breaking news

Sandworm APT targets Ukraine with new SwiftSlicer wiper

GlobalDefenseBot
2 minutes

Russia-linked Sandworm APT group is behind a new Golang-based wiper, tracked as SwiftSlicer, that hit Ukraine, ESET reports. Researchers from ESET discovered a new Golang-based wiper, dubbed SwiftSlicer, that was used in attacks aimed at Ukraine. The experts believe that the Russia-linked APT group Sandwork (aka BlackEnergy and TeleBots) is behind the wiper attacks. The Sandworm group has been […]

The post Sandworm APT targets Ukraine with new SwiftSlicer wiper appeared first on Security Affairs.

PlugX Malware Sneaks Onto Windows PCs Through USB Devices

CySecBot
1 minute

By Deeba Ahmed
The new variant stood out among other malware because it can infect any attached removable USB device, e.g., floppy, flash, thumb drives, and any system the removable device is plugged into later.
This is a post from HackRead.com Read t…

LATEST CYBERTHREATS AND ADVISORIES – JANUARY 27, 2023

CySecBot
5 minutes

Alerts from national cybersecurity agencies, gaming developer attacks and the Mailchimp/FanDuel breach. Here are the latest threats and advisories for the week of January 27, 2023. Threat Advisories and Alerts CISA Publishes Report to Help Protect Schools from Cyberthreats The recent surge in cyberattacks against the education sector has led the U.S. Cybersecurity and Infrastructure Security Agency (CISA) to release a report addressing the issue. The COVID-19 pandemic made educational institutions increasingly vulnerable to cyberthreats, as virtual learning became widespread and led to the rapid adoption of new and untested technologies. The report titled “Partnering to Safeguard K-12 Organizations from…

breaking news

BlackCat Ransomware gang stole secret military data from an industrial explosives manufacturer

GlobalDefenseBot
3 minutes

The BlackCat Ransomware group claims to have hacked SOLAR INDUSTRIES INDIA and to have stolen 2TB of “secret military data.” The BlackCat Ransomware gang added SOLAR INDUSTRIES INDIA to the list of victims published on its Tor leak site. The company is a globally recognised industrial explosives manufacturer, it provides complete blasting solutions, including packaged, […]

The post BlackCat Ransomware gang stole secret military data from an industrial explosives manufacturer appeared first on Security Affairs.

Hive Ransomware Gang Disrupted; Servers and Dark Web Site Seized

CySecBot
1 minute

By Waqas
The FBI and Europol have obtained decryption keys for the Hive ransomware, which they have already shared with victims.
This is a post from HackRead.com Read the original post: Hive Ransomware Gang Disrupted; Servers and Dark Web Site Seized

New Python Malware Targeting Windows Devices

CySecBot
1 minute

By Deeba Ahmed
Dubbed PY#RATION by researchers; the new Python malware is equipped with RAT behaviour and info-stealing capabilities.
This is a post from HackRead.com Read the original post: New Python Malware Targeting Windows Devices

Threat Groups Distributing Malware via Google Ads

CySecBot
4 minutes

Security researchers are warning that Google Ads are being actively leveraged to distribute malware to unsuspecting victims searching for software downloads. On January 20, CronUp researcher Germán Fernández warned that the DEV-0569 ransomware group is using Google Ads to distribute Gozi/Ursnif malware, RedLine stealer, and Royal ransomware. “For deployment, they use Add-MpPreference to configure exclusions […]

The post Threat Groups Distributing Malware via Google Ads appeared first on eSecurityPlanet.

breaking news

Hive Ransomware Tor leak site apparently seized by law enforcement

GlobalDefenseBot
3 minutes

The leak site of the Hive ransomware gang was seized due to an international operation conducted by law enforcement in ten countries. The Tor leak site used by Hive ransomware operators has been seized as part of an international operation conducted by law enforcement in 10 countries. “The Federal Bureau of Investigation seized this site […]

The post Hive Ransomware Tor leak site apparently seized by law enforcement appeared first on Security Affairs.

breaking news

Experts warn of a surge of attacks exploiting a Realtek Jungle SDK RCE (CVE-2021-35394)

GlobalDefenseBot
3 minutes

Experts warn of a spike in the attacks that between August and October 2022 attempted to exploit a Realtek Jungle SDK RCE (CVE-2021-35394). Palo Alto Networks researchers reported that between August and October 2022 the number of attacks that attempted to exploit a Realtek Jungle SDK RCE (CVE-2021-35394) (CVSS score 9.8) accounted for more than […]

The post Experts warn of a surge of attacks exploiting a Realtek Jungle SDK RCE (CVE-2021-35394) appeared first on Security Affairs.