CVE-2023-20198 zero-day widely exploited to install implants on Cisco IOS XE systems

GlobalDefenseBot 17 October

4 minutes

Threat actors exploited the recently disclosed zero-day flaw (CVE-2023-20198) in a large-scale hacking campaign on Cisco IOS XE devices. Threat actors have exploited the recently disclosed critical zero-day vulnerability (CVE-2023-20198) to compromise thousands of Cisco IOS XE devices, security firm VulnCheck warns. Cisco this week warned customers of a zero-day vulnerability, tracked as CVE-2023-20198 (CVSS score 10), […]

The post CVE-2023-20198 zero-day widely exploited to install implants on Cisco IOS XE systems appeared first on Security Affairs.

breaking news

Russia-linked Sandworm APT compromised 11 Ukrainian telecommunications providers

GlobalDefenseBot 17 October

3 minutes

Russia-linked APT group Sandworm has hacked eleven telecommunication service providers in Ukraine between since May 2023. The Russia-linked APT group Sandworm (UAC-0165) has compromised eleven telecommunication service providers in Ukraine between May and September 2023, reported the Ukraine’s Computer Emergency Response Team (CERT-UA). According to public sources, the threat actors targeted ICS of at least […]

The post Russia-linked Sandworm APT compromised 11 Ukrainian telecommunications providers appeared first on Security Affairs.

XorDDoS Infects Linux Devices and uses them to Carry out DDoS Attacks

CySecBot 17 October

4 minutes

A new campaign has been discovered that uses XorDDoS Trojan, which affects Linux systems and devices, turning them into zombies that can be controlled by threat actors remotely. Moreover, these compromised systems can later be used for DDoS(Distributed Denial-of-Service) attacks. Comparing this current campaign with the campaign conducted in 2022, there was only one change […]

The post XorDDoS Infects Linux Devices and uses them to Carry out DDoS Attacks appeared first on GBHackers on Security | #1 Globally Trusted Cyber Security News Platform.

Security Vulnerability of Switzerland’s E-Voting System

CySecBot 17 October

3 minutes

Online voting is insecure, period. This doesn’t stop organizations and governments from using it. (And for low-stakes elections, it’s probably fine.) Switzerland—not low stakes—uses online voting for national elections. Andrew Appel explains why it’s a bad idea:

Last year, I published a 5-part series about Switzerland’s e-voting system. Like any internet voting system, it has inherent security vulnerabilities: if there are malicious insiders, they can corrupt the vote count; and if thousands of voters’ computers are hacked by malware, the malware can change votes as they are transmitted. Switzerland “solves” the problem of malicious insiders in their printing office by officially declaring that they won’t consider that threat model in their cybersecurity assessment…

Researchers warn of increased malware delivery via fake browser updates

CySecBot 17 October

1 minute

ClearFake, a recently documented threat leveraging compromised WordPress sites to push malicious fake browser updates, is likely operated by the threat group behind the SocGholish “malware delivery via fake browser updates” campaigns, Sekoi…

breaking news

Ransomware realities in 2023: one employee mistake can cost a company millions

GlobalDefenseBot 17 October

5 minutes

What is the impact of ransomware on organizations? One employee’s mistake can cost a company millions of dollars. Studies show that human error is the root cause of more than 80% of all cyber breaches, whether malicious or unintended. The recent debilitating cyberattacks on casino and resort giants MGM and Caesars are no exception. How […]

The post Ransomware realities in 2023: one employee mistake can cost a company millions appeared first on Security Affairs.

breaking news

Malware-laced ‘RedAlert – Rocket Alerts’ app targets Israeli users

GlobalDefenseBot 17 October

3 minutes

Threat actors are targeting Israeli Android users with a malicious version of the ‘RedAlert – Rocket Alerts’ that hide spyware. A threat actor is targeting Israeli Android users with a spyware-laced version of the ‘RedAlert – Rocket Alerts’ app, Cloudflare warns. RedAlert – Rocket Alerts is a mobile app that provides real-time alerts about incoming […]

The post Malware-laced ‘RedAlert – Rocket Alerts’ app targets Israeli users appeared first on Security Affairs.

Public Cloud Security Explained: Everything You Need to Know

CySecBot 17 October

13 minutes

Public cloud security protects your organization from outside threats on public cloud environments. Learn more on how public cloud security works.

The post Public Cloud Security Explained: Everything You Need to Know appeared first on eSecurity Planet.

Incidents

A hack in hand is worth two in the bush

CySecBot 16 October

6 minutes

We analyzed the data published by Cyber Av3ngers and found it to be sourced from older leaks by another hacktivist group called Moses Staff.

DarkGate Malware Becomes Active, Spreads Via Skype Accounts

CySecBot 16 October

1 minute

The notorious DarkGate malware has become active again, as it now spreads via compromised Skype…
DarkGate Malware Becomes Active, Spreads Via Skype Accounts on Latest Hacking News | Cyber Security News, Hacking Tools and Penetration Testing Cours…