Uncategorized

New Ransomware Gang RA Group Hits U.S. and South Korean Organizations

New Ransomware Gang RA Group Hits U.S. and South Korean Organizations 15/05/2023 at 17:47 By A new ransomware group known as RA Group has become the latest threat actor to leverage the leaked Babuk ransomware source code to spawn its own locker variant. The cybercriminal gang, which is said to have been operating since at least April

New Ransomware Gang RA Group Hits U.S. and South Korean Organizations Read More »

Industrial Cellular Routers at Risk: 11 New Vulnerabilities Expose OT Networks

Industrial Cellular Routers at Risk: 11 New Vulnerabilities Expose OT Networks 15/05/2023 at 17:47 By Several security vulnerabilities have been disclosed in cloud management platforms associated with three industrial cellular router vendors that could expose operational technology (OT) networks to external attacks. The findings were presented by Israeli industrial cybersecurity firm OTORIO at the Black Hat Asia

Industrial Cellular Routers at Risk: 11 New Vulnerabilities Expose OT Networks Read More »

New ‘MichaelKors’ Ransomware-as-a-Service Targeting Linux and VMware ESXi Systems

New ‘MichaelKors’ Ransomware-as-a-Service Targeting Linux and VMware ESXi Systems 15/05/2023 at 17:47 By A new ransomware-as-service (RaaS) operation called MichaelKors has become the latest file-encrypting malware to target Linux and VMware ESXi systems as of April 2023. The development points to cybercriminal actors increasingly setting their eyes on the ESXi, cybersecurity firm CrowdStrike said in a report

New ‘MichaelKors’ Ransomware-as-a-Service Targeting Linux and VMware ESXi Systems Read More »

Researchers Uncover Powerful Backdoor and Custom Implant in Year-Long Cyber Campaign

Researchers Uncover Powerful Backdoor and Custom Implant in Year-Long Cyber Campaign 15/05/2023 at 17:47 By Government, aviation, education, and telecom sectors located in South and Southeast Asia have come under the radar of a new hacking group as part of a highly-targeted campaign that commenced in mid-2022 and continued into the first quarter of 2023.

Researchers Uncover Powerful Backdoor and Custom Implant in Year-Long Cyber Campaign Read More »

Former Ubiquiti Employee Gets 6 Years in Jail for $2 Million Crypto Extortion Case

Former Ubiquiti Employee Gets 6 Years in Jail for $2 Million Crypto Extortion Case 15/05/2023 at 12:11 By A former employee of Ubiquiti has been sentenced to six years in jail after he pleaded guilty to posing as an anonymous hacker and a whistleblower in an attempt to extort almost $2 million worth of cryptocurrency while working

Former Ubiquiti Employee Gets 6 Years in Jail for $2 Million Crypto Extortion Case Read More »

CLR SqlShell Malware Targets MS SQL Servers for Crypto Mining and Ransomware

CLR SqlShell Malware Targets MS SQL Servers for Crypto Mining and Ransomware 15/05/2023 at 12:11 By Poorly managed Microsoft SQL (MS SQL) servers are the target of a new campaign that’s designed to propagate a category of malware called CLR SqlShell that ultimately facilitates the deployment of cryptocurrency miners and ransomware. “Similar to web shell, which can

CLR SqlShell Malware Targets MS SQL Servers for Crypto Mining and Ransomware Read More »

Intelligence and business risk integration in corporate security

Intelligence and business risk integration in corporate security 15/05/2023 at 08:13 By Intelligence-related activities found within today’s global security programs aids in the protection of people, physical assets, finances and intellectual property. This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source

Intelligence and business risk integration in corporate security Read More »

New Phishing-as-a-Service Platform Lets Cybercriminals Generate Convincing Phishing Pages

New Phishing-as-a-Service Platform Lets Cybercriminals Generate Convincing Phishing Pages 13/05/2023 at 10:45 By A new phishing-as-a-service (PhaaS or PaaS) platform named Greatness has been leveraged by cybercriminals to target business users of the Microsoft 365 cloud service since at least mid-2022, effectively lowering the bar to entry for phishing attacks. “Greatness, for now, is only focused on

New Phishing-as-a-Service Platform Lets Cybercriminals Generate Convincing Phishing Pages Read More »

XWorm Malware Exploits Follina Vulnerability in New Wave of Attacks

XWorm Malware Exploits Follina Vulnerability in New Wave of Attacks 13/05/2023 at 02:35 By Cybersecurity researchers have discovered an ongoing phishing campaign that makes use of a unique attack chain to deliver the XWorm malware on targeted systems. Securonix, which is tracking the activity cluster under the name MEME#4CHAN, said some of the attacks have primarily targeted manufacturing

XWorm Malware Exploits Follina Vulnerability in New Wave of Attacks Read More »

OSHA rules USPS wrongfully terminates employee for reporting an injury

OSHA rules USPS wrongfully terminates employee for reporting an injury 12/05/2023 at 19:44 By Following an OSHA investigation, a Tacoma federal court determined that USPS wrongfully retaliated against an employee for reporting an injury. This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source

OSHA rules USPS wrongfully terminates employee for reporting an injury Read More »

Netgear Routers’ Flaws Expose Users to Malware, Remote Attacks, and Surveillance

Netgear Routers’ Flaws Expose Users to Malware, Remote Attacks, and Surveillance 12/05/2023 at 18:01 By As many as five security flaws have been disclosed in Netgear RAX30 routers that could be chained to bypass authentication and achieve remote code execution. “Successful exploits could allow attackers to monitor users’ internet activity, hijack internet connections, and redirect

Netgear Routers’ Flaws Expose Users to Malware, Remote Attacks, and Surveillance Read More »

Scroll to Top