Category: Uncategorized
-

New Android Trojan “BlankBot” Targets Turkish Users’ Financial Data [email protected] (The Hacker News)
Cybersecurity researchers have discovered a new Android banking trojan called BlankBot targeting Turkish users with an aim to steal financial information. “BlankBot features a range of malicious capabilities, which include customer injections, keylogging, screen recording and it communicates with a control server over a WebSocket connection,” Intel 471 said in an analysis published last week.Read…
-

China-Linked Hackers Compromise ISP to Deploy Malicious Software Updates [email protected] (The Hacker News)
The China-linked threat actor known as Evasive Panda compromised an unnamed internet service provider (ISP) to push malicious software updates to target companies in mid-2023, highlighting a new level of sophistication associated with the group. Evasive Panda, also known by the names Bronze Highland, Daggerfly, and StormBamboo, is a cyber espionage group that’s been active…
-
CISA Names Lisa Einstein as First Chief AI Officer SecurityWeek News
Einstein has led CISA’s AI efforts since 2023 as CISA’s Senior Advisor for AI. The post CISA Names Lisa Einstein as First Chief AI Officer appeared first on SecurityWeek. Read More
-

DOJ and FTC Sue TikTok for Violating Children’s Privacy Laws [email protected] (The Hacker News)
The U.S. Department of Justice (DoJ), along with the Federal Trade Commission (FTC), filed a lawsuit against popular video-sharing platform TikTok for “flagrantly violating” children’s privacy laws in the country. The agencies claimed the company knowingly permitted children to create TikTok accounts and to view and share short-form videos and messages with adults and others…
-

Hackers Exploit Misconfigured Jupyter Notebooks with Repurposed Minecraft DDoS Tool [email protected] (The Hacker News)
Cybersecurity researchers have disclosed details of a new distributed denial-of-service (DDoS) attack campaign targeting misconfigured Jupyter Notebooks. The activity, codenamed Panamorfi by cloud security firm Aqua, utilizes a Java-based tool called mineping to launch a TCP flood DDoS attack. Mineping is a DDoS package designed for Minecraft game servers. Attack chains entail the exploitationRead More
-

APT41 Hackers Use ShadowPad, Cobalt Strike in Taiwanese Institute Cyber Attack [email protected] (The Hacker News)
A Taiwanese government-affiliated research institute that specializes in computing and associated technologies was breached by nation-state threat actors with ties to China, according to new findings from Cisco Talos. The unnamed organization was targeted as early as mid-July 2023 to deliver a variety of backdoors and post-compromise tools like ShadowPad and Cobalt Strike. It has…
-

APT28 Targets Diplomats with HeadLace Malware via Car Sale Phishing Lure [email protected] (The Hacker News)
A Russia-linked threat actor has been linked to a new campaign that employed a car for sale as a phishing lure to deliver a modular Windows backdoor called HeadLace. “The campaign likely targeted diplomats and began as early as March 2024,” Palo Alto Networks Unit 42 said in a report published today, attributing it with…
-
How blockchain can support third-party risk management
Post ContentRead More
-
The European Union’s World-First Artificial Intelligence Rules Are Officially Taking Effect Associated Press
EU officials say the Artificial Intelligence Act will protect the “fundamental rights” of citizens while also encouraging investment and innovation in the booming AI industry. The post The European Union’s World-First Artificial Intelligence Rules Are Officially Taking Effect appeared first on SecurityWeek. Read More
-
In Other News: European Banks Put to Test, Voting DDoS Attacks, Tenable Exploring Sale SecurityWeek News
Noteworthy stories that might have slipped under the radar: over 100 European banks undergo cyber resilience test, DDoS attacks don’t impact voting, and Tenable exploring a potential sale. The post In Other News: European Banks Put to Test, Voting DDoS Attacks, Tenable Exploring Sale appeared first on SecurityWeek. Read More
