breaking news

Balada Injector still at large – new domains discovered

The Balada Injector is still at large and still evading security software by utilizing new domain names and using new obfuscation. During a routine web monitoring operation, we discovered an address that led us down a rabbit hole of WordPress-orientated “hack waves” caused by the Balada Injector malware. This evidence suggests that the malware is […]

The post Balada Injector still at large – new domains discovered appeared first on Security Affairs.

August 9, 2023
0 comment
Read More >>

EvilProxy used in massive cloud account takeover scheme

Cloud account takeover scheme utilizing EvilProxy hit over 100 top-level executives of global organizations EvilProxy was observed sending 120,000 phishing emails to over a hundred organizations to steal Microsoft 365 accounts. Proofpoint noticed a worrisome surge of successful cloud account compromises in the past five months. Most of the attacks targeted high-ranking executives. The researchers estimated […]

The post EvilProxy used in massive cloud account takeover scheme appeared first on Security Affairs.

August 9, 2023
0 comment
Read More >>

Downfall Intel CPU side-channel attack exposes sensitive data

Google researcher Daniel Moghimi devised a new side-channel attack technique, named Downfall, against Intel CPU. Google researcher Daniel Moghimi devised a new side-channel attack technique Intel CPU, named Downfall, that relies on a flaw tracked as CVE-2022-40982. An attacker can exploit this vulnerability to access and steal data from other users who share the same […]

The post Downfall Intel CPU side-channel attack exposes sensitive data appeared first on Security Affairs.

August 9, 2023
0 comment
Read More >>

LockBit threatens to leak medical data of cancer patients stolen from Varian Medical Systems

The LockBit ransomware group threatens to leak medical data of cancer patients stolen from Varian Medical Systems. The LockBit ransomware group claims to have hacked the healthcare company Varian Medical Systems and threatens to leak the medical data of cancer patients. Varian Medical Systems, Inc. designs, manufactures, sells, and services medical devices and software products […]

The post LockBit threatens to leak medical data of cancer patients stolen from Varian Medical Systems appeared first on Security Affairs.

August 9, 2023
0 comment
Read More >>

Microsoft Patch Tuesday for August 2023 fixed 2 actively exploited flaws

Microsoft Patch Tuesday security updates for August 2023 addressed 74 vulnerabilities, including two actively exploited flaws. Microsoft Patch Tuesday security updates for August 2023 addressed 74 new vulnerabilities in multiple products including Windows and Windows Components; Edge (Chromium-Based); Exchange Server; Office and Office Components; .NET and Visual Studio; ASP.NET; Azure DevOps and HDInsights; Teams; and […]

The post Microsoft Patch Tuesday for August 2023 fixed 2 actively exploited flaws appeared first on Security Affairs.

August 9, 2023
0 comment
Read More >>

UK Electoral Commission discloses a data breach

The UK Electoral Commission suffered a data breach that exposed voters’ personal information between 2014 and 2022. The UK Electoral Commission disclosed a data breach that exposed the personal information of voters in the United Kingdom between 2014 and 2022. The Commission notified the Information Commissioner’s Office. “Today we announced that we have been the […]

The post UK Electoral Commission discloses a data breach appeared first on Security Affairs.

August 8, 2023
0 comment
Read More >>

43 Android apps in Google Play with 2.5M installs loaded ads when a phone screen was off

Experts found 43 Android apps in Google Play with 2.5 million installs that displayed advertisements while a phone’s screen was off. Recently, researchers from McAfee’s Mobile Research Team discovered 43 Android apps in Google Play with 2.5 million installs that loaded advertisements while a phone’s screen was off. The experts pointed out that this behavior […]

The post 43 Android apps in Google Play with 2.5M installs loaded ads when a phone screen was off appeared first on Security Affairs.

August 8, 2023
0 comment
Read More >>

Zoom trains its AI model with some user data, without giving them an opt-out option

Zoom changed its terms of service requiring users to allow AI to train on all their data without giving them an opt-out option. Zoom updated its terms of service and informed users that it will train its artificial intelligence models using some of its data. The update will be effective as of July 27, and accepting […]

The post Zoom trains its AI model with some user data, without giving them an opt-out option appeared first on Security Affairs.

August 8, 2023
0 comment
Read More >>

North Korea compromised Russian missile engineering firm NPO Mashinostroyeniya

Two North Korea-linked APT groups compromised the infrastructure of the major Russian missile engineering firm NPO Mashinostroyeniya. Cybersecurity firm SentinelOne linked the compromise of the major Russian missile engineering firm NPO Mashinostroyeniya to two different North Korea-linked APT groups. NPO Mashinostroyeniya (JSC MIC Mashinostroyenia, NPO Mash) is a leading Russian manufacturer of missiles and military […]

The post North Korea compromised Russian missile engineering firm NPO Mashinostroyeniya appeared first on Security Affairs.

August 7, 2023
0 comment
Read More >>

A new sophisticated SkidMap variant targets unsecured Redis servers

A new campaign targets Redis servers, this time the malware employed in the attacks is a new variant of the SkidMap malware. Skidmap is a piece of crypto-miner detected by Trend Micro in September 2019 while it was targeting Linux machines. The malicious code used kernel-mode rootkits to evade detection, it differs from similar miners because […]

The post A new sophisticated SkidMap variant targets unsecured Redis servers appeared first on Security Affairs.

August 7, 2023
0 comment
Read More >>