Cyber security aggregate rss news

Cyber security aggregator - feeds history

totals: cyware (6) thehackernews (2)

TeamTNT's Silentbob Botnet Infecting 196 Hosts in Cloud Attack Campaign

cyware Jul 15, 2023 Breaches and Incidents

"The botnet run by TeamTNT has set its sights on Docker and Kubernetes environments, Redis servers, Postgres databases, Hadoop clusters, Tomcat and Nginx servers, Weave Scope, SSH, and Jupyter applications," Aqua security researchers said.

Colorado State University says data breach impacts students, staff

cyware Jul 15, 2023 Breaches and Incidents

Colorado State University (CSU) has confirmed that the Clop ransomware operation stole sensitive personal information of current and former students and employees during the recent MOVEit Transfer data-theft attacks.

Satellites lack standard security mechanisms found in mobile phones and laptops

cyware Jul 15, 2023 Trends, Reports, Analysis

Researchers from Ruhr University Bochum and the CISPA Helmholtz Center for Information Security in Saarbrücken have assessed the security mechanisms of satellites currently orbiting the Earth from an IT perspective.

Three Tax Prep Firms Shared ‘Extraordinarily Sensitive’ Data About Taxpayers With Meta, Lawmakers Say

cyware Jul 15, 2023 Breaches and Incidents

A group of congressional Democrats reported that three large tax preparation firms sent “extraordinarily sensitive” information on tens of millions of taxpayers to Facebook parent company Meta over the course of at least two years.

USB Flash Drives for Malware Attack Surges

cyware Jul 15, 2023 Malware and Vulnerabilities

Mandiant experts have observed a significant rise in malware attacks aimed at stealing sensitive information through the use of USB drives. The attacks targeted a variety of industries including those in construction, engineering, government, manufacturing, retail, media, and pharmaceutical. Organizations are urged to prioritize access restrictions on USB devices or conduct thorough scans for malicious files.

Meet CustomerLoader: A Multifaceted Malware Unleashing Diverse Payloads

cyware Jul 15, 2023 Malware and Vulnerabilities

An unreported .NET loader referred to as CustomerLoader is being distributed through deceptive phishing emails, YouTube videos, and web pages that mimicked genuine websites. This loader possesses the capability to retrieve, decrypt, and execute additional payloads.

Microsoft Bug Allowed Hackers to Breach Over Two Dozen Organizations via Forged Azure AD Tokens

thehackernews Jul 15, 2023 Feed

Microsoft on Friday said a validation error in its source code allowed for Azure Active Directory (Azure AD) tokens to be forged by a malicious actor known as Storm-0558 using a Microsoft account (MSA) consumer signing key to breach two dozen organizations. "Storm-0558 acquired an inactive MSA consumer signing key and used it to forge authentication tokens for Azure AD enterprise and MSA

WormGPT: New AI Tool Allows Cybercriminals to Launch Sophisticated Cyber Attacks

thehackernews Jul 15, 2023 Feed

With generative artificial intelligence (AI) becoming all the rage these days, it's perhaps not surprising that the technology has been repurposed by malicious actors to their own advantage, enabling avenues for accelerated cybercrime. According to findings from SlashNext, a new generative AI cybercrime tool called WormGPT has been advertised on underground forums as a way for adversaries to

2023-07

202020212022202320242025

Aggregator history

Saturday, July 15

SAT

SUN

MON

TUE

WED

THU

FRI