Hacking, Information Security and Technology

Web Hacking Service ‘Araneida’ Tied to Turkish IT Firm

Krebs on Security

DECEMBER 19, 2024

The cracked software is being resold as a cloud-based attack tool by at least two different services, one of which KrebsOnSecurity traced to an information technology firm based in Turkey. “We have been playing cat and mouse for a while with these guys,” said Matt Sciberras , chief information security officer at Invicti.

Hacking

Hacking Cybercrime Advertising Data breaches

Ransomware attack hit Indian multinational Tata Technologies

Security Affairs

FEBRUARY 1, 2025

Indian multinational technology company Tata Technologies suspended some IT services following a ransomware attack. Indian multinational Tata Technologies , a Tata Motors subsidiary, suspended some IT services following a ransomware attack. Threat actors hit the company’s information technology (IT) infrastructure.

Technology

Technology Ransomware Engineering Manufacturing

Hunters International gang claims the theft of 1.4 TB of data allegedly stolen from Tata Technologies

Security Affairs

MARCH 5, 2025

Ransomware group Hunters International claims to have hacked Tata Technologies, threatening to leak 1.4 The Hunters International ransomware group claimed to have breached the Indian multinational technology company Tata Technologies, a Tata Motors subsidiary. TB of stolen data. The group claims the theft of 1.4

Technology

Technology Ransomware Engineering Manufacturing

Cloak ransomware group hacked the Virginia Attorney General’s Office

Security Affairs

MARCH 24, 2025

The breach was detected in February , leading to notifications to the FBI, Virginia State Police, and the Virginia Information Technologies Agency. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking, ransomware)

Ransomware

Ransomware Hacking Social Engineering VPN

Security Blueprints of Many Companies Leaked in Hack of Swedish Firm Gunnebo

Krebs on Security

OCTOBER 28, 2020

Linus Larsson , the journalist who broke the story, says the hacked material was uploaded to a public server during the second half of September, and it is not known how many people may have gained access to it. “The harsh and unfortunate reality is the security of a number of security companies is s**t,” Arena said.

Hacking

Hacking Ransomware Banking Accountability

Chinese national charged for hacking thousands of Sophos firewalls

Security Affairs

DECEMBER 11, 2024

has charged a Chinese national for hacking thousands of Sophos firewall devices worldwide in 2020. has charged the Chinese national Guan Tianfeng (aka gbigmao and gxiaomao) for hacking thousands of Sophos firewall devices worldwide in 2020. Tianfeng worked at Sichuan Silence Information Technology Co., based Sophos Ltd.

Firewall

Firewall Hacking Malware Passwords

Russia warns financial sector organizations of IT service provider LANIT compromise

Security Affairs

FEBRUARY 25, 2025

” NKTsKI recommends organizations to strengthen monitoring of threats and information security events in systems provided by LANIT. LANIT Group (Laboratory of New Information Technologies) is one of Russia’s largest IT service and software providers. In May 2024, U.S. ” said U.S. ” said U.S.

Telecommunications

Telecommunications Software Technology Healthcare

A cyberattack on gambling giant IGT disrupted portions of its IT systems

Security Affairs

NOVEMBER 23, 2024

International Game Technology (IGT) detected a cyberattack on November 17, the company promptly started its incident response procedures. International Game Technology PLC (IGT), formerly Gtech S.p.A. is a multinational gambling company that produces slot machines and other gambling technology. and Lottomatica S.p.A.,

Technology

Technology Hacking Ransomware Cybersecurity

A cyberattack disrupted operations of US chipmaker Microchip Technology

Security Affairs

AUGUST 22, 2024

Semiconductor manufacturer Microchip Technology announced that its operations were disrupted by a cyberattack. chipmaker Microchip Technology suffered a cyberattack that disrupted operations at several of its manufacturing plants. The company detected potentially suspicious activity involving its IT infrastructure on August 17, 2024.

Technology

Technology Manufacturing Hacking Cybersecurity

US Treasury Department sanctioned Chinese cybersecurity firm linked to Flax Typhoon APT

Security Affairs

JANUARY 4, 2025

“Today, the Department of the Treasurys Office of Foreign Assets Control (OFAC) sanctioned Integrity Technology Group, Incorporated (Integrity Tech), a Beijing-based cybersecurity company, for its role in multiple computer intrusion incidents against U.S. According to OFAC, between 2022 and 2023, Flax Typhoon hacked U.S.

Cybersecurity

Cybersecurity IoT Hacking Technology

Amazon discloses employee data breach after May 2023 MOVEit attacks

Security Affairs

NOVEMBER 11, 2024

million records containing employee data on the hacking forum BreachForums. Compromised data includes names, contact information, building locations, email addresses, and more. Exposed data did not include Social Security numbers or financial information. Amazon did not disclose the number of impacted employees.

Data breaches

Data breaches Hacking Ransomware Technology

Cisco states that data published on cybercrime forum was taken from public-facing DevHub environment

Security Affairs

OCTOBER 21, 2024

” Immediately, the company launched an investigation, which is still ongoing, into the alleged security incident. .” DevHub is a platform designed for developers to access resources, tools, and APIs to build and integrate applications with Cisco’s technologies.

Cybercrime

Cybercrime Data breaches Technology Banking

Data leak at fintech giant Direct Trading Technologies

Security Affairs

JANUARY 31, 2024

Sensitive data and trading activity of over 300K traders leaked online by international fintech firm Direct Trading Technologies. Direct Trading Technologies, an international fintech company, jeopardized over 300K traders by leaking their sensitive data and trading activity, thereby putting them at risk of an account takeover.

Technology

Technology Identity Theft Backups Passwords

GUEST ESSAY : Advanced tech to defend API hacking is now readily available to SMBs

The Last Watchdog

APRIL 4, 2022

They are often unaware of the risks they take on, which can include hacking, fraud, phishing, and more. SMBs and enterprises alike have been struggling with APIs as a mechanism for information security. A primary culprit of these attacks is the lack of understanding of application programming interfaces, or APIs.

Hacking

Hacking Penetration Testing Data breaches Authentication

Thai police arrested Chinese hackers involved in SMS blaster attacks

Security Affairs

NOVEMBER 25, 2024

“This “SMS blasting” attack relies on using technology that impersonates cellular base stations and is capable of transmitting thousands of messages to devices within a close geographical radius.” Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, SMS blaster)

Mobile

Mobile Scams Technology Telecommunications

New 0-Day Attacks Linked to China’s ‘Volt Typhoon’

Krebs on Security

AUGUST 27, 2024

” Those third-party reports came in late June 2024 from Michael Horka , senior lead information security engineer at Black Lotus Labs , the security research arm of Lumen Technologies , which operates one of the global Internet’s largest backbones. victims and one non-U.S. In January 2024, the U.S. ”

Internet

Internet Internet Technology Engineering

Energy industry contractor ENGlobal Corporation discloses a ransomware attack

Security Affairs

DECEMBER 3, 2024

Securities and Exchange Commission (SEC), the company discovered the attack on November 25. The threat actors had access to the company’s information technology systems and encrypted some of its data files. According to the FORM 8-K report filed with the U.S. ” reads the report filed with SEC.

Ransomware

Ransomware Encryption Technology Cybersecurity

Iran and China-linked actors used ChatGPT for preparing attacks

Security Affairs

OCTOBER 11, 2024

Rather than using advanced hacking techniques, they exploited systems with default credentials to compromise target networks. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, OpenAI)

Malware

Malware Social Engineering Engineering Hacking

France’s second-largest telecoms provider Free suffered a cyber attack

Security Affairs

OCTOBER 28, 2024

“” The telecommunications firm has filed a criminal complaint and informed France’s agencies National Commission for Information Technology and Civil Liberties (CNIL) and the National Agency for the Security of Information Systems (ANSSI).

Cyber Attacks

Cyber Attacks Telecommunications Data breaches Banking

Sweet Treats, Sour Breach: Cyberattack Hits Krispy Kreme

SecureWorld News

DECEMBER 12, 2024

The details of the Krispy Kreme hack are still emerging, but the companys Form 8-K filing brought the incident to light, offering a rare glimpse into the challenges businesses face when their systems are compromised. The Krispy Kreme hack is a sobering reminder that no industry is immune to cyber threats.

Password Management

Password Management Passwords CISO Cybersecurity

Sam’s Club Investigates Alleged Cl0p Ransomware Breach

Security Affairs

MARCH 30, 2025

. “Protecting the privacy and security of our members’ information is a top priority at Sam’s Club. ” Ransomware gang Cl0p leaked files from Rackspace Technology and listed ~170 companies allegedly hacked via zero-day vulnerabilities in Cleos file-transfer software.

Ransomware

Ransomware Data breaches Software Hacking

3CX Breach Was a Double Supply Chain Compromise

Krebs on Security

APRIL 20, 2023

3CX hired incident response firm Mandiant , which released a report on Wednesday that said the compromise began in 2022 when a 3CX employee installed a malware-laced software package distributed via an earlier software supply chain compromise that began with a tampered installer for X_TRADER , a software package provided by Trading Technologies.

Malware

Malware Software Technology Accountability

Report claims that Serbian authorities abused Cellebrite tool to install NoviSpy spyware

Security Affairs

DECEMBER 16, 2024

The spyware’s deployment relied on Cellebrite’s unlocking process, combining two invasive technologies to compromise the journalists digital privacy comprehensively. ” Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking,NoviSpy) .

Spyware

Spyware Surveillance Technology Mobile

Sarcoma ransomware gang claims the theft of sensitive data from PCB maker Unimicron

Security Affairs

FEBRUARY 12, 2025

Unimicron Technology Corporation is a Taiwanese company specializing in the manufacturing of printed circuit boards (PCBs), high-density interconnects (HDI), and IC substrates. The company confirmed that its subsidiary Unimicron Technology (ShenZhen) suffered a ransomware attack on January 30, 2025.

Computers and Electronics

Computers and Electronics Ransomware Manufacturing Data breaches

F5 fixed a high-severity elevation of privilege vulnerability in BIG-IP

Security Affairs

OCTOBER 20, 2024

Technology firm F5 patches a high-severity elevation of privilege vulnerability in BIG-IP and a medium-severity flaw in BIG-IQ. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, F5 BIG-IP) It’s unclear if these vulnerabilities have been exploited in the wild.

Authentication

Authentication Hacking Technology Information Security

T-Mobile is one of the victims of the massive Chinese breach of telecom firms

Security Affairs

NOVEMBER 18, 2024

T-Mobile confirmed being a victim of recent hacking campaigns linked to China-based threat actors targeting telecom companies. T-Mobile confirms it was hacked as part of a long-running cyber espionage campaign targeting Telco companies. The security breach poses a major national security risk.

Mobile

Mobile Telecommunications Data breaches Hacking

Rhysida ransomware group hacked Abdali Hospital in Jordan

Security Affairs

DECEMBER 26, 2023

The Rhysida ransomware group claimed to have hacked Abdali Hospital, a multi-specialty hospital located in Jordan. pic.twitter.com/6uHMDcNhTC — Dominic Alvieri (@AlvieriD) December 26, 2023 The group published images of stolen documents as proof of the hack. Abdali Hospital provides care to patients in numerous specialties.

Ransomware

Ransomware Hacking Manufacturing Healthcare

Rhysida ransomware gang claimed China Energy hack

Security Affairs

NOVEMBER 25, 2023

The Rhysida ransomware group claimed to have hacked the Chinese state-owned energy conglomerate China Energy Engineering Corporation. The ransomware gang hit organizations in multiple industries, including the education, healthcare, manufacturing, information technology, and government sectors. reads the joint advisory.

Ransomware

Ransomware Hacking Engineering Manufacturing

New Atrium Health data breach impacts 585,000 individuals

Security Affairs

DECEMBER 6, 2024

Atrium Health launched an investigation into the security breach and discovered that from January 2015 to July 2019, certain online tracking technologies were active on its MyAtriumHealth (formerly MyCarolinas) Patient Portal, accessible via web and mobile. The company notified the US Department of Health and Human Services (HHS).

Data breaches

Data breaches Identity Theft Accountability Technology

Authentication bypass CVE-2025-22230 impacts VMware Windows Tools

Security Affairs

MARCH 26, 2025

” Sergey Bliznyuk of Positive Technologies reported the vulnerability to the virtualization giant. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking, VMware) The vulnerability impacts VMware Tools versions 12.x.x, for Windows, Linux, and macOS. VMware Tools 12.5.1

Authentication

Authentication Hacking Technology Information Security

ESET detailed a flaw that could allow a bypass of the Secure Boot in UEFI systems

Security Affairs

JANUARY 17, 2025

The vulnerability CVE-2024-7344 affects the UEFI application of several real-time system recovery software suites developed by Howyar Technologies Inc., Greenware Technologies, Radix Technologies Ltd., Wasay Software Technology Inc., SANFONG Inc., Computer Education System Inc., and Signal Computer GmbH.

Firmware

Firmware Technology Software Manufacturing

Storm-2372 used the device code phishing technique since August 2024

Security Affairs

FEBRUARY 16, 2025

Storm-2372s targets during this time have included government, non-governmental organizations (NGOs), information technology (IT) services and technology, defense, telecommunications, health, higher education, and energy/oil and gas in Europe, North America, Africa, and the Middle East.”

Phishing

Phishing Authentication Telecommunications Accountability

Hackers Stole Access Tokens from Okta’s Support Unit

Krebs on Security

OCTOBER 20, 2023

” The security firm BeyondTrust is among the Okta customers who received Thursday’s alert from Okta. BeyondTrust Chief Technology Officer Marc Maiffret said that alert came more than two weeks after his company alerted Okta to a potential problem. Maiffret said BeyondTrust followed up with Okta on Oct.

Social Engineering

Social Engineering Engineering Accountability Hacking

China-linked group Salt Typhoon hacked US broadband providers and breached wiretap systems

Security Affairs

OCTOBER 6, 2024

broadband providers, including Verizon, AT&T, and Lumen Technologies, potentially accessing systems for lawful wiretapping and other data. According to the Wall Street Journal, which reported the news exclusively, the security breach poses a major national security risk. and its allies for hacking activities in July.

Hacking

Hacking Government Internet Internet

Rhysida ransomware group hacked King Edward VII’s Hospital in London

Security Affairs

NOVEMBER 29, 2023

The Rhysida ransomware group claimed to have hacked King Edward VII’s Hospital in London. The Rhysida ransomware group claimed to have hacked King Edward VII’s Hospital in London and added it to the list of victims on its Tor leak site. King Edward VII’s Hospital in London has been breached by Rhysida Ransomware.

Ransomware

Ransomware Hacking Manufacturing Healthcare

Cisco states that the second data leak is linked to the one from October

Security Affairs

DECEMBER 30, 2024

DevHub is a platform designed for developers to access resources, tools, and APIs to build and integrate applications with Ciscos technologies. It provides a range of development resources, including SDKs (Software Development Kits), documentation, sample code, and learning materials for networking, security, and cloud infrastructure.

Data breaches

Data breaches Cybercrime Authentication Technology

J-magic malware campaign targets Juniper routers

Security Affairs

JANUARY 24, 2025

Lumen Technologies researchers reported that the J-magic campaign targets Juniper routers with a custom backdoor using a passive agent based on the cd00r variant (an open-source backdoor by fx ). . ” Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking,newsletter)

Malware

Malware VPN Encryption Hacking

Snatch ransomware gang claims the hack of the food giant Kraft Heinz

Security Affairs

DECEMBER 15, 2023

The Snatch ransomware group announced it had hacked the food giant Kraft Heinz, the company is investigating the claims. The Snatch ransomware group claims to have hacked Kraft Heinz in August and on December 14, it added the company to the list of victims on its leak site. ” reads the alert.

Hacking

Hacking Ransomware Computers and Electronics Marketing

Burnout in SOCs: How AI Can Help Analysts Focus on High-Value Tasks

Security Affairs

DECEMBER 5, 2024

Recent advances in artificial intelligence (AI) technology offer unprecedented opportunities for organizations to reduce the burden on struggling SOC analysts so they can focus on more strategic tasks, their mental health, and their overall well-being. But it doesn’t have to be this way.

Artificial Intelligence

Artificial Intelligence Data collection Cybersecurity Risk

LockBit group falsely claimed the hack of the Federal Reserve

Security Affairs

JUNE 27, 2024

The LockBit ransomware group seems to have lied when they announced the hack of the US Federal Reserve. The LockBit ransomware group hasn’t hacked the Federal Reserve as it has recently claimed, the real victim is the Evolve Bank. The financial organization confirmed that certain personal information may have been compromised.

Hacking

Hacking Banking Retail Ransomware

U.S. CISA adds Cisco ASA and FTD, and RoundCube Webmail bugs to its Known Exploited Vulnerabilities catalog

Security Affairs

OCTOBER 25, 2024

Recently, tesearchers from Positive Technologies warned that unknown threat actors have attempted to exploit the now-patched vulnerability CVE-2024-37383 (CVSS score: 6.1) In September 2024, Positive Technologies discovered an email sent to a governmental organization in a CIS country. in the open-source Roundcube webmail software.

VPN

VPN Firewall Technology Passwords

Notorious hacker behind 40+ cyberattacks on strategic organizations arrested

Security Affairs

FEBRUARY 6, 2025

“The suspect, who had extensive knowledge of computers, had managed to set up a complex technological network through the use of anonymous messaging and browsing applications, through which he had managed to hide his tracks and thus make his identification difficult.” ” concludes the statement.

Cybercrime

Cybercrime Government Data breaches Information Security

Millions of Pixel devices can be hacked due to a pre-installed vulnerable app

Security Affairs

AUGUST 16, 2024

iVerify noted that the concern is serious enough that Palantir Technologies is opting to ban Android devices from its mobile fleet over the next few years. ” Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Android) Google is also notifying other Android OEMs.

Hacking

Hacking Firmware Mobile Penetration Testing

Hunters International ransomware gang claims to have hacked the Fred Hutch Cancer Center

Security Affairs

DECEMBER 16, 2023

The Hunters International ransomware gang claims to have hacked the Fred Hutchinson Cancer Center (Fred Hutch). Another healthcare organization suffered a ransomware attack, the Hunters International ransomware gang claims to have hacked the Fred Hutchinson Cancer Center (Fred Hutch).

Ransomware

Ransomware Hacking Insurance Healthcare

Web Hacking Service ‘Araneida’ Tied to Turkish IT Firm

Ransomware attack hit Indian multinational Tata Technologies

Trending Sources

Hunters International gang claims the theft of 1.4 TB of data allegedly stolen from Tata Technologies

Cloak ransomware group hacked the Virginia Attorney General’s Office

Security Blueprints of Many Companies Leaked in Hack of Swedish Firm Gunnebo

Chinese national charged for hacking thousands of Sophos firewalls

Russia warns financial sector organizations of IT service provider LANIT compromise

A cyberattack on gambling giant IGT disrupted portions of its IT systems

A cyberattack disrupted operations of US chipmaker Microchip Technology

US Treasury Department sanctioned Chinese cybersecurity firm linked to Flax Typhoon APT

Amazon discloses employee data breach after May 2023 MOVEit attacks

Cisco states that data published on cybercrime forum was taken from public-facing DevHub environment

Data leak at fintech giant Direct Trading Technologies

GUEST ESSAY : Advanced tech to defend API hacking is now readily available to SMBs

Thai police arrested Chinese hackers involved in SMS blaster attacks

New 0-Day Attacks Linked to China’s ‘Volt Typhoon’

Energy industry contractor ENGlobal Corporation discloses a ransomware attack

Iran and China-linked actors used ChatGPT for preparing attacks

France’s second-largest telecoms provider Free suffered a cyber attack

Sweet Treats, Sour Breach: Cyberattack Hits Krispy Kreme

Sam’s Club Investigates Alleged Cl0p Ransomware Breach

3CX Breach Was a Double Supply Chain Compromise

Report claims that Serbian authorities abused Cellebrite tool to install NoviSpy spyware

Sarcoma ransomware gang claims the theft of sensitive data from PCB maker Unimicron

F5 fixed a high-severity elevation of privilege vulnerability in BIG-IP

T-Mobile is one of the victims of the massive Chinese breach of telecom firms

Rhysida ransomware group hacked Abdali Hospital in Jordan

Rhysida ransomware gang claimed China Energy hack

New Atrium Health data breach impacts 585,000 individuals

Authentication bypass CVE-2025-22230 impacts VMware Windows Tools

ESET detailed a flaw that could allow a bypass of the Secure Boot in UEFI systems

Storm-2372 used the device code phishing technique since August 2024

Hackers Stole Access Tokens from Okta’s Support Unit

China-linked group Salt Typhoon hacked US broadband providers and breached wiretap systems

Rhysida ransomware group hacked King Edward VII’s Hospital in London

Cisco states that the second data leak is linked to the one from October

J-magic malware campaign targets Juniper routers

Snatch ransomware gang claims the hack of the food giant Kraft Heinz

Burnout in SOCs: How AI Can Help Analysts Focus on High-Value Tasks

LockBit group falsely claimed the hack of the Federal Reserve

U.S. CISA adds Cisco ASA and FTD, and RoundCube Webmail bugs to its Known Exploited Vulnerabilities catalog

Notorious hacker behind 40+ cyberattacks on strategic organizations arrested

Millions of Pixel devices can be hacked due to a pre-installed vulnerable app

Hunters International ransomware gang claims to have hacked the Fred Hutch Cancer Center

Stay Connected