UNC6692 Combines Social Engineering, Malware, Cloud Abuse
A newly discovered threat actor is using Microsoft Teams, AWS S3 buckets, and custom “Snow” malware in a multipronged campaign.
darkreading – Read More
Tennessee becomes second state to ban cryptocurrency ATMs over scam concerns
State officials said they observed overseas criminals carrying out government impersonation or tech support cons, as well as romance and pig butchering scams using cryptocurrency ATMs.
The Record from Recorded Future News – Read More
Hacker who allegedly carried out cyberattacks for China is extradited to US
Xu Zewei is accused of participating in a Chinese government hacking group that broke into thousands of U.S. organizations and stole COVID-19-related research.
Security News | TechCrunch – Read More
I tried this Bluetti power station with wheels – now every other charger feels outdated
The Bluetti Elite 400 has something that you don’t see on many power stations, and it can charge just about anything.
Latest news – Read More
Money launderer for crypto thieves given 5-year sentence
A California man was sentenced to more than five years in prison for his role in supporting a cybercriminal organization that stole about $260 million worth of cryptocurrency from victims.
The Record from Recorded Future News – Read More
ShinyHunters Leaks Data of Udemy, Zara, 7-Eleven in Salesforce Linked Breach
ShinyHunters has leaked data linked to Udemy, Zara, and 7-Eleven, with claims of exposed Salesforce records and cloud-based systems.
Hackread – Cybersecurity News, Data Breaches, AI and More – Read More
Unpatched ‘PhantomRPC’ Flaw in Windows Enables Privilege Escalation
A researcher discovered five different exploit paths that stem from an architectural weakness in how Windows’ Remote Procedure Call (RPC) mechanism handles connections to unavailable services.
darkreading – Read More
6 MacOS settings I immediately change on every new Mac – and why
Out of the box, MacOS is pretty user-friendly and flexible. Still, I make these tweaks right away to make it even better.
Latest news – Read More
Samsung Wallet just got a travel feature that I hope Google Wallet copies ASAP
This is a pretty big perk for Galaxy users since there’s nothing like it built into Android.
Latest news – Read More
Incomplete Windows Patch Opens Door to Zero-Click Attacks
The initial vulnerability was exploited by Russia-linked APT28 in attacks against Ukraine and EU countries.
The post Incomplete Windows Patch Opens Door to Zero-Click Attacks appeared first on SecurityWeek.
SecurityWeek – Read More