breaking news

Lazarus APT exploits Zoho ManageEngine flaw to target an Internet backbone infrastructure provider

GlobalDefenseBot
3 minutes

The North Korea-linked Lazarus group exploits a critical flaw in Zoho ManageEngine ServiceDesk Plus to deliver the QuiteRAT malware. The North Korea-linked APT group Lazarus has been exploiting a critical vulnerability, tracked as CVE-2022-47966, in Zoho’s ManageEngine ServiceDesk in attacks aimed at the Internet backbone infrastructure provider and healthcare organizations. The state-sponsored hackers targeted entities […]

The post Lazarus APT exploits Zoho ManageEngine flaw to target an Internet backbone infrastructure provider appeared first on Security Affairs.

Kali

Kali Linux 2023.3 Released: What’s New!

CySecBot
1 minute

Kali Linux 2023.3 is now available, and it includes a variety of new packages and tools, as well as the usual upgrades. The release of Kali Linux 2023.3 arrives three months after Kali Linux 2023.2.  This upgrades the kernel from Debian Bookworm’…

breaking news

FBI identifies wallets holding cryptocurrency funds stolen by North Korea

GlobalDefenseBot
2 minutes

The U.S. FBI warned that North Korea-linked threat actors may attempt to cash out stolen cryptocurrency worth more than $40 million. The Federal Bureau of Investigation shared details about the activity of six cryptocurrency wallets operated by North Korea-linked threat actors. The wallets hold roughly 1,580 Bitcoin (roughly $41 million at the current rate) that […]

The post FBI identifies wallets holding cryptocurrency funds stolen by North Korea appeared first on Security Affairs.

Hackers Threaten Patients Following a Massive Cyberattack on a Hospital

CySecBot
1 minute

One of the renowned hospitals in Israel became the victim of a data breach, and patients were blackmailed with a financial motive. According to an Israel Hayom report, Maayanei HaYeshua Medical Center in Bnei Brak was attacked, and the sensitive data o…

How Malware Sandboxes Strengthen Your Cybersecurity

CySecBot
1 minute

Cyberattacks are becoming increasingly sophisticated, threatening organizations’ critical infrastructure and sensitive data more than ever. Core solutions such as SIEMs are often insufficient to ensure complete protection against malware infectio…

Bogus OfficeNote app delivers XLoader macOS malware

CySecBot
1 minute

A new macOS-specific variant of the well known XLoader malware is being delivered disguised as the “OfficeNote” app. “Multiple submissions of this sample have appeared on VirusTotal throughout July, indicating that the malware has bee…

breaking news

Carderbee APT targets Hong Kong orgs via supply chain attacks

GlobalDefenseBot
3 minutes

A previously unknown APT group, tracked as Carderbee, was behind a supply chain attack against Hong Kong organizations. Symantec Threat Hunter Team reported that a previously unknown APT group, tracked as Carderbee, used a malware-laced version of the legitimate Cobra DocGuard software to carry out a supply chain attack aimed at organizations in Hong Kong. […]

The post Carderbee APT targets Hong Kong orgs via supply chain attacks appeared first on Security Affairs.

[SANS ISC] More Exotic Excel Files Dropping AgentTesla

CySecBot
1 minute

Today, I published the following diary on isc.sans.edu: “More Exotic Excel Files Dropping AgentTesla”: Excel is an excellent target for attackers. The Microsoft Office suite is installed on millions of computers, and people trust these files. If we have the classic xls, xls, xlsm file extensions, Excel supports many others!

The post [SANS ISC] More Exotic Excel Files Dropping AgentTesla appeared first on /dev/random.