LastPass has publicly acknowledged a security incident, revealing that a developer account was compromised, with cybercriminals managing to access portions of the source code and some proprietary technical information. The security breach took place earlier this month, LastPass says, and after an investigation, the show more ...
Welcome to the Transatlantic Cable a podcast that dives into hot topics in the security news and industry each week. We start off this episode with Airbnb rolling out new anti-party tech to prevent unapproved gatherings. Then, we move to asset managers on alert after the recent WhatsApp crackdown on banks! We also show more ...
The total number of disclosures is relatively flat (747, affecting 86 different vendors), but the Claroty report notes a major improvement in vendors’ approach to their own vulnerability discovery and reporting.
The researchers recently discovered an ELF sample that acts as a bot and can run scripts on the victim machine using the Tox protocol. The binary is written in C and has only statically linked the c-toxcore library.
Grandoreiro banking malware is targeting the automotive, manufacturing, and chemical industries in Mexico and Spain by masquerading as the Attorney General’s Office of Mexico City and the Public Ministry. Grandoreiro operators are only interested in carrying out highly-targeted attacks as they continue to innovate their tactics.
The owner of this database is currently unidentified, but considering the nature of the information it contains, researchers believe it can be assumed that it belongs to a private fraud investigating agency or a court in India.
More than three-quarters of security professionals in large organizations believe the world is now in a state of perpetual cyberwar – and 82% consider that geopolitics and cybersecurity are fundamentally linked.
Internal source code and documents have been stolen from LastPass by a cyber-thief. The password manager maker said on Thursday that someone broke into one of its developer's accounts, and used that to gain access to proprietary data.
Sensitive data of the Securities and Exchange Commission of Pakistan (SECP) has allegedly been stolen which has resulted in a tug of war between the chairman and the relevant commissioner.
The new safeguards implemented by Kimsuky are so effective that Kaspersky reports an inability to acquire the final payloads even after they are successfully connected to the threat actor’s command and control server.
Reported incidents increased to 198 in July from 135 in June, according to the cybersecurity firm NCC Group which issues semi-regular reports on ransomware activity by tracking websites that post victims’ details.
Like many ransomware strains, BlackByte has reemerged after a brief hiatus—and in its second iteration has already taken to hacker forums to push a new Tor data leak site that taps some familiar LockBit 3.0 techniques.
The confidential documents describe services for remote data extraction from Android and iOS devices. Specifically, the offering is for remote, one-click browser-based exploits that allow users to inject a payload into Android or iOS mobile devices.
Impacting the OSPF version 3 (OSPFv3) feature of NX-OS, the first of these issues is tracked as CVE-2022-20823 and could be exploited remotely, without authentication, to cause a denial-of-service (DoS) condition.
A new report from the Stanford Internet Observatory and Graphika shines a light on what is believed to be the first major social media platform takedown of a U.S.-centric influence campaign.
Managed detection and response provider Lumifi Cyber has received an investment from Californian private equity firm HCAP Partners, which partnered with BOK Financial for the deal.
In a blog post shared with TechCrunch ahead of its publication at market close, DoorDash said malicious hackers stole credentials from employees of a third-party vendor that were then used to gain access to some of DoorDash’s internal tools.
The Draft Amendments propose the creation of a new set of larger covered entities, called “Class A companies,” which would face additional security and auditing requirements in addition to the general requirements that apply to all covered entities.
A flurry of fraudulent online transactions made using Ally Bank debit card accounts is the result of script-based cyberattacks rather than a data breach, a source close to the fraud detection tells Information Security Media Group.
Vulnerabilities in Linux and Unix can be exploited to execute arbitrary code while the critical vulnerability in Realtek could be affecting networking devices, revealed the Indian Computer Emergency Response Team (CERT-In) on Monday.
Patrick Hillmann, the chief communications officer at Binance, claims that a “sophisticated hacking team” used video footage of his past TV appearances and digitally altered it to make an “AI hologram” of him and trick people into meetings.
Some of the most well-hidden and advanced skimmer infections that researchers have seen targeting WordPress sites actually modify existing plugin files to make their code look like it’s supposed to belong within the file structure.
While the threat appears to be targeted exclusively at organizations based in Israel, Microsoft is urging all organizations to check whether SysAid is present on the network and apply the firm's patches for the Log4j flaws.
A vulnerability affecting industrial automation software from Delta Electronics appears to have been exploited in attacks, and the US CISA is urging organizations to take action as soon as possible.
A new data extortion group named 'Donut Leaks' is linked to recent cyberattacks, including those on Greek natural gas company DESFA, UK architectural firm Sheppard Robson, and multinational construction company Sando.
Paranoid contains implementations and optimizations extracted from existing crypto-related literature, which “showed that the generation of these artifacts was flawed in some cases,” Google explains.
Hackers abused a zero-day vulnerability in General Bytes Bitcoin ATM servers, allowing them to hijack transactions related to fund withdrawal and deposits. It's not known how many servers were attacked using the flaw and how much cryptocurrency was stolen. The ATM maker has provided steps to perform on the devices before using the service.
Red Hat Security Advisory 2022-6188-01 - This is an updated release of the Node Maintenance Operator. The Node Maintenance Operator cordons off nodes from the rest of the cluster and drains all the pods from the nodes. By placing nodes under maintenance, administrators can proactively power down nodes, move workloads to other parts of the cluster, and ensure that workloads do not get interrupted.
The Xalan Java XSLT library is vulnerable to an integer truncation issue when processing malicious XSLT stylesheets. This can be used to corrupt Java class files generated by the internal XSLTC compiler and execute arbitrary Java bytecode.
Password management service LastPass confirmed a security incident that resulted in the theft of certain source code and technical information. The security breach is said to have occurred two weeks ago, targeting its development environment. No customer data or encrypted passwords were accessed. “An unauthorized party gained access to portions of the LastPass development
Nation-state threat actors are increasingly adopting and integrating the Sliver command-and-control (C2) framework in their intrusion campaigns as a replacement for Cobalt Strike. “Given Cobalt Strike’s popularity as an attack tool, defenses against it have also improved over time,” Microsoft security experts said. “Sliver thus presents an attractive alternative for actors looking for a
Atlassian has rolled out fixes for a critical security flaw in Bitbucket Server and Data Center that could lead to the execution of malicious code on vulnerable installations. Tracked as CVE-2022-36804 (CVSS score: 9.9), the issue has been characterized as a command injection vulnerability in multiple endpoints that could be exploited via specially crafted HTTP requests. “An
LastPass, the popular password manager trusted by millions of people around the world, has announced that it suffered a security breach two weeks ago that saw hackers break into its systems and steal information. Read more in my article on the Tripwire State of Security blog.
