Aircraft Lessor AerCap Confirms Ransomware Attack

AerCap confirms ransomware attack after emerging cybercrime gang lists the company on its leak website.

The post Aircraft Lessor AerCap Confirms Ransomware Attack appeared first on SecurityWeek.

SecurityWeek – ​Read More

Israel, Czech Republic Reinforce Cyber Partnership Amid Hamas War

The agreement will facilitate the sharing of information and experience between the Israel National Cyber Directorate and the Czech National Cyber and Information Security Agency, including the possibility of internships.

Cyware News – Latest Cyber News – ​Read More

SEC Says X Account Hack was Due to SIM Swapping

The Securities and Exchange Commission (SEC) experienced an account takeover on Twitter due to a SIM swap attack, where the unauthorized party gained control of the SEC’s cell phone number.

Cyware News – Latest Cyber News – ​Read More

Info Stealing Packages Hidden in PyPI

Malicious Python packages on PyPI, such as nigpal, figflix, and seGMM, have been identified, with payloads designed to steal sensitive information from victims’ devices, particularly targeting Windows users.

Cyware News – Latest Cyber News – ​Read More

Outlook Vulnerability Discovery and New Ways to Leak NTLM Hashes

Attackers can use stolen NTLM v2 hashes for offline brute-force attacks or authentication relay attacks, potentially compromising user accounts and gaining unauthorized access.

Cyware News – Latest Cyber News – ​Read More

Update: Hackers Start Exploiting Critical Atlassian Confluence RCE Flaw

Organizations with outdated Confluence instances should treat them as potentially compromised, look for signs of exploitation, perform a thorough cleanup, and update to a safe version to mitigate the risk.

Cyware News – Latest Cyber News – ​Read More

Microsoft Falls Victim to Russia-Backed ‘Midnight Blizzard’ Cyberattack

Russian state-sponsored threat actor Nobelium used a basic password-spray attack to breach Microsoft corporate email accounts, including for execs.

darkreading – ​Read More

Godzilla Web Shell Attacks Stomp on Critical Apache ActiveMQ Flaw

Thousands of vulnerable servers may be open to cyberattacks exploiting the max-severity CVE-2023-46604 bug.

darkreading – ​Read More

Chinese Spies Exploited Critical VMware Bug for Nearly 2 Years

Even the most careful VMware customers may need to go back and double check that they weren’t compromised by a zero-day exploit for CVE-2023-34048.

darkreading – ​Read More