Category: Uncategorized
-
Over 35k Domains Hijacked in ‘Sitting Ducks’ Attacks Ionut Arghire
Threat actors have hijacked over 35,000 domains in five years because DNS providers fail to properly verify domain ownership. The post Over 35k Domains Hijacked in ‘Sitting Ducks’ Attacks appeared first on SecurityWeek. Read More
-
Cybersecurity M&A Roundup: 25 Deals Announced in July 2024 Eduard Kovacs
Roundup of the more than two dozen cybersecurity-related merger and acquisition (M&A) deals announced in July 2024. The post Cybersecurity M&A Roundup: 25 Deals Announced in July 2024 appeared first on SecurityWeek. Read More
-

U.S. Releases High-Profile Russian Hackers in Diplomatic Prisoner Exchange [email protected] (The Hacker News)
In a historic prisoner exchange between Belarus, Germany, Norway, Russia, Slovenia, and the U.S., two Russian nationals serving time for cybercrime activities have been freed and repatriated to their country. This includes Roman Valerevich Seleznev and Vladislav Klyushin, who are part of a group of eight people who have been swapped back to Russia in…
-

Cybercriminals Abusing Cloudflare Tunnels to Evade Detection and Spread Malware [email protected] (The Hacker News)
Cybersecurity companies are warning about an uptick in the abuse of Clouflare’s TryCloudflare free service for malware delivery. The activity, documented by both eSentire and Proofpoint, entails the use of TryCloudflare to create a one-time tunnel that acts as a conduit to relay traffic from an attacker-controlled server to a local machine through Cloudflare’s infrastructure.…
-
SnakeKeylogger Attack
What is the Attack?Threat actors are continuously preying on end users to unknowingly install a trojan stealer known as SnakeKeylogger or KrakenKeylogger. This trojan was developed using .NET and targets Windows users. Its arsenal includes keystroke logging, harvesting credentials, and capturing screenshots. Based on the FortiGuard telemetry, there were hundreds of 0-day detection hits. Moreover,…
-
Convicted Cybercriminals Included in Russian Prisoner Swap SecurityWeek News
Two Russians serving time for insider trading, computer hacking and credit card theft were released in a prisoner swap deal with Moscow. The post Convicted Cybercriminals Included in Russian Prisoner Swap appeared first on SecurityWeek. Read More
-
InfoSec community sounds off on CrowdStrike outage, next steps
Post ContentRead More
-
Alex Stamos Named CISO at SentinelOne Ryan Naraine
Longtime security executive Alex Stamos tapped by SentinelOne to manage its security engineering and operations teams. The post Alex Stamos Named CISO at SentinelOne appeared first on SecurityWeek. Read More
-

Over 1 Million Domains at Risk of ‘Sitting Ducks’ Domain Hijacking Technique [email protected] (The Hacker News)
Over a million domains are susceptible to takeover by malicious actors by means of what has been called a Sitting Ducks attack. The powerful attack vector, which exploits weaknesses in the domain name system (DNS), is being exploited by over a dozen Russian-nexus cybercriminal actors to stealthily hijack domains, a joint analysis published by Infoblox…
-

Hackers Distributing Malicious Python Packages via Popular Developer Q&A Platform [email protected] (The Hacker News)
In yet another sign that threat actors are always looking out for new ways to trick users into downloading malware, it has come to light that the question-and-answer (Q&A) platform known as Stack Exchange has been abused to direct unsuspecting developers to bogus Python packages capable of draining their cryptocurrency wallets. “Upon installation, this code…
