Kinsing Hackers Exploit Apache ActiveMQ Vulnerability to Deploy Linux Rootkits

/in

The Kinsing threat actors are actively exploiting a critical security flaw in vulnerable Apache ActiveMQ servers to infect Linux systems with cryptocurrency miners and rootkits.
“Once Kinsing infects a system, it deploys a cryptocurrency mining script that exploits the host’s resources to mine cryptocurrencies like Bitcoin, resulting in significant damage to the infrastructure and a negative

The Hacker News – ​Read More

CISA Explains How to Apply Secure-By-Design Principles

/in

The CISA is pushing for manufacturers and vendors to take responsibility for the security of their products. CISA wants detailed data and logs from technology companies to prove they are incorporating security measures.

Cyware News – Latest Cyber News – ​Read More

Unusual “ZPAQ” Archive Format Delivers Malware

/in

The use of the ZPAQ compression format by threat actors in this malware campaign highlights the need for improved security measures and awareness regarding lesser-known archive tools.

Cyware News – Latest Cyber News – ​Read More

Popular Dragon Touch Tablet for Kids Infected with Corejava Malware

/in

Researchers from the Electronic Frontier Foundation have discovered that the Dragon Touch KidzPad Y88X 10 tablet, sold on Amazon, contains malware and preinstalled riskware. The tablet also comes with an outdated parental control app called KIDOZ.

Cyware News – Latest Cyber News – ​Read More

Sumo Logic Completes Investigation Into Recent Security Breach

/in

Sumo Logic has completed its investigation into the recent security breach and found no evidence of impact to customer data.

The post Sumo Logic Completes Investigation Into Recent Security Breach appeared first on SecurityWeek.

SecurityWeek – ​Read More

Wireshark 4.2.0 released, open-source packet analysis gets even better

/in

Wireshark 4.2.0 introduces notable improvements, such as enhanced packet list sorting and smarter display filter autocomplete. It supports a wide range of new protocols, including HTTP/3, SAP protocols, Zigbee TLV, and VMware HeartBeat.

Cyware News – Latest Cyber News – ​Read More

Leveraging Sandbox and Threat Intelligence Feeds to Combat Cyber Threats

/in

Combining a malware sandbox with threat intelligence feeds improves security detection, analysis, and response capabilities.

Dark Reading – ​Read More

A Detection and Response Benchmark Designed for the Cloud

/in

Does your security operation center’s performance meet the 5/5/5 benchmark for cloud threat detection and incident response?

Dark Reading – ​Read More

Crypto Scammers Exploit Gaza Crisis, Deceiving Users in Donation Scam

/in

By Deeba Ahmed

Scammers taking advantage of a humanitarian crisis? Well, who saw that coming…

This is a post from HackRead.com Read the original post: Crypto Scammers Exploit Gaza Crisis, Deceiving Users in Donation Scam

Hackread – Latest Cybersecurity News, Press Releases & Technology Today – ​Read More

8Base Group Deploying New Phobos Ransomware Variant via SmokeLoader

/in

The threat actors behind the 8Base ransomware are leveraging a variant of the Phobos ransomware to conduct their financially motivated attacks.
The findings come from Cisco Talos, which has recorded an increase in activity carried out by cybercriminals.
“Most of the group’s Phobos variants are distributed by SmokeLoader, a backdoor trojan,” security researcher Guilherme Venere said in an

The Hacker News – ​Read More