Cyber security aggregate rss news

Cyber security aggregator - feeds history

totals: cyware (9) thehackernews (1)

Chrome 95 Update Patches Exploited Zero-Days, Flaws Disclosed at Tianfu Cup

cyware Oct 30, 2021 Malware and Vulnerabilities

A Chrome 95 update released by Google patches two actively exploited Chrome vulnerabilities, as well as flaws that were disclosed recently at Tianfu Cup, a Chinese hacking contest.

Ransomware Attack Hits PNG Finance Ministry

cyware Oct 30, 2021 Breaches and Incidents

Ransomware infiltrated and compromised a core server at the department of finance last week, hampering the government's access to foreign aid, its ability to pay cheques, and carry out other basic functions in the midst of a spiraling Covid-19 surge.

Police sting targets suspects behind 1,800 attacks that 'wreaked havoc across the world'

cyware Oct 30, 2021 Threat Actors

Twelve people have been targeted by an international law enforcement operation for involvement in over 1,800 ransomware attacks on critical infrastructure and large organizations around the world.

Apple fixes security feature bypass in macOS

cyware Oct 30, 2021 Malware and Vulnerabilities

Apple has delivered a barrage of updates for most of its devices this week, and among the vulnerabilities fixed are CVE-2021-30892, a System Integrity Protection bypass in macOS, and CVE-2021-30883, an iOS flaw that’s actively exploited by attackers.

Hive ransomware now encrypts Linux and FreeBSD systems

cyware Oct 30, 2021 Malware and Vulnerabilities

The Hive ransomware gang now also encrypts Linux and FreeBSD using new malware variants specifically developed to target these platforms. As per ESET, Hive's new encryptors are still in development and still lack functionality.

Google Chrome is Abused to Deliver Malware as Legit Windows 10 App

cyware Oct 30, 2021 Malware and Vulnerabilities

Malware delivered via a compromised website on Chrome browsers can bypass User Account Controls to infect systems and steal sensitive data, such as credentials and cryptocurrency.

REvil and SolarMarker Employ SEO Poisoning Attacks

cyware Oct 30, 2021 Malware and Vulnerabilities

Researchers highlight two separate campaigns dropping REvil and SolarMarker backdoors leveraging the SEO poisoning method to spread payloads in the systems of targeted victims.

War-Driving - Still an Easy Bet for Household Wi-Fi Attacks

cyware Oct 30, 2021 Breaches and Incidents

A researcher from CyberArk demonstrated how a cheap device can be exploited to break into over 70% of Wi-Fi networks in one Tel Aviv community. According to researchers, the sniffing technique used in the experiment only works with routers supporting roaming features. Users should use complex passwords as well as turn off roaming when not in use.

Lazarus APT Group Enters the Supply Chain Attack Game

cyware Oct 30, 2021 Threat Actors

Kaspersky revealed two separate supply chain attacks by Lazarus Group aimed at an IT asset monitoring solution vendor, a South Korean think tank, and the defense industry. Hackers use a Racket downloader (signed with a stolen certificate) in the infection chain. Organizations must stay alert and focus on defense efforts against such threats.

Police Arrest Suspected Ransomware Hackers Behind 1,800 Attacks Worldwide

thehackernews Oct 30, 2021 Feed

12 people have been detained as part of an international law enforcement operation for orchestrating ransomware attacks on critical infrastructure and large organizations that hit over 1,800 victims across 71 countries since 2019, marking the latest action against cybercrime groups. The arrests were made earlier this week on October 26 in Ukraine and Switzerland, resulting in the seizure of cash

2021-10

202020212022202320242025

Aggregator history

Saturday, October 30

FRI

SAT

SUN

MON

TUE

WED

THU