Censys Finds Hundreds of Exposed Servers as Volt Typhoon APT Targets ISPs, MSPs

/in

Amidst Volt Typhoon zero-day exploitation, Censys finds hundreds of exposed servers presenting ripe attack surface for attackers.

The post Censys Finds Hundreds of Exposed Servers as Volt Typhoon APT Targets ISPs, MSPs appeared first on SecurityWeek.

SecurityWeek – ​Read More

Manufacturing Sector Under Fire From Microsoft Credential Thieves

/in

The emails impersonate well-known companies in the industry, fooling the victim into thinking they are communicating with a legitimate entity.

darkreading – ​Read More

LinkedIn Hires Former Twitter Security Chief Lea Kissner as New CISO

/in

Lea Kissner replaces Geoff Belknap as Chief Information Security Officer (CISO) at Microsoft-owned LinkedIn.

The post LinkedIn Hires Former Twitter Security Chief Lea Kissner as New CISO appeared first on SecurityWeek.

SecurityWeek – ​Read More

APT-C-60 Group Exploit WPS Office Flaw to Deploy SpyGlace Backdoor

/in

A South Korea-aligned cyber espionage has been linked to the zero-day exploitation of a now-patched critical remote code execution flaw in Kingsoft WPS Office to deploy a bespoke backdoor dubbed SpyGlace.
The activity has been attributed to a threat actor dubbed APT-C-60, according to cybersecurity firms ESET and DBAPPSecurity. The attacks have been found to infect Chinese and East Asian users

The Hacker News – ​Read More

Hitachi Energy Vulnerabilities Plague SCADA Power Systems

/in

The company has assessed four of the five disclosed vulnerabilities as being of high to critical severity.

darkreading – ​Read More

BlackByte Blends Known Tactics With New Encryptor Variant and Vulnerability Exploits to Support Ongoing Attacks

/in

The latest encryptor variant identified by researchers at Cisco Talos appends the file extension ‘blackbytent_h’ to encrypted files. This variant also includes the deployment of four vulnerable drivers, an increase from previous reports.

Cyware News – Latest Cyber News – ​Read More

New LummaC2 Malware Variant Uses PowerShell, Obfuscation to Steal Data

/in

Ontinue has discovered a new LummaC2 malware variant with increased activity, using PowerShell for initial infection and employing…

Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – ​Read More

Why LLMs Are Just the Tip of the AI Security Iceberg

/in

With the right processes and tools, organizations can implement advanced AI security frameworks that make hidden risks visible, enabling security teams to track and address them before impact.

darkreading – ​Read More

WPS Office Zero-Day Exploited by South Korea-Linked Cyberspies

/in

A WPS Office zero-day vulnerability tracked as CVE⁠-⁠2024⁠-⁠7262 was exploited by South Korean hacker group APT-C-60.

The post WPS Office Zero-Day Exploited by South Korea-Linked Cyberspies appeared first on SecurityWeek.

SecurityWeek – ​Read More

Check Point Acquires Cybersecurity Startup Cyberint

/in

Israeli cybersecurity firm Check Point Software Technologies has announced the acquisition of threat intelligence company Cyberint, marking its third startup acquisition in a year.

Cyware News – Latest Cyber News – ​Read More