Category: Uncategorized
-

Free Sniper Dz Phishing Tools Fuel 140,000+ Cyber Attacks Targeting User Credentials [email protected] (The Hacker News)
More than 140,000 phishing websites have been found linked to a phishing-as-a-service (PhaaS) platform named Sniper Dz over the past year, indicating that it’s being used by a large number of cybercriminals to conduct credential theft. “For prospective phishers, Sniper Dz offers an online admin panel with a catalog of phishing pages,” Palo Alto Networks…
-

New Cryptojacking Attack Targets Docker API to Create Malicious Swarm Botnet [email protected] (The Hacker News)
Cybersecurity researchers have uncovered a new cryptojacking campaign targeting the Docker Engine API with the goal of co-opting the instances to join a malicious Docker Swarm controlled by the threat actor. This enabled the attackers to “use Docker Swarm’s orchestration features for command-and-control (C2) purposes,” Datadog researchers Matt Muir and Andy Giron said in an…
-

U.K. Hacker Charged in $3.75 Million Insider Trading Scheme Using Hacked Executive Emails [email protected] (The Hacker News)
The U.S. Department of Justice (DoJ) has charged a 39-year-old U.K. national for perpetrating a hack-to-trade fraud scheme that netted him nearly $3.75 million in illegal profits. Robert Westbrook of London was arrested last week and is expected to be extradited to the U.S. to face charges related to securities fraud, wire fraud, and five…
-
North Korea Hackers Linked to Breach of German Missile Manufacturer Ryan Naraine
The targeting of Diehl Defence is significant because the company specializes in the production of missiles and ammunition. The post North Korea Hackers Linked to Breach of German Missile Manufacturer appeared first on SecurityWeek. Read More
-
Patelco Credit Union Data Breach Impacts Over 1 Million People Ionut Arghire
Patelco Credit Union has informed authorities that data on more than 1 million individuals was stolen in a ransomware attack this summer. The post Patelco Credit Union Data Breach Impacts Over 1 Million People appeared first on SecurityWeek. Read More
-

THN Cybersecurity Recap: Last Week’s Top Threats and Trends (September 23-29) [email protected] (The Hacker News)
Hold onto your hats, folks, because the cybersecurity world is anything but quiet! Last week, we dodged a bullet when we discovered vulnerabilities in CUPS that could’ve opened the door to remote attacks. Google’s switch to Rust is paying off big time, slashing memory-related vulnerabilities in Android. But it wasn’t all good news – Kaspersky’s…
-
Hawaii Health Center Discloses Data Breach After Ransomware Attack Eduard Kovacs
Community Clinic of Maui says a LockBit ransomware attack from earlier this year has resulted in a data breach impacting over 120,000 people. The post Hawaii Health Center Discloses Data Breach After Ransomware Attack appeared first on SecurityWeek. Read More
-

Critical Flaws in Tank Gauge Systems Expose Gas Stations to Remote Attacks [email protected] (The Hacker News)
Critical security vulnerabilities have been disclosed in six different Automatic Tank Gauge (ATG) systems from five manufacturers that could expose them to remote attacks. “These vulnerabilities pose significant real-world risks, as they could be exploited by malicious actors to cause widespread damage, including physical damage, environmental hazards, and economic losses,” Bitsight researcherRead More
-
Accounting Firm WMDDH Discloses Data Breach Impacting 127,000 Ionut Arghire
The personal information of over 127,000 individuals was stolen in a July 2023 data breach at Wright, Moore, DeHart, Dupuis & Hutchinson (WMDDH). The post Accounting Firm WMDDH Discloses Data Breach Impacting 127,000 appeared first on SecurityWeek. Read More
-

Session Hijacking 2.0 — The Latest Way That Attackers are Bypassing MFA [email protected] (The Hacker News)
Attackers are increasingly turning to session hijacking to get around widespread MFA adoption. The data supports this, as: 147,000 token replay attacks were detected by Microsoft in 2023, a 111% increase year-over-year (Microsoft). Attacks on session cookies now happen in the same order of magnitude as password-based attacks (Google). But session hijacking isn’t a new…
