https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00adminhttps://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.pngadmin2025-01-27 10:07:022025-01-27 10:07:02TalkTalk investigating data breach after hacker claims theft of customer data
A previously unknown threat actor has been observed copying the tradecraft associated with the Kremlin-aligned Gamaredon hacking group in its cyber attacks targeting Russian-speaking entities.
The campaign has been attributed to a threat cluster dubbed GamaCopy, which is assessed to share overlaps with another hacking group named Core Werewolf, also tracked as Awaken Likho and PseudoGamaredon.
Threat hunters have detailed an ongoing campaign that leverages a malware loader called MintsLoader to distribute secondary payloads such as the StealC information stealer and a legitimate open-source network computing platform called BOINC.
“MintsLoader is a PowerShell based malware loader that has been seen delivered via spam emails with a link to Kongtuke/ClickFix pages or a JScript file,”
A high-severity security flaw has been disclosed in Meta’s Llama large language model (LLM) framework that, if successfully exploited, could allow an attacker to execute arbitrary code on the llama-stack inference server.
The vulnerability, tracked as CVE-2024-50050, has been assigned a CVSS score of 6.3 out of 10.0. Supply chain security firm Snyk, on the other hand, has assigned it a
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00adminhttps://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.pngadmin2025-01-26 11:06:582025-01-26 11:06:58Meta’s Llama Framework Flaw Exposes AI Systems to Remote Code Execution Risks
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00adminhttps://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.pngadmin2025-01-25 13:06:502025-01-25 13:06:50American National Insurance Company (ANICO) Data Leaked in MOVEit Breach
The 2024 ransomware attack on Change Healthcare exposed the data of about 190 million people, according to an update from parent company UnitedHealth Group.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00adminhttps://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.pngadmin2025-01-25 13:06:502025-01-25 13:06:50UnitedHealth updates number of data breach victims to 190 million
Plus: A hacker finds an issue with Cloudflare’s systems that could reveal app users’ rough locations, and the Trump administration puts a wrench in a key cybersecurity investigation.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00adminhttps://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.pngadmin2025-01-25 00:07:062025-01-25 00:07:06UnitedHealth confirms 190 million Americans affected by Change Healthcare data breach
BackBox.org offers a range of Penetration Testing services to simulate an attack on your network or application. If you are interested in our services, please contact us and we will provide you with further information as well as an initial consultation.
TalkTalk investigating data breach after hacker claims theft of customer data
/in General NewsA hacker claims to be selling the data of 18.8 million TalkTalk customers, but the telecoms giant says this figure is ‘significantly overstated’
© 2024 TechCrunch. All rights reserved. For personal use only.
Security News | TechCrunch – Read More
GamaCopy Mimics Gamaredon Tactics in Cyber Espionage Targeting Russian Entities
/in General NewsA previously unknown threat actor has been observed copying the tradecraft associated with the Kremlin-aligned Gamaredon hacking group in its cyber attacks targeting Russian-speaking entities.
The campaign has been attributed to a threat cluster dubbed GamaCopy, which is assessed to share overlaps with another hacking group named Core Werewolf, also tracked as Awaken Likho and PseudoGamaredon.
The Hacker News – Read More
MintsLoader Delivers StealC Malware and BOINC in Targeted Cyber Attacks
/in General NewsThreat hunters have detailed an ongoing campaign that leverages a malware loader called MintsLoader to distribute secondary payloads such as the StealC information stealer and a legitimate open-source network computing platform called BOINC.
“MintsLoader is a PowerShell based malware loader that has been seen delivered via spam emails with a link to Kongtuke/ClickFix pages or a JScript file,”
The Hacker News – Read More
INE Security Alert: Expediting CMMC 2.0 Compliance
/in General NewsCary, North Carolina, 26th January 2025, CyberNewsWire
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Meta’s Llama Framework Flaw Exposes AI Systems to Remote Code Execution Risks
/in General NewsA high-severity security flaw has been disclosed in Meta’s Llama large language model (LLM) framework that, if successfully exploited, could allow an attacker to execute arbitrary code on the llama-stack inference server.
The vulnerability, tracked as CVE-2024-50050, has been assigned a CVSS score of 6.3 out of 10.0. Supply chain security firm Snyk, on the other hand, has assigned it a
The Hacker News – Read More
UnitedHealth Group’s Massive Data Breach Impacts 190 Million Americans
/in General NewsUnitedHealth Group has confirmed that a ransomware attack targeted its subsidiary, Change Healthcare, in February 2024, impacting 190…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
American National Insurance Company (ANICO) Data Leaked in MOVEit Breach
/in General NewsCybersecurity researchers discovered 270,000+ lines of American National Insurance customer data leaked online, potentially linked to the 2023…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
UnitedHealth updates number of data breach victims to 190 million
/in General NewsThe 2024 ransomware attack on Change Healthcare exposed the data of about 190 million people, according to an update from parent company UnitedHealth Group.
The Record from Recorded Future News – Read More
US Privacy Snags a Win as Judge Limits Warrantless FBI Searches
/in General NewsPlus: A hacker finds an issue with Cloudflare’s systems that could reveal app users’ rough locations, and the Trump administration puts a wrench in a key cybersecurity investigation.
Security Latest – Read More
UnitedHealth confirms 190 million Americans affected by Change Healthcare data breach
/in General NewsThe number of individuals confirmed to be affected by the data breach is almost double the company’s previous estimate.
© 2024 TechCrunch. All rights reserved. For personal use only.
Security News | TechCrunch – Read More