Russian FSB Counterintelligence Chief Gets 9 Years in Cybercrime Bribery Scheme - The head of counterintelligence for a division of the Russian Federal Security Service (FSB) was sentenced last week to nine years in a penal colony for accepting a USD $1.7 million bribe to ignore the activities of a prolific Russian cybercrime group that hacked thousands of e-commerce websites. The...
ToddyCat is making holes in your infrastructure - We continue to report on the APT group ToddyCat. This time, we’ll talk about traffic tunneling, constant access to a target infrastructure and data extraction from hosts.
[End Press Releases]
Russian Sandworm hackers targeted 20 critical orgs in Ukraine - Russian hacker group Sandworm aimed to disrupt operations at around 20 critical infrastructure facilities in Ukraine, according to a report from the Ukrainian Computer Emergency Response Team (CERT-UA).
DPRK hacking groups breach South Korean defense contractors - The National Police Agency in South Korea issued an urgent warning today about North Korean hacking groups targeting defense industry entities to steal valuable technology information.
Microsoft: APT28 hackers exploit Windows flaw reported by NSA - Microsoft warns that the Russian APT28 threat group exploits a Windows Print Spooler vulnerability to escalate privileges and steal credentials and data using a previously unknown hacking tool called GooseEgg.
Exploring Cybersecurity Risks in Telemedicine: A New Healthcare Paradigm - The experience of seeing a doctor has transformed dramatically, thanks in part to the emergence of telemedicine. This digital evolution promises convenience and accessibility but brings with it a host of cybersecurity risks that were unimaginable up until a few years ago. The unique cybersecurity challenges...
US govt sanctions Iranians linked to government cyberattacks - The Treasury Department's Office of Foreign Assets Control (OFAC) has sanctioned four Iranian nationals for their involvement in cyberattacks against the U.S. government, defense contractors, and private companies.
Hackers hijack antivirus updates to drop GuptiMiner malware - North Korean hackers have been exploiting the updating mechanism of the eScan antivirus to plant backdoors on big corporate networks and deliver cryptocurrency miners through GuptiMiner malware.
Enhancing Endpoint Security with Advanced Host-Based Intrusion Detection Capabilities - In 2023, companies lost about $4.45 million on average because of data breaches. As cyber threats advance, securing endpoints is more important than ever. An advanced Host-based Intrusion Detection System (HIDS) provides a sturdy remedy to improve endpoint security . By monitoring and examining system...
Pornhub, XVideos, and Stripchat face more scrutiny in EU - Starting next week, Pornhub, Stripchat and Xvideos will face “the strictest obligations” under the Digital Services Act (DSA). The new requirements include preventing EU minors from accessing porn.
GitLab affected by GitHub-style CDN flaw allowing malware hosting - BleepingComputer recently reported how a GitHub flaw, or possibly a design decision, is being abused by threat actors to distribute malware using URLs associated with Microsoft repositories, making the files appear trustworthy. It turns out, GitLab is also affected by this issue and could be abused in...
