This latest Log4j exploitation-based attack uses obfuscated LDAP requests to evade detection and executes malicious scripts, establishing persistence and exfiltrating data through encrypted channels.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-08-23 09:07:012024-08-23 09:07:01New Opportunistic Campaign Exploit Log4j Vulnerability for Cryptomining and System Compromise
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-08-23 09:07:012024-08-23 09:07:01When War Came to Their Country, They Built a Map
In these file-sharing phishing attacks, cybercriminals impersonate colleagues or trusted services to trick targets into clicking on malicious links that can lead to data theft or malware infection.
Researchers from Quarkslab found a hardware backdoor in the FM11RF08S RFID cards manufactured by Shanghai Fudan Microelectronics, enabling attackers to compromise user-defined keys within minutes.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-08-23 08:06:482024-08-23 08:06:48Hardware Backdoor in Millions of Shanghai Fudan Microelectronics RFID Cards Allows Cloning
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-08-23 08:06:482024-08-23 08:06:48SolarWinds Leaks Credentials in Hotfix for Exploited Web Help Desk Flaw
GitHub disclosed three security vulnerabilities in GitHub Enterprise Server (GHES), including CVE-2024-6800, CVE-2024-6337, and CVE-2024-7711. The most severe, CVE-2024-6800, allowed attackers to forge a SAML response, granting site admin privileges.
A 33-year-old Latvian national living in Moscow, Russia, has been charged in the U.S. for allegedly stealing data, extorting victims, and laundering ransom payments since August 2021.
Deniss Zolotarjovs (aka Sforza_cesarini) has been charged with conspiring to commit money laundering, wire fraud and Hobbs Act extortion. He was arrested in Georgia in December 2023 and has since been extradited to
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-08-23 06:06:582024-08-23 06:06:58Latvian Hacker Extradited to U.S. for Role in Karakurt Cybercrime Group
Cybersecurity researchers have uncovered a new information stealer that’s designed to target Apple macOS hosts and harvest a wide range of information, underscoring how threat actors are increasingly setting their sights on the operating system.
Dubbed Cthulhu Stealer, the malware has been available under a malware-as-a-service (MaaS) model for $500 a month from late 2023. It’s capable of
Australia is rapidly embracing renewable energy. But for the nation to successfully leverage renewable energy, it is imperative to establish strong IT foundations.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-08-22 19:06:382024-08-22 19:06:38Cyber Security and IT Leadership: A Growing Threat to Australia’s Renewable Energy Efforts
BackBox.org offers a range of Penetration Testing services to simulate an attack on your network or application. If you are interested in our services, please contact us and we will provide you with further information as well as an initial consultation.
New Opportunistic Campaign Exploit Log4j Vulnerability for Cryptomining and System Compromise
/in General NewsThis latest Log4j exploitation-based attack uses obfuscated LDAP requests to evade detection and executes malicious scripts, establishing persistence and exfiltrating data through encrypted channels.
Cyware News – Latest Cyber News – Read More
When War Came to Their Country, They Built a Map
/in General NewsThe Telegram channel and website Deep State uses public data and insider intelligence to power its live tracker of Ukraine’s ever-shifting front line.
Security Latest – Read More
Cybercriminals Exploit File Sharing Services to Advance Phishing Attacks
/in General NewsIn these file-sharing phishing attacks, cybercriminals impersonate colleagues or trusted services to trick targets into clicking on malicious links that can lead to data theft or malware infection.
Cyware News – Latest Cyber News – Read More
Hardware Backdoor in Millions of Shanghai Fudan Microelectronics RFID Cards Allows Cloning
/in General NewsResearchers from Quarkslab found a hardware backdoor in the FM11RF08S RFID cards manufactured by Shanghai Fudan Microelectronics, enabling attackers to compromise user-defined keys within minutes.
Cyware News – Latest Cyber News – Read More
SolarWinds Leaks Credentials in Hotfix for Exploited Web Help Desk Flaw
/in General NewsSolarWinds has issued a Web Help Desk hotfix to remove hardcoded credentials from last week’s hotfix for a critical-severity vulnerability.
The post SolarWinds Leaks Credentials in Hotfix for Exploited Web Help Desk Flaw appeared first on SecurityWeek.
SecurityWeek – Read More
Critical GitHub Enterprise Server Flaw Patched, Admin Access at Risk
/in General NewsGitHub disclosed three security vulnerabilities in GitHub Enterprise Server (GHES), including CVE-2024-6800, CVE-2024-6337, and CVE-2024-7711. The most severe, CVE-2024-6800, allowed attackers to forge a SAML response, granting site admin privileges.
Cyware News – Latest Cyber News – Read More
Latvian Hacker Extradited to U.S. for Role in Karakurt Cybercrime Group
/in General NewsA 33-year-old Latvian national living in Moscow, Russia, has been charged in the U.S. for allegedly stealing data, extorting victims, and laundering ransom payments since August 2021.
Deniss Zolotarjovs (aka Sforza_cesarini) has been charged with conspiring to commit money laundering, wire fraud and Hobbs Act extortion. He was arrested in Georgia in December 2023 and has since been extradited to
The Hacker News – Read More
New macOS Malware “Cthulhu Stealer” Targets Apple Users’ Data
/in General NewsCybersecurity researchers have uncovered a new information stealer that’s designed to target Apple macOS hosts and harvest a wide range of information, underscoring how threat actors are increasingly setting their sights on the operating system.
Dubbed Cthulhu Stealer, the malware has been available under a malware-as-a-service (MaaS) model for $500 a month from late 2023. It’s capable of
The Hacker News – Read More
Cyber Security and IT Leadership: A Growing Threat to Australia’s Renewable Energy Efforts
/in General NewsAustralia is rapidly embracing renewable energy. But for the nation to successfully leverage renewable energy, it is imperative to establish strong IT foundations.
Security | TechRepublic – Read More
Oil Giant Halliburton Confirms Cyber Incident, Details Scarce
/in General NewsUS oil giant Halliburton confirmed its computer systems were hit by a cyberattack that affected operations at its Houston offices.
The post Oil Giant Halliburton Confirms Cyber Incident, Details Scarce appeared first on SecurityWeek.
SecurityWeek – Read More