Category: Uncategorized
-

RansomHub Group Deploys New EDR-Killing Tool in Latest Cyber Attacks [email protected] (The Hacker News)
A cybercrime group with links to the RansomHub ransomware has been observed using a new tool designed to terminate endpoint detection and response (EDR) software on compromised hosts, joining the likes of other similar programs like AuKill (aka AvNeutralizer) and Terminator. The EDR-killing utility has been dubbed EDRKillShifter by cybersecurity company Sophos, which discovered the…
-
AutoCanada Hit by Cyberattack Eduard Kovacs
AutoCanada has disclosed a disruptive cybersecurity incident after also being impacted by the recent CDK Global ransomware attack. The post AutoCanada Hit by Cyberattack appeared first on SecurityWeek. Read More
-
Google Confirms an Iranian Group Is Trying to Access Emails Linked to Both US Presidential Campaigns Associated Press
Google said an Iranian hacking group has tried to infiltrate the personal email accounts of roughly a dozen people linked to President Joe Biden and former President Donald Trump since May. The post Google Confirms an Iranian Group Is Trying to Access Emails Linked to Both US Presidential Campaigns appeared first on SecurityWeek. Read More
-
GitHub Makes Copilot Autofix Generally Available Ionut Arghire
GitHub has made AI-powered Copilot Autofix generally available to help developers fix code vulnerabilities faster. The post GitHub Makes Copilot Autofix Generally Available appeared first on SecurityWeek. Read More
-
Mayor of Columbus, Ohio, Says Ransomware Attackers Stole Corrupted, Unusable Data Associated Press
Hackers recently stole data from Ohio’s largest city, but what they got was not usable and no personal information about city workers was made available online, the mayor said. The post Mayor of Columbus, Ohio, Says Ransomware Attackers Stole Corrupted, Unusable Data appeared first on SecurityWeek. Read More
-

GitHub Vulnerability ‘ArtiPACKED’ Exposes Repositories to Potential Takeover [email protected] (The Hacker News)
A newly discovered attack vector in GitHub Actions artifacts dubbed ArtiPACKED could be exploited to take over repositories and gain access to organizations’ cloud environments. “A combination of misconfigurations and security flaws can make artifacts leak tokens, both of third party cloud services and GitHub tokens, making them available for anyone with read access to…
-

New Cyber Threat Targets Azerbaijan and Israel Diplomats, Stealing Sensitive Data [email protected] (The Hacker News)
A previously unknown threat actor has been attributed to a spate of attacks targeting Azerbaijan and Israel with an aim to steal sensitive data. The attack campaign, detected by NSFOCUS on July 1, 2024, leveraged spear-phishing emails to single out Azerbaijani and Israeli diplomats. The activity is being tracked under the moniker Actor240524. “Actor240524 possesses…
-
Microsoft Multiple Actively Exploited Vulnerabilities
What are the Vulnerabilities?Threat actors are exploiting multiple zero-day vulnerabilities that were recently disclosed on the Microsoft Security Patch Tuesday- August, 2024. The six actively exploited zero-day vulnerabilities were also added to CISA’s Known Exploited Vulnerabilities catalog (KEV) after the disclosure. [August 2024 Security Updates- Release Notes- Microsoft]• CVE-2024-38189: Microsoft Project Remote Code Execution Vulnerability•…
-

New Gafgyt Botnet Variant Targets Weak SSH Passwords for GPU Crypto Mining [email protected] (The Hacker News)
Cybersecurity researchers have discovered a new variant of the Gafgyt botnet that’s targeting machines with weak SSH passwords to ultimately mine cryptocurrency on compromised instances using their GPU computational power. This indicates that the “IoT botnet is targeting more robust servers running on cloud native environments,” Aqua Security researcher Assaf Morag said in a Wednesday…
-
Cisco Cuts Thousands of Jobs, 7% of Workforce, As It Shifts Focus to AI, Cybersecurity Associated Press
Cisco had 84,900 employees as of July 2023. Based on that figure, the number of jobs cut would be about 5,900. The post Cisco Cuts Thousands of Jobs, 7% of Workforce, As It Shifts Focus to AI, Cybersecurity appeared first on SecurityWeek. Read More
