Oktacron - Cyber Security RSS Feeds History

Imran Khan's Instagram account hacked to promote phoney Elon Musk $100 million crypto giveaway

cyware Aug 03, 2022 Identity Theft, Fraud, Scams

To make the scam appear more legitimate, the post was accompanied by a screenshot of a faked tweet claiming to come from Tesla boss Musk, and an endorsement message that pretended to come from Khan:

Cybrary Raises $25 Million to Tackle Cybersecurity Workforce Training

cyware Aug 03, 2022 Companies to Watch

Cybrary, which sells access to a platform focused on cybersecurity workforce education and training, said the $25 million Series B round was led by its current investors BuildGroup and Gula Tech Adventures.

Robin Banks Targets Citibank Customers and Beyond

cyware Aug 03, 2022 Malware and Vulnerabilities

A highly-successful phishing campaign by Robin Banks has reportedly stolen several account information and is selling it over the dark web and Telegram channels. Its phishing kit also collects Google and Microsoft credentials, which advanced threat actors may abuse in a variety of ways.

UK: Tory Leadership Voting Delayed Over Security Concerns

cyware Aug 03, 2022 Govt., Critical Infrastructure

The National Cyber Security Centre (NCSC), part of spy agency GCHQ, was forced to alert the party that the voting system for Conservative party members could be hijacked by hackers.

Cryptocurrency Service Nomad Loses $200 Million Within Hours of Blockchain Bridge Hack

cyware Aug 03, 2022 Breaches and Incidents

In a tweet Tuesday morning, Nomad said it is "working around the clock to address the situation and have notified law enforcement and retained leading firms for blockchain intelligence and forensics."

DawDropper - Another Addition To Dropper-as-a-Service Shelf On Dark Web

cyware Aug 03, 2022 Malware and Vulnerabilities

A malicious campaign was found leveraging a set of 17 Android dropper apps, known as DawDropper, that seem legit but deploy banking malware. These apps masqueraded as utility and productivity apps, including VPN services, QR code readers, call recorders, and document scanners.

Americans Warned Against SMS Phishing by FCC

cyware Aug 03, 2022 Identity Theft, Fraud, Scams

The FCC released an alert warning Americans of the growing threats of smishing attacks aiming to steal their personal information or conduct financial fraud. Complaints regarding unwanted text messages have grown from 15,300 in 2021 to 8,500 by June 2022.

Trio of XSS bugs in open source web apps could lead to complete system compromise

cyware Aug 03, 2022 Malware and Vulnerabilities

Security researchers have released details on a trio of cross-site scripting (XSS) vulnerabilities in popular open source apps that could lead to remote code execution (RCE).

Financial credentials offer second-largest payoff in account takeover attacks

cyware Aug 03, 2022 Trends, Reports, Analysis

According to “The Economics of Account Takeover Attacks,” (ATO) released last week by Arkose Labs, credentials taken from legitimate financial and financial technology account customers have the second largest revenue potential to cyberthieves.

Netskope acquires Infiot to provide users with optimized connections between any enterprise location

cyware Aug 03, 2022 Companies to Watch

Netskope announced it has acquired cybersecurity firm Infiot, a pioneer in enabling secure access with zero trust security, network and application optimization, and AI-driven operations.

NIST, CISA Finalizing Guidance for Identity and Access Management Post-SolarWinds

cyware Aug 03, 2022 Trends, Reports, Analysis

NIST is refreshing its suite of publications on identity and access management and will issue, “for the first time ever, a real, dedicated document on guidance around federation,” according to Matt Topper.

Thousands of Solana Wallets Drained in Multimillion Dollar Cryptocurrency Exploit

cyware Aug 03, 2022 Breaches and Incidents

The attack – which has only affected only “hot” wallets or wallets that are always connected to the internet, allowing people to store and send tokens easily – does not appear to be limited to Solana.

T-Mobile store owner in the US made millions by unlocking cellphones with stolen credentials

cyware Aug 03, 2022 Breaches and Incidents

From August 2014 to June 2019, Argishti Khudaverdyan fraudulently unlocked and unblocked cellphones on T-Mobile's network, as well as the networks of Sprint, AT&T, and other carriers.

Expand ransomware reporting to all sectors, says Atlantic Council report

cyware Aug 03, 2022 Trends, Reports, Analysis

While ransomware will likely continue to plague the United States and other countries for decades, policymakers should expand incident reporting around ransom payments and other data, while providing targeted tax breaks to the SMB victims.

German Power Electronics Manufacturer Semikron Hit by Ransomware Attack

cyware Aug 03, 2022 Breaches and Incidents

According to an alert issued by the German Federal Office for Information Security and seen by BleepingComputer, the ransomware operators are blackmailing the company and threatening to leak allegedly stolen data.

The commercial satellite boom is leaving space vulnerable to hackers

cyware Aug 03, 2022 Expert Blogs and Opinion

The Federal Communications Commission (FCC) previously considered including encryption requirements as part of regulations related to commercial spacecraft in 2020, but didn’t.

Spanish National Research Council Suffers Ransomware Attack Linked to Russia

cyware Aug 03, 2022 Breaches and Incidents

Spain’s science ministry said the Spanish National Research Council was targeted by the ransomware attack on July 16-17. A preliminary analysis by Spanish authorities said that it appears that no sensitive or confidential information was extracted.

Reported ransomware attacks are just the tip of the iceberg. That's a problem for everyone

cyware Aug 03, 2022 Trends, Reports, Analysis

The level of reported ransomware incidents doesn't paint an accurate picture of what's really going on, as many victims remain unwilling to talk about what happened, the European Union's cybersecurity agency has warned.

AiTM Attack Targeting Enterprise Users of Microsoft Email Services

cyware Aug 03, 2022 Identity Theft, Fraud, Scams

ThreatLabz has discovered a new strain of a large-scale phishing campaign, which uses adversary-in-the-middle (AiTM) techniques along with several evasion tactics. Similar techniques were used in another campaign described by Microsoft recently.

NortonLifeLock, Avast deal gets provisional approval of CMA

cyware Aug 03, 2022 Companies to Watch

The $8.6 billion merger was announced in August 2021 and, after a gentle probe, the Competition and Markets Authority (CMA) decided that a closer look was needed in March 2022.

Phishers Exploit Unprotected Snapchat, American Express Sites for Malicious Redirects

cyware Aug 03, 2022 Identity Theft, Fraud, Scams

From the website operator’s perspective, the only damage that potentially occurs is harm to the site’s reputation. The victims, however, may lose credentials, data, and possibly money.

German prosecutors issue warrant for Russian government hacker over energy sector attacks

cyware Aug 03, 2022 Incident Response, Learnings

Prosecutors in Germany have issued a warrant for the arrest of Pawel A, a Russian national they accuse of being part of the Berserk Bear hacking group within Russia’s Federal Security Service (FSB), according to German public broadcasters BR and WDR.

Nvidia releases security update for unsupported Windows 7 and 8.1 systems

cyware Aug 03, 2022 Malware and Vulnerabilities

Effective October 2021, Game Ready Driver upgrades, including performance enhancements, new features, and bug fixes, are exclusively available for systems utilizing Windows 10 and Windows 11 as their operating system.

Dark Web Research Suggests 87% of Ransomware Brands Exploit Malicious Macros

cyware Aug 03, 2022 Trends, Reports, Analysis

Machine identity management firm Venafi has published new research suggesting that 87% of the ransomware found on the dark web has been delivered via malicious macros to infect targeted systems.

SolidBit Ransomware Enters the RaaS Scene and Takes Aim at Gamers and Social Media Users

cyware Aug 03, 2022 Malware and Vulnerabilities

The SolidBit ransomware group appears to be planning to expand its operations through these fraudulent apps and its recruitment of ransomware-as-a-service (RaaS) affiliates.

Singapore takes formal step towards setting up cyber defence unit

cyware Aug 03, 2022 Govt., Critical Infrastructure

First mooted in March, the new digital and intelligence service (DIS) unit would be set up as a fourth service under the Singapore Armed Forces (SAF) and responsible for combating online attacks.

First Choice Community Healthcare Discloses Data Breach Impacting Patients' Personal and Health Information

cyware Aug 03, 2022 Breaches and Incidents

First Choice first learned of the security incident on March 27 following a discrepancy in its technological environment. The firm then engaged an independent cybersecurity team to investigate the scope of the attack.

Google Paid Out $90,000 for Vulnerabilities Patched by Chrome 104

cyware Aug 03, 2022 Malware and Vulnerabilities

Google has patched 27 vulnerabilities with the release of Chrome 104 on Tuesday, and the researchers who reported some of these security holes earned thousands of dollars in bug bounties.

Unpatched XSS, CSRF bugs included in latest Jenkins plugin advisory

cyware Aug 03, 2022 Malware and Vulnerabilities

The organization’s latest security advisory lists a total of 27 plugin vulnerabilities, five of which were deemed to be ‘high’ impact and the majority of which remain unpatched.

Senators introduce bill to ensure resiliency of federal data centers

cyware Aug 03, 2022 Laws, Policy, Regulations

A group of bipartisan senators have introduced legislation to establish baseline cybersecurity requirements and new protections against catastrophic weather-related disasters for federal data centers across the country.

Tonight We're Gonna Log On Like It's 1979

packetstormsecurity Aug 03, 2022 headline,email,password,science

Nancy Pelosi Ties Chinese Cyber-Attacks To Need For Taiwan Visit

packetstormsecurity Aug 03, 2022 headline,hacker,government,usa,china,cyb

The Age Of Brain-Computer Interfaces Is On the Horizon

packetstormsecurity Aug 03, 2022 headline,science

Hack Drains Over A Million Dollars From Solana Crypto Wallets

packetstormsecurity Aug 03, 2022 headline,hacker,cybercrime,data loss,fra

Zoho Password Manager Pro XML-RPC Java Deserialization

packetstormsecurity Aug 03, 2022 Feed

This Metasploit module exploits a Java deserialization vulnerability in Zoho ManageEngine Pro before 12101 and PAM360 before 5510. Unauthenticated attackers can send a crafted XML-RPC request containing malicious serialized data to /xmlrpc to gain remote command execution as the SYSTEM user.

MobileIron Log4Shell Remote Command Execution

packetstormsecurity Aug 03, 2022 Feed

MobileIron Core is affected by the Log4Shell vulnerability whereby a JNDI string sent to the server will cause it to connect to the attacker and deserialize a malicious Java object. This results in OS command execution in the context of the tomcat user. This Metasploit module will start an LDAP server that the target will need to connect to.

Ubuntu Security Notice USN-5545-1

packetstormsecurity Aug 03, 2022 Feed

Ubuntu Security Notice 5545-1 - Arthur Mongodin discovered that the netfilter subsystem in the Linux kernel did not properly perform data validation. A local attacker could use this to escalate privileges in certain situations.

Ubuntu Security Notice USN-5463-2

packetstormsecurity Aug 03, 2022 Feed

Ubuntu Security Notice 5463-2 - USN-5463-1 fixed vulnerabilities in NTFS-3G. This update provides the corresponding updates for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Roman Fiedler discovered that NTFS-3G incorrectly handled certain return codes. A local attacker could possibly use this issue to intercept protocol traffic between FUSE and the kernel.

Multi-Language Hotel Management 2022 1.0 SQL Injection

packetstormsecurity Aug 03, 2022 Feed

Multi-Language Hotel Management 2022 version 1.0 suffers from a remote SQL injection vulnerability.

IObit Malware Fighter 9.2 Tampering / Privilege Escalation

packetstormsecurity Aug 03, 2022 Feed

IObit Malware Fighter version 9.2 fails to provide sufficient anti-tampering protection and that shortcoming can be leveraged to escalate to SYSTEM privileges.

VMware Releases Patches for Several New Flaws Affecting Multiple Products

thehackernews Aug 03, 2022 Feed

Virtualization services provider VMware on Tuesday shipped updates to address 10 security flaws affecting multiple products that could be abused by unauthenticated attackers to perform malicious actions. The issues tracked from CVE-2022-31656 through CVE-2022-31665 (CVSS scores: 4.7 - 9.8) affect the VMware Workspace ONE Access, Workspace ONE Access Connector, Identity Manager, Identity Manager

Researchers Warns of Large-Scale AiTM Attacks Targeting Enterprise Users

thehackernews Aug 03, 2022 Feed

A new, large-scale phishing campaign has been observed using adversary-in-the-middle (AitM) techniques to get around security protections and compromise enterprise email accounts. "It uses an adversary-in-the-middle (AitM) attack technique capable of bypassing multi-factor authentication," Zscaler researchers Sudeep Singh and Jagadeeswar Ramanukolanu said in a Tuesday report. "The campaign is

VirusTotal Reveals Most Impersonated Software in Malware Attacks

thehackernews Aug 03, 2022 Feed

Threat actors are increasingly mimicking legitimate applications like Skype, Adobe Reader, and VLC Player as a means to abuse trust relationships and increase the likelihood of a successful social engineering attack. Other most impersonated legitimate apps by icon include 7-Zip, TeamViewer, CCleaner, Microsoft Edge, Steam, Zoom, and WhatsApp, an analysis from VirusTotal has revealed. "One of the

On-Demand Webinar: New CISO Survey Reveals Top Challenges for Small Cyber Security Teams

thehackernews Aug 03, 2022 Feed

The only threat more persistent to organizations than cyber criminals? The cyber security skills crisis. Nearly 60% of enterprises can’t find the staff to protect their data (and reputations!) from new and emerging breeds of cyber-attacks, reports the Information Systems Security Association (ISSA) in its 5th annual global industry study. The result? Heavier workloads, unfilled positions, and

Single-Core CPU Cracked Post-Quantum Encryption Candidate Algorithm in Just an Hour

thehackernews Aug 03, 2022 Feed

A late-stage candidate encryption algorithm that was meant to withstand decryption by powerful quantum computers in the future has been trivially cracked by using a computer running Intel Xeon CPU in an hour's time. The algorithm in question is SIKE — short for Supersingular Isogeny Key Encapsulation — which made it to the fourth round of the Post-Quantum Cryptography (PQC) standardization

Cyber security aggregator - feeds history