Security News

BlackLotus is the first bootkit bypassing UEFI Secure Boot on Windows 11

ESET discovered a stealthy Unified Extensible Firmware Interface (UEFI) bootkit dubbed BlackLotus that is able to bypass the Secure Boot on Windows 11. Researchers from ESET discovered a new stealthy Unified Extensible Firmware Interface (UEFI) bootkit, named BlackLotus, that is able to bypass Secure Boot on Windows 11. Secure Boot is a security feature of the […]

The post BlackLotus is the first bootkit bypassing UEFI Secure Boot on Windows 11 appeared first on Security Affairs.

March 1, 2023
0 comment
Read More >>

Satellite TV giant Dish admitted that the recent outage was caused by a ransomware attack

Satellite TV giant Dish Network has confirmed that the recent outage was caused by a ransomware attack, it also disclosed a data breach. Satellite TV giant Dish Network finally admitted that the recent outage was caused by a ransomware attack. The American satellite broadcast provider went offline on February 24, 2023, the outage impacted Dish.com, […]

The post Satellite TV giant Dish admitted that the recent outage was caused by a ransomware attack appeared first on Security Affairs.

March 1, 2023
0 comment
Read More >>

Parallax RAT used in attacks aimed at cryptocurrency entities

Experts warn of a new wave of attacks against cryptocurrency entities, threat actors are using a RAT dubbed Parallax RAT for Infiltration. Researchers from cybersecurity firm Uptycs warns of attacks targeting cryptocurrency organizations with the Parallax remote access Trojan (RAT). Parallax RAT has been distributed through malvertising and phishing campaigns since December 2019. The malware supports […]

The post Parallax RAT used in attacks aimed at cryptocurrency entities appeared first on Security Affairs.

March 1, 2023
0 comment
Read More >>

Google Gmail client-side encryption is available globally

Gmail client-side encryption (CSE) is now available for Workspace Enterprise Plus, Education Plus, and Education Standard customers. Google announced that Gmail client-side encryption (CSE) is now available for all Google Workspace Enterprise Plus, Education Plus, and Education Standard customers. In December, Google announced end-to-end encryption for Gmail (E2EE), with Gmail client-side encryption beta users can […]

The post Google Gmail client-side encryption is available globally appeared first on Security Affairs.

March 1, 2023
0 comment
Read More >>

Bitdefender released a free decryptor for the MortalKombat Ransomware family

Antivirus company Bitdefender has released a free decryptor for the recently discovered ransomware family MortalKombat. Good news for the victims of the recently discovered MortalKombat ransomware, the antivirus firm Bitdefender has released a free decryptor that will allow them to recover their file without paying the ransom. Since December 2022, Cisco Talos researchers have been observing an unidentified financially […]

The post Bitdefender released a free decryptor for the MortalKombat Ransomware family appeared first on Security Affairs.

February 28, 2023
0 comment
Read More >>

U.S. Marshals Service suffers a ransomware attack

The U.S. Marshals Service (USMS) was the victim of a ransomware attack, it is investigating the theft of sensitive information. The U.S. Marshals Service (USMS) announced that a ransomware attack has impacted “a stand-alone USMS system.” The US bureau is investigating the theft of sensitive information following the security breach. The infection occurred on February […]

The post U.S. Marshals Service suffers a ransomware attack appeared first on Security Affairs.

February 28, 2023
0 comment
Read More >>

CISA adds ZK Java Web Framework bug to Known Exploited Vulnerabilities Catalog

US CISA added an actively exploited vulnerability in the ZK Java Web Framework to its Known Exploited Vulnerabilities Catalog. U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a vulnerability, tracked as CVE-2022-36537 (CVSS score: 7.5), in the ZK Java Web open-source framework to its Known Exploited Vulnerabilities Catalog. An attacker can exploit the flaw to retrieve […]

The post CISA adds ZK Java Web Framework bug to Known Exploited Vulnerabilities Catalog appeared first on Security Affairs.

February 28, 2023
0 comment
Read More >>

Resecurity identified the investment scam network ‘Digital Smoke’

Resecurity identified one of the largest investment fraud networks, tracked as Digital Smoke, by size and volume of operations. Resecurity identified one of the largest investment fraud networks by size and volume of operations created to defraud Internet users from Australia, Canada, China, Colombia, the European Union, India, Singapore, Malaysia, United Arab Emirates, Saudi Arabia, […]

The post Resecurity identified the investment scam network ‘Digital Smoke’ appeared first on Security Affairs.

February 28, 2023
0 comment
Read More >>

LastPass: hackers breached the computer of a DevOps engineer in a second attack

Threat actors hacked the home computer of a DevOp engineer, they installed a keylogger as part of a sophisticated cyber attack. Password management software firm LastPass disclosed a “second attack,” a threat actor used data stolen from the August security breach and combined it with information available from a third-party data breach. Then the attackers […]

The post LastPass: hackers breached the computer of a DevOps engineer in a second attack appeared first on Security Affairs.

February 28, 2023
0 comment
Read More >>

Threat actors leak Activision employee data on hacking forum

Data allegedly stolen from the American gaming giant Activision in December security breach were leaked on a cybercrime forum. A threat actor leaked on the Breached hacking forum the data allegedly stolen from the gaming giant Activision in December 2022. The threat actors claim to have obtained 19,444 unique records from an Activision Azure database […]

The post Threat actors leak Activision employee data on hacking forum appeared first on Security Affairs.

February 27, 2023
0 comment
Read More >>