Hitachi Energy Vulnerabilities Plague SCADA Power Systems
The company has assessed four of the five disclosed vulnerabilities as being of high to critical severity.
darkreading – Read More
BlackByte Blends Known Tactics With New Encryptor Variant and Vulnerability Exploits to Support Ongoing Attacks
The latest encryptor variant identified by researchers at Cisco Talos appends the file extension ‘blackbytent_h’ to encrypted files. This variant also includes the deployment of four vulnerable drivers, an increase from previous reports.
Cyware News – Latest Cyber News – Read More
New LummaC2 Malware Variant Uses PowerShell, Obfuscation to Steal Data
Ontinue has discovered a new LummaC2 malware variant with increased activity, using PowerShell for initial infection and employing…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Why LLMs Are Just the Tip of the AI Security Iceberg
With the right processes and tools, organizations can implement advanced AI security frameworks that make hidden risks visible, enabling security teams to track and address them before impact.
darkreading – Read More
WPS Office Zero-Day Exploited by South Korea-Linked Cyberspies
A WPS Office zero-day vulnerability tracked as CVE-2024-7262 was exploited by South Korean hacker group APT-C-60.
The post WPS Office Zero-Day Exploited by South Korea-Linked Cyberspies appeared first on SecurityWeek.
SecurityWeek – Read More
Check Point Acquires Cybersecurity Startup Cyberint
Israeli cybersecurity firm Check Point Software Technologies has announced the acquisition of threat intelligence company Cyberint, marking its third startup acquisition in a year.
Cyware News – Latest Cyber News – Read More
Malware Delivered via Malicious Pidgin Plugin, Signal Fork
Threat actors delivered malware via instant messaging applications, including a malicious Pidgin plugin and an unofficial Signal fork.
The post Malware Delivered via Malicious Pidgin Plugin, Signal Fork appeared first on SecurityWeek.
SecurityWeek – Read More
Check Point to Acquire External Cyber Risk Management Firm Cyberint
Check Point says the acquisition will enhance its own SOC capabilities and expand its managed threat intelligence offerings.
The post Check Point to Acquire External Cyber Risk Management Firm Cyberint appeared first on SecurityWeek.
SecurityWeek – Read More
China’s Volt Typhoon Exploits Zero-Day Flaw in Versa’s SD-WAN Director Servers
Lumen researchers identified the bug and reported it to Versa in June, with active exploitation by Volt Typhoon observed since at least June. The attackers use a Web shell called VersaMem to capture credentials and monitor system activity.
Cyware News – Latest Cyber News – Read More
New Phishing Campaign Steals VPN Credentials Using Social Engineering Methods
The GuidePoint Research and Intelligence Team (GRIT) discovered attacker domain names and IP addresses targeting over 130 US organizations through a campaign that begins by stealing credentials and passcodes using social engineering tactics.
Cyware News – Latest Cyber News – Read More