Possible Chinese Hackers Use OpenMetadata for Cryptomining

Hackers who appear to be Chinese are exploiting vulnerabilities in the OpenMetadata platform running as workloads on Kubernetes clusters to download cryptomining software, warns Microsoft.

Cyware News – Latest Cyber News – ​Read More

UnitedHealth Expects Up to $1.6B Hit From Change Healthcare Cyberattack This Year

The hit comes from direct response efforts like recovering Change’s clearinghouse platform and paying higher medical costs after its insurance arm suspended some utilization management processes, in addition to the loss of Change’s revenue.

Cyware News – Latest Cyber News – ​Read More

Cybersecurity Pros Urge US Congress to Help NIST Restore NVD Operation

A group of 50 cybersecurity professionals signed an open letter that was sent on April 12 to the US Secretary of Commerce, Gina Raimondo, and several members of the US Congress.

Cyware News – Latest Cyber News – ​Read More

Cisco Warns of a Command Injection and Privilege Escalation Flaw in Its IMC

A local, authenticated attacker can exploit the vulnerability, tracked as CVE-2024-20295, to conduct command injection attacks on the underlying operating system and elevate privileges to root.

Cyware News – Latest Cyber News – ​Read More

Food and Agriculture Sector Hit with More Than 160 Ransomware Attacks Last Year

In its first annual report, the Food and Agriculture-Information Sharing and Analysis Center (Food and Ag-ISAC) said the industry was the seventh most targeted sector in the country, behind manufacturing, financial services, and others.

Cyware News – Latest Cyber News – ​Read More

Sneaky Shellcode: Windows Fibers Offer EDR-Proof Code Execution

Two new code-execution techniques, Poison Fiber and Phantom Thread, take advantage of a little-known Windows OS workhorse to sneak shellcode and other malware onto victim machines.

darkreading – ​Read More

Cisco Unveils AI-Native Enterprise Security Solution Hypershield

Cisco announces Hypershield, an AI-native and cloud-native enterprise security solution with a wide range of capabilities.

The post Cisco Unveils AI-Native Enterprise Security Solution Hypershield appeared first on SecurityWeek.

SecurityWeek – ​Read More

Nigeria & Romania Ranked Among Top Cybercrime Havens

A survey of cybercrime experts assessing the top cybercrime-producing nations results in some expected leaders — Russia, Ukraine, and China — but also some surprises.

darkreading – ​Read More

6 Phone Management Tips When Traveling Abroad

By Owais Sultan

Phones are a major reason why travelling is more accepted and comfortable than ever before. First of all,…

This is a post from HackRead.com Read the original post: 6 Phone Management Tips When Traveling Abroad

Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – ​Read More

Hackers Exploit OpenMetadata Flaws to Mine Crypto on Kubernetes

Threat actors are actively exploiting critical vulnerabilities in OpenMetadata to gain unauthorized access to Kubernetes workloads and leverage them for cryptocurrency mining activity.
That’s according to the Microsoft Threat Intelligence team, which said the flaws have been weaponized since the start of April 2024.
OpenMetadata is an open-source platform that operates as a

The Hacker News – ​Read More