Ohio’s Kettering Health system facing widespread outages after cyberattack

/in

The Kettering Health network based in western Ohio reported a system-wide technology outage that it tracked to “unauthorized access.”

The Record from Recorded Future News – ​Read More

Virgin Media 02 Vuln Exposes Call Recipient Location

/in

A hacker exploiting the security flaw in the mobile provider’s network could have potentially located a call recipient with accuracy of up to 100 square meters.

darkreading – ​Read More

Cyberthreat to Alabama state government ‘neutralized’

/in

After a cyberattack first identified about 10 days ago, Alabama’s IT leaders said the “threat has been neutralized and Alabama’s core operations are safe and stable.”

The Record from Recorded Future News – ​Read More

AI agent adoption is driving increases in opportunities, threats, and IT budgets

/in

While 79% of security leaders believe that AI agents will introduce new security and compliance challenges, 80% say AI agents will introduce new security opportunities.

Latest stories for ZDNET in Security – ​Read More

Bumblebee Malware Takes Flight via Trojanized VMware Utility

/in

An employee inadvertently downloaded a malicious version of the legitimate RVTools utility, which launched an investigation into an attempted supply chain attack aimed at delivering the recently revived initial-access loader.

darkreading – ​Read More

100+ Fake Chrome Extensions Found Hijacking Sessions, Stealing Credentials, Injecting Ads

/in

An unknown threat actor has been attributed to creating several malicious Chrome Browser extensions since February 2024 that masquerade as seemingly benign utilities but incorporate covert functionality to exfiltrate data, receive commands, and execute arbitrary code.
“The actor creates websites that masquerade as legitimate services, productivity tools, ad and media creation or analysis

The Hacker News – ​Read More

Hazy Hawk Attack Spotted Targeting Abandoned Cloud Assets Since 2023

/in

Infoblox reveals Hazy Hawk, a new threat exploiting abandoned cloud resources (S3, Azure) and DNS gaps since Dec…

Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – ​Read More

‘Hazy Hawk’ Cybercrime Gang Swoops In for Cloud Resources

/in

Since December 2023, the threat group has preyed on domains belonging to the US Centers for Disease Control and Prevention (CDC) and numerous other reputable organizations worldwide to redirect users to malicious sites.

darkreading – ​Read More

Novel Phishing Attack Combines AES With Poisoned npm Packages

/in

Researchers discovered a phishing attack in the wild that takes multiple well-tread technologies like open source packages and AES encryption and combines them.

darkreading – ​Read More

NATO-Flagged Vulnerability Tops Latest VMware Security Patch Batch

/in

VMware patches flaws that expose users to data leakage, command execution and denial-of-service attacks. No temporary workarounds available. 

The post NATO-Flagged Vulnerability Tops Latest VMware Security Patch Batch appeared first on SecurityWeek.

SecurityWeek – ​Read More