling in bomb threats. ” The Finnish daily yle.fi

Cybercrime 249

Cybercrime Hacking Data breaches Banking 249

Security Affairs

NOVEMBER 14, 2023

Resecurity uncovered several episodes of attacks against nuclear operators – area of major concern for national security.

Ransomware 140

Ransomware Cyber threats Government Hacking 140

Security Affairs

DECEMBER 30, 2024

On Wednesday, December 25, 2024, at 17:07 EST, the threat actor IntelBroker posted on X about releasing more data. We have analyzed the post data, and it aligns with the known data set from October 14, 2024.” At 17:40 EST, IntelBroker released 4.45 GB of data for free on BreachForums. ” reads the update published by Cisco.

Data breaches 123

Data breaches Cybercrime Authentication Technology 123

Security Affairs

JUNE 30, 2024

Threat actors compromised 1,590 CoinStats crypto wallets Experts observed approximately 120 malicious campaigns using the Rafel RAT LockBit claims the hack of the US Federal Reserve Ransomware threat landscape Jan-Apr 2024: insights and challenges ExCobalt Cybercrime group targets Russian organizations in multiple sectors Threat actor attempts to sell (..)

Cybercrime 127

Cybercrime Hacking Data breaches Ransomware 127

Security Affairs

JANUARY 12, 2024

These findings coincide with the critical and fast-approaching Indonesian presidential election set to take place in February this year (2024). Just before the onset of 2024, an individual known as Kimbo disclosed details regarding a suspected breach of the General Elections Commission of Indonesia’s (KPU) information system.

Identity Theft 133

Identity Theft Cyber threats Marketing Risk 133

Security Affairs

JULY 2, 2024

“The man, 42, is expected to appear in Perth Magistrates Court today (28 June, 2024) to face nine charges for alleged cybercrime offences.” The man was charged in May 2024 following an investigation launched in April 2024 after an airline reported a suspicious WiFi network during a domestic flight.

Wireless 127

Wireless Cybercrime Banking VPN 127

Security Affairs

NOVEMBER 4, 2024

The July 2024 ransomware attack that hit the City of Columbus, Ohio, exposed the personal and financial data of 500,000 individuals. On July 18, 2024, the City of Columbus, Ohio, suffered a cyber attack that impacted the City’s services.

Ransomware 114

Ransomware Identity Theft Data breaches Cyber threats 114

Security Affairs

JULY 22, 2024

for suspected involvement in the Scattered Spider cybercrime syndicate. arrested a 17-year-old teenager from Walsall who is suspected to be a member of the Scattered Spider cybercrime group (also known as UNC3944 , 0ktapus ). In January 2024, U.S. Law enforcement arrested a 17-year-old boy from Walsall, U.K.,

Cybercrime 132

Cybercrime Social Engineering Hacking Scams 132

Security Affairs

JANUARY 13, 2024

Akira ransomware targets Finnish organizations GitLab fixed a critical zero-click account hijacking flaw Juniper Networks fixed a critical RCE bug in its firewalls and switches Vast Voter Data Leaks Cast Shadow Over Indonesia ’s 2024 Presidential Election Researchers created a PoC for Apache OFBiz flaw CVE-2023-51467 Team Liquid’s wiki leak exposes (..)

VPN 131

VPN Cybercrime Ransomware Hacking 131

Security Affairs

AUGUST 28, 2024

Cisco Talos observed the BlackByte ransomware group exploiting the recently patched security flaw CVE-2024-37085 in VMware ESXi hypervisors in recent attacks. The flaw CVE-2024-37085 (CVSS score of 6.8) BlackByte ransomware operators are exploiting a recently patched VMware ESXi hypervisors vulnerability in recent attacks.

Ransomware 126

Ransomware Authentication Encryption VPN 126

Security Affairs

SEPTEMBER 21, 2024

Learn more: [link] — BingX (@BingXOfficial) September 20, 2024 In a post, the company said it detected abnormal network activity on September 20, 2024, at around 04:00 (UTC+8), indicating a potential hack targeting their hot wallet. By June 24, 2024, over $1.38 This morning, BingX just experienced hacker attack.

Cryptocurrency 139

Cryptocurrency Hacking Cybercrime Media 139

Security Affairs

MARCH 14, 2024

Researchers recently uncovered a DarkGate campaign in mid-January 2024, which exploited Microsoft zero-day vulnerability. Researchers at the Zero Day Initiative (ZDI) recently uncovered a DarkGate campaign in mid-January 2024, which exploited the Windows zero-day flaw CVE-2024-21412 using fake software installers.

Phishing 132

Phishing Malware Software Internet 132

Security Affairs

OCTOBER 20, 2024

CISA adds Veeam Backup and Replication flaw to its Known Exploited Vulnerabilities catalog North Korea-linked APT37 exploited IE zero-day in a recent attack Omni Family Health data breach impacts 468,344 individuals Iran-linked actors target critical infrastructure organizations macOS HM Surf flaw in TCC allows bypass Safari privacy settings Two Sudanese (..)

Data breaches 117

Data breaches Cybercrime Cyber Insurance Marketing 117

Security Affairs

MAY 11, 2024

The threat actor IntelBroker announced on the cybercrime forum Breach the hack of the European law enforcement agency Europol. “In May 2024, Europol suffered a data breach and lead to the exposure of FOUO and classified data.” Thanks for reading, enjoy!” ” announced the hacker.

Hacking 125

Hacking Data breaches Cybercrime Cryptocurrency 125

Security Affairs

JUNE 17, 2024

A joint law enforcement operation led to the arrest of a key member of the cybercrime group known as Scattered Spider. Spanish police arrested a 22-year-old British national who is suspected of being a key member of the cybercrime group known as Scattered Spider (also known as UNC3944 , 0ktapus ). In January 2024, U.S.

Cybercrime 128

Cybercrime Hacking Social Engineering Cryptocurrency 128

Security Affairs

MARCH 17, 2024

France Travail data breach impacted 43 Million people Scranton School District in Pennsylvania suffered a ransomware attack Lazarus APT group returned to Tornado Cash to launder stolen funds Moldovan citizen sentenced in connection with the E-Root cybercrime marketplace case UK Defence Secretary jet hit by an electronic warfare attack in Poland Cisco (..)

Data breaches 130

Data breaches Computers and Electronics Cybercrime Ransomware 130

Security Affairs

MARCH 24, 2024

surfaces in the threat landscape Pokemon Company resets some users’ passwords Ukraine cyber police arrested crooks selling 100 million compromised accounts New AcidPour wiper targets Linux x86 devices.

Malware 125

Malware Cybercrime Hacking Cyber threats 125

Security Affairs

JUNE 7, 2024

million customers on a cybercrime forum. In April 2024, almost 3M+ rows of data from the store company Pandabuy was posted to a popular hacking forum. The data is available for sale on the cybercrime forum, Sanggiero published a sample as proof of the data breach. The website was breached by @ Sanggiero and @ IntelBroker.”

Data breaches 131

Data breaches Cybercrime Hacking Information Security 131

Security Affairs

JULY 14, 2024

A Dark Gate malware campaign from March-April 2024 demonstrates how attackers exploit legitimate tools and services to distribute malware. Palo Alto Networks Unit 42 researchers shared details about a DarkGate malware campaign from March-April 2024. The activity peaked on April 9, 2024, with nearly 2,000 samples detected in one day.

Malware 133

Malware Cybercrime Software Phishing 133

Security Affairs

MAY 5, 2024

According to the countdown active on the seized, law enforcement that are currently controlling the website will reveal the identities of the LockBitSupps and other members of the gang on May 7, 2024, at 14:00:00 UTC. It’s coming ON 2024-05-07 14:00:00 UTC!!! LOCKBIT SEIZED LEAK SITE RESURRECTED!!! ” Lockbit told vx-underground.

Ransomware 141

Ransomware Cybercrime Cyber Attacks Encryption 141

Security Affairs

FEBRUARY 25, 2024

Apple created post-quantum cryptographic protocol PQ3 for iMessage Russian hacker is set to face trial for the hack of a local power grid Microsoft released red teaming tool PyRIT for Generative AI CISA orders federal agencies to fix ConnectWise ScreenConnect bug in a week FTC charged Avast with selling users’ browsing data to advertising companies (..)

Spyware 129

Spyware Cyber Insurance Hacking Advertising 129

Security Affairs

NOVEMBER 27, 2024

Russian-based cybercrime group RomCom (aka UAT-5647 , Storm-0978 , Tropical Scorpius , UAC-0180, UNC2596 ) exploited two Firefox and Tor Browser zero-day vulnerabilities in recent attacks on users across Europe and North America. The vulnerability CVE-2024-9680 resides in Animation timelines. live, correctiv[.]sbs, sbs, or cwise[.]store.

Cybercrime 111

Cybercrime Hacking Government Information Security 111

Security Affairs

JUNE 16, 2024

Patch it now!

Data breaches 123

Data breaches Hacking Ransomware Malware 123

Security Affairs

DECEMBER 2, 2024

Operation HAECHI V (July-Nov 2024) targeted cyber frauds like phishing, romance scams, sextortion, investment fraud, online gambling, BEC, and e-commerce fraud. Operation Synergia II is a collaborative effort by INTERPOL, private sector partners, and 95 countries, that targeted phishing, ransomware, and infostealers from April to August 2024.

Cryptocurrency 126

Cryptocurrency Phishing Scams Cybercrime 126

Security Affairs

SEPTEMBER 8, 2024

Between 2014 and 2024, the duo operated the dark web marketplace WWH Club (wwh-club[.]ws) WWH Club had over 353,000 users by 2023 and offered courses on fraud and cybercrime, generating profits through membership and tuition fees. ws) which focused on selling stolen personal data and conducting illegal activities.

Cybercrime 138

Cybercrime Accountability Banking Advertising 138

Security Affairs

MARCH 13, 2024

In our commitment to full transparency, we wish to inform you of a recent security incident involving a third-party vendor managing employee attendance data. pic.twitter.com/SXDeZ3I27B — Acer Philippines (@AcerPhils) March 12, 2024 Acer Inc.

Data breaches 138

Data breaches Computers and Electronics Hacking Cybercrime 138

Security Affairs

SEPTEMBER 14, 2024

CISA adds SonicWall SonicOS, ImageMagick and Linux Kernel bugs to its Known Exploited Vulnerabilities catalog Electronic payment gateway Slim CD disclosed a data breach impacting 1.7M

Data breaches 122

Data breaches Computers and Electronics Spyware Cybercrime 122

Security Affairs

JANUARY 3, 2024

pic.twitter.com/fKUi7bdHyk — ChainLight (@ChainLight_io) January 1, 2024 Urgent Dear Orbit Bridge Users, An unidentified access to Orbit Bridge, a decentralized Cross-chain protocol, was confirmed on Dec-31-2023 08:52:47 PM +UTC. Further information regarding the issue will be updated. We are actively investigating this issue.

Cryptocurrency 141

Cryptocurrency Internet Internet Cybercrime 141

Security Affairs

NOVEMBER 9, 2024

A critical flaw, tracked as CVE-2024-40711, in Veeam Backup & Replication (VBR) was also recently exploited to deploy Frag ransomware. In mid-October, Sophos researchers warned that ransomware operators are exploiting the critical vulnerability CVE-2024-40711 in Veeam Backup & Replication to create rogue accounts and deploy malware.

Backups 132

Backups Ransomware VPN Accountability 132

Security Affairs

DECEMBER 4, 2024

The operation was carried out by Public Prosecutor’s Office in Frankfurt am Main, the Central Office for Combating Cybercrime (ZIT), and the Federal Criminal Police Office (BKA). Nearly $100M in cryptocurrency was traded on the platform from 2018-2024, with operators taking 1-5% commissions. Now in custody.

Cybercrime 113

Cybercrime Cryptocurrency Hacking Internet 113