The US State Department has announced a reward of up to $10 million for information on the leaders of the AlphV ransomware group, with an additional $5 million for details leading to the arrest of those involved in attacks.
Cyware News – Latest Cyber News – Read More
Three vulnerabilities in CU Solutions Group CMS exposed 275 credit unions to credential theft, account takeover.
The post Vulnerabilities in CUSG CMS Exposed Credit Unions to Attacks appeared first on SecurityWeek.
SecurityWeek – Read More
A massive database leak from Zenlayer, a global network service provider, exposed 384,658,212 records, including sensitive customer data and internal operations logs, without basic password protection.
Cyware News – Latest Cyber News – Read More
Organizations using versions prior to v7.75 of the web application are urged to upgrade, and all organizations using this CMS should enable multi-factor authentication immediately to prevent potential breaches.
Cyware News – Latest Cyber News – Read More
U.S. law enforcement disrupted a criminal botnet, “Moobot,” which Russian military hackers had repurposed for global cyberespionage, leading to the FBI obtaining a warrant to modify infected routers and shut down the botnet.
Cyware News – Latest Cyber News – Read More
JKwerlo’s utilization of lateral movement techniques and exploitation of legitimate services like Dropbox and GitHub highlight its capability to spread across networks and evade traditional security measures.
Cyware News – Latest Cyber News – Read More
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has revealed that an unnamed state government organization’s network environment was compromised via an administrator account belonging to a former employee.
“This allowed the threat actor to successfully authenticate to an internal virtual private network (VPN) access point,” the agency said in a joint advisory published
The Hacker News – Read More
The U.S. government on Thursday said it disrupted a botnet comprising hundreds of small office and home office (SOHO) routers in the country that was put to use by the Russia-linked APT28 actor to conceal its malicious activities.
“These crimes included vast spear-phishing and similar credential harvesting campaigns against targets of intelligence interest to the Russian government, such as U.S.
The Hacker News – Read More
A new report cited 28 “verified” accounts on X that appear to be tied to sanctioned groups or individuals.
Security Latest – Read More