Oktacron - Cyber Security RSS Feeds History

U.S. government to respond to SolarWinds hackers in weeks: Senior Official

cyware Mar 13, 2021 Incident Response, Learnings

The Biden administration will respond “in weeks, not months” to the perpetrators of the SolarWinds hack, who used the U.S. tech company as a springboard to compromise a raft of U.S. government agencies, a senior administration official said on

A Spectre proof-of-concept for a Spectre-proof web

cyware Mar 13, 2021 Malware and Vulnerabilities

Google has published the proof-of-concept (PoC) code that confirms the practicality of Spectre exploits against JavaScript engines. The PoC code is expected to work against all modern browsers.

10,000+ WeLeakInfo customer records leaked

cyware Mar 13, 2021 Breaches and Incidents

WeLeakInfo.com was a data breach notification service that was allowing its customers to verify if their credentials been compromised in data breaches. The service was claiming a database of over 12 billion records from over 10,000 data breaches.

New ZHtrap botnet malware deploys honeypots to find more targets

cyware Mar 13, 2021 Malware and Vulnerabilities

A new botnet is hunting down and transforming infected routers, DVRs, and UPnP network devices into honeypots that help it find other targets to infect. The botnet comes with support for x86, ARM, MIPS, and other CPU architectures.

Microsoft Exchange exploits now used by cryptomining malware

cyware Mar 13, 2021 Malware and Vulnerabilities

The operators of Lemon_Duck, a cryptomining botnet that targets enterprise networks, are now using Microsoft Exchange ProxyLogon exploits in attacks against unpatched servers.

Users could gain root privilege through three flaws sitting in Linux kernel

cyware Mar 13, 2021 Malware and Vulnerabilities

Three recently unearthed vulnerabilities in the Linux kernel, located in the iSCSI module used for accessing shared data storage facilities, could allow root privileges to anyone with a user account.

REvil Group Claims Slew of Ransomware Attacks

cyware Mar 13, 2021 Malware and Vulnerabilities

The REvil ransomware threat group is on a cyberattack tear, claiming over the past two weeks to have infected nine organizations across Africa, Europe, Mexico and the U.S.

Utah Company Stored Passport Scans on Unsecured Server

cyware Mar 13, 2021 Breaches and Incidents

A Utah company exposed the information of more than 50,000 customers by storing data on an unsecured server. Sensitive customer data stored in a publicly accessible database included scans of passports and health insurance ID cards among others.

Scammers promote fake cryptocurrency giveaways via Twitter ads

cyware Mar 13, 2021 Identity Theft, Fraud, Scams

Threat actors have started to use 'Promoted' tweets, otherwise known as Twitter ads, to spread cryptocurrency giveaway scams. These scams have been successful for the threat actors, with one round of scams generating over $580,000 in a single week.

Google fixes second actively exploited Chrome zero-day this month

cyware Mar 13, 2021 Malware and Vulnerabilities

Google has fixed a second actively exploited Chrome zero-day this month with the release of Chrome 89.0.4389.90 to the Stable desktop channel for Windows, Mac, and Linux users.

Researchers hacked Indian govt sites via exposed git and env files

cyware Mar 13, 2021 Breaches and Incidents

Last month, researchers from the Sakura Samurai hacking group had partially disclosed that they had breached the cyber systems of the Indian government after finding a large number of critical vulnerabilities.

No sign of Exchange-related ransomware hitting UK orgs, claims NCSC as it urges admins to scan for compromises

cyware Mar 13, 2021 Malware and Vulnerabilities

The UK's National Cyber Security Centre has reminded Brits to patch their Microsoft Exchange Server deployments against Hafnium attacks, 10 days after the US and wider infosec industry shouted the house down saying the same thing.

Molson Coors Production Stopped Following a Cyberattack

cyware Mar 13, 2021 Breaches and Incidents

A cyber attack took place at Molson Coors breweries based in Milwaukee. It looks like the hack was crippling, leaving the brewery unable to produce beer at the time of the attack.

Cryptocurrency Platforms Witness Another Round of Cyber Threats

cyware Mar 13, 2021 Identity Theft, Fraud, Scams

Over 25,000 Coinbase users have been compromised in a phishing campaign in over two weeks with 69% of the fraudulent correspondence originating from India, followed by Brazil and the US.

Cryptomining Botnet Targets Unpatched Vulnerabilities in Cloud Servers

cyware Mar 13, 2021 Malware and Vulnerabilities

An upgraded version of z0Miner, a cryptomining botnet, has been found attempting to take over Jenkins and ElasticSearch servers to mine for Monero cryptocurrency.

Another Google Chrome 0-Day Bug Found Actively Exploited In-the-Wild

thehackernews Mar 13, 2021 Feed

Google has addressed yet another actively exploited zero-day in Chrome browser, marking the second such fix released by the company within a month. The browser maker on Friday shipped 89.0.4389.90 for Windows, Mac, and Linux, which is expected to be rolling out over the coming days/weeks to all users. While the update contains a total of five security fixes, the most important flaw rectified by

CompTIA Security Certification Prep — Lifetime Access for just $30

thehackernews Mar 13, 2021 Feed

At long last, top companies are starting to take cybersecurity seriously. As a consequence, technical recruiters are looking for people with hacking skills and certifications to prove it. CompTIA is seen as the gold standard when it comes to cybersecurity exams, with several certifications to choose from. If you would like to scoop them all, The CompTIA Security Infrastructure Expert Bundle is

Police raid apartment of alleged Verkada hacker, as questions asked about employees’ access to customer video feeds

grahamcluley Mar 13, 2021 Data loss

Following news that the video streams of 150,000 webcams managed by Verkada had been breached, police in Switzerland have raided the alleged hacker's apartment.

Cyber security aggregator - feeds history

U.S. government to respond to SolarWinds hackers in weeks: Senior Official

A Spectre proof-of-concept for a Spectre-proof web

10,000+ WeLeakInfo customer records leaked

New ZHtrap botnet malware deploys honeypots to find more targets

Microsoft Exchange exploits now used by cryptomining malware

Users could gain root privilege through three flaws sitting in Linux kernel

REvil Group Claims Slew of Ransomware Attacks

Utah Company Stored Passport Scans on Unsecured Server

Scammers promote fake cryptocurrency giveaways via Twitter ads

Google fixes second actively exploited Chrome zero-day this month

Researchers hacked Indian govt sites via exposed git and env files

No sign of Exchange-related ransomware hitting UK orgs, claims NCSC as it urges admins to scan for compromises

Molson Coors Production Stopped Following a Cyberattack

Cryptocurrency Platforms Witness Another Round of Cyber Threats

Cryptomining Botnet Targets Unpatched Vulnerabilities in Cloud Servers

Another Google Chrome 0-Day Bug Found Actively Exploited In-the-Wild

CompTIA Security Certification Prep — Lifetime Access for just $30

Police raid apartment of alleged Verkada hacker, as questions asked about employees’ access to customer video feeds

202020212022202320242025