KLogEXE is a C++ keylogger while FPSpy is a backdoor designed to collect system information and exfiltrate data from compromised devices. Both malware strains are primarily being distributed through spear-phishing emails.
Scamming operations that once originated in Southeast Asia are now proliferating around the world, likely raking in billions of dollars in the process.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-09-30 10:06:392024-09-30 10:06:39Microsoft: Cloud Environments of US Organizations Targeted in Ransomware Attacks
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-09-30 09:08:452024-09-30 09:08:45British National Arrested, Charged for Hacking US Companies
The malicious app, called WalletConnect, amassed over 10,000 downloads and stole around $70,000 in cryptocurrency from Android users before being removed from the Google Play Store.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-09-30 09:08:452024-09-30 09:08:45First Mobile Crypto Drainer Found on Google Play
NIST is seeking public feedback on the draft guidelines, which can be submitted via email until October 7. The goal is to promote sensible password practices that enhance security without burdening users or compromising their online identity.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-09-30 08:12:242024-09-30 08:12:24NIST Proposes Barring Some of the Most Nonsensical Password Rules
A watering hole attack targeted Kurdish websites, distributing malicious APKs and spyware, compromising 25 sites for over a year. French cybersecurity firm Sekoia uncovered the campaign called SilentSelfie, delivering various info-stealers.
The Irish Data Protection Commission (DPC) has fined Meta €91 million ($101.56 million) as part of a probe into a security lapse in March 2019, when the company disclosed that it had mistakenly stored users’ passwords in plaintext in its systems.
The investigation, launched by the DPC the next month, found that the social media giant violated four different articles under the European Union’s
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-09-30 07:09:152024-09-30 07:09:15Meta Fined €91 Million for Storing Millions of Facebook and Instagram Passwords in Plaintext
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-09-30 02:06:512024-09-30 02:06:51California Governor Vetoes Bill to Create First-in-Nation AI Safety Measures
Plus: The US Justice Department indicts three Iranians over Trump campaign hack, EU regulators fine Meta $100 million for a password security lapse, and the Tor Project enters a new phase.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-09-28 11:10:072024-09-28 11:10:07The US Could Finally Ban Inane Forced Password Changes
BackBox.org offers a range of Penetration Testing services to simulate an attack on your network or application. If you are interested in our services, please contact us and we will provide you with further information as well as an initial consultation.
Unraveling Sparkling Pisces’s Tool Set: KLogEXE and FPSpy
/in General NewsKLogEXE is a C++ keylogger while FPSpy is a backdoor designed to collect system information and exfiltrate data from compromised devices. Both malware strains are primarily being distributed through spear-phishing emails.
Cyware News – Latest Cyber News – Read More
The Pig Butchering Invasion Has Begun
/in General NewsScamming operations that once originated in Southeast Asia are now proliferating around the world, likely raking in billions of dollars in the process.
Security Latest – Read More
Microsoft: Cloud Environments of US Organizations Targeted in Ransomware Attacks
/in General NewsA threat actor has been compromising the hybrid cloud environments of US organizations in multiple sectors.
The post Microsoft: Cloud Environments of US Organizations Targeted in Ransomware Attacks appeared first on SecurityWeek.
SecurityWeek – Read More
British National Arrested, Charged for Hacking US Companies
/in General NewsUK national Robert Westbrook was charged in the US for executing a hack-to-trade scheme against five public companies.
The post British National Arrested, Charged for Hacking US Companies appeared first on SecurityWeek.
SecurityWeek – Read More
First Mobile Crypto Drainer Found on Google Play
/in General NewsThe malicious app, called WalletConnect, amassed over 10,000 downloads and stole around $70,000 in cryptocurrency from Android users before being removed from the Google Play Store.
Cyware News – Latest Cyber News – Read More
NIST Proposes Barring Some of the Most Nonsensical Password Rules
/in General NewsNIST is seeking public feedback on the draft guidelines, which can be submitted via email until October 7. The goal is to promote sensible password practices that enhance security without burdening users or compromising their online identity.
Cyware News – Latest Cyber News – Read More
Watering Hole Attack on Kurdish Sites Distributing Malicious APKs and Spyware
/in General NewsA watering hole attack targeted Kurdish websites, distributing malicious APKs and spyware, compromising 25 sites for over a year. French cybersecurity firm Sekoia uncovered the campaign called SilentSelfie, delivering various info-stealers.
Cyware News – Latest Cyber News – Read More
Meta Fined €91 Million for Storing Millions of Facebook and Instagram Passwords in Plaintext
/in General NewsThe Irish Data Protection Commission (DPC) has fined Meta €91 million ($101.56 million) as part of a probe into a security lapse in March 2019, when the company disclosed that it had mistakenly stored users’ passwords in plaintext in its systems.
The investigation, launched by the DPC the next month, found that the social media giant violated four different articles under the European Union’s
The Hacker News – Read More
California Governor Vetoes Bill to Create First-in-Nation AI Safety Measures
/in General NewsGavin Newsom vetoed a landmark bill SB 1047 aimed at establishing first-in-the-nation safety measures for large artificial intelligence models.
The post California Governor Vetoes Bill to Create First-in-Nation AI Safety Measures appeared first on SecurityWeek.
SecurityWeek – Read More
The US Could Finally Ban Inane Forced Password Changes
/in General NewsPlus: The US Justice Department indicts three Iranians over Trump campaign hack, EU regulators fine Meta $100 million for a password security lapse, and the Tor Project enters a new phase.
Security Latest – Read More