Hacking News

DoJ charged Tornado Cash founders with laundering more than $1 billion

The U.S. DoJ charged two men with operating the Tornado Cash service and laundering more than $1 Billion in criminal proceeds. The U.S. Justice Department charged two Tornado Cash founders ROMAN STORM and ROMAN SEMENOV have been charged with one count of conspiracy to commit money laundering and one count of conspiracy to violate the […]

The post DoJ charged Tornado Cash founders with laundering more than $1 billion appeared first on Security Affairs.

August 24, 2023
0 comment
Read More >>

FBI identifies wallets holding cryptocurrency funds stolen by North Korea

The U.S. FBI warned that North Korea-linked threat actors may attempt to cash out stolen cryptocurrency worth more than $40 million. The Federal Bureau of Investigation shared details about the activity of six cryptocurrency wallets operated by North Korea-linked threat actors. The wallets hold roughly 1,580 Bitcoin (roughly $41 million at the current rate) that […]

The post FBI identifies wallets holding cryptocurrency funds stolen by North Korea appeared first on Security Affairs.

August 23, 2023
0 comment
Read More >>

Carderbee APT targets Hong Kong orgs via supply chain attacks

A previously unknown APT group, tracked as Carderbee, was behind a supply chain attack against Hong Kong organizations. Symantec Threat Hunter Team reported that a previously unknown APT group, tracked as Carderbee, used a malware-laced version of the legitimate Cobra DocGuard software to carry out a supply chain attack aimed at organizations in Hong Kong. […]

The post Carderbee APT targets Hong Kong orgs via supply chain attacks appeared first on Security Affairs.

August 23, 2023
0 comment
Read More >>

TP-Link Tapo L530E smart bulb flaws allow hackers to steal user passwords

Four vulnerabilities in the TP-Link Tapo L530E smart bulb and impacting the mobile app used to control them expose users to hack. Researchers from the University of Catania (Italy) and the University of London (UK) have discovered four vulnerabilities impacting the TP-Link Tapo L530E smart bulb and the mobile app TP-Link’s Tapo app, which could […]

The post TP-Link Tapo L530E smart bulb flaws allow hackers to steal user passwords appeared first on Security Affairs.

August 23, 2023
0 comment
Read More >>

Defense contractor Belcan leaks admin password with a list of flaws

US Government and defense contractor Belcan left its super admin credentials open to the public, Cybernews research team reveals. Belcan is a government, defense, and aerospace contractor offering global design, software, manufacturing, supply chain, information technology, and digital engineering solutions. The company, with reported revenue of $950 million in 2022, is a trusted strategic partner […]

The post Defense contractor Belcan leaks admin password with a list of flaws appeared first on Security Affairs.

August 22, 2023
0 comment
Read More >>

Snatch gang claims the hack of the Department of Defence South Africa

Snatch gang claims the hack of the Department of Defence South Africa and added the military organization to its leak site. The Snatch ransomware group added the Department of Defence South Africa to its data leak site. The mission of the Department of Defence is to provide, manage, prepare and employ defence capabilities commensurate with the […]

The post Snatch gang claims the hack of the Department of Defence South Africa appeared first on Security Affairs.

August 22, 2023
0 comment
Read More >>

CISA adds critical Adobe ColdFusion flaw to its Known Exploited Vulnerabilities catalog

US CISA added critical vulnerability CVE-2023-26359 in Adobe ColdFusion to its Known Exploited Vulnerabilities catalog. US Cybersecurity and Infrastructure Security Agency (CISA) added a critical flaw CVE-2023-26359 (CVSS score 9.8) affecting Adobe ColdFusion to its Known Exploited Vulnerabilities Catalog. Adobe fixed the critical flaw in March 2023, it is a deserialization of untrusted data issue in Adobe ColdFusion that can […]

The post CISA adds critical Adobe ColdFusion flaw to its Known Exploited Vulnerabilities catalog appeared first on Security Affairs.

August 22, 2023
0 comment
Read More >>

A cyber attack hit the Australian software provider Energy One

The Australian software provider Energy One announced it was hit by a cyberattack last week that affected certain corporate systems in Australia and the UK. The Australian software provider Energy One announced that a cyberattack hit certain corporate systems in Australia and the UK last week. Energy One is a global supplier of software products […]

The post A cyber attack hit the Australian software provider Energy One appeared first on Security Affairs.

August 22, 2023
0 comment
Read More >>

Ivanti fixed a new critical Sentry API authentication bypass flaw

Ivanti warned customers of a new critical Sentry API authentication bypass vulnerability tracked as CVE-2023-38035. The software company Ivanti released urgent security patches to address a critical-severity vulnerability, tracked as CVE-2023-38035 (CVSS score 9.8), in the Ivanti Sentry (formerly MobileIron Sentry) product. The vulnerability could be exploited to access sensitive API data and configurations, run […]

The post Ivanti fixed a new critical Sentry API authentication bypass flaw appeared first on Security Affairs.

August 22, 2023
0 comment
Read More >>

BlackCat ransomware group claims the hack of Seiko network

The BlackCat/ALPHV ransomware group claims to have hacked the Japanese maker of watches Seiko and added the company to its data leak site. On August 10, 2023, the Japanese maker of watches Seiko disclosed a data breach following a cyber attack. “Seiko Group Corporation (hereinafter referred to as “the Company” or “we”) has confirmed that […]

The post BlackCat ransomware group claims the hack of Seiko network appeared first on Security Affairs.

August 21, 2023
0 comment
Read More >>