The China-linked threat actor known as MirrorFace has been attributed to a new spear-phishing campaign mainly targeting individuals and organizations in Japan since June 2024.
The aim of the campaign is to deliver backdoors known as NOOPDOOR (aka HiddenFace) and ANEL (aka UPPERCUT), Trend Micro said in a technical analysis.
“An interesting aspect of this campaign is the comeback of a backdoor
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-12-05 09:06:502024-12-05 09:06:50ANEL and NOOPDOOR Backdoors Weaponized in New MirrorFace Campaign Against Japan
Authorities across 19 African countries also dismantled their infrastructure and networks, thanks to cooperation between global law enforcement and private firms.
The U.K. National Crime Agency (NCA) on Wednesday announced that it led an international investigation to disrupt Russian money laundering networks that were found to facilitate serious and organized crime across the U.K., the Middle East, Russia, and South America.
The effort, codenamed Operation Destabilise, has resulted in the arrest of 84 suspects linked to two Russian-speaking networks
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added multiple security flaws affecting products from Zyxel, North Grid Proself, ProjectSend, and CyberPanel to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation in the wild.
The list of vulnerabilities is as follows –
CVE-2024-51378 (CVSS score: 10.0) – An incorrect default permissions
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-12-05 07:07:122024-12-05 07:07:12CISA Warns of Active Exploitation of Flaws in Zyxel, ProjectSend, and CyberPanel
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-12-05 01:08:382024-12-05 01:08:38How Microsoft defends against 7000 password attackers per second
Individuals concerned about the privacy of their communications should consider using encrypted messaging apps and encrypted voice communications, CISA and FBI officials say.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-12-04 23:07:122024-12-04 23:07:12CISA Issues Guidance to Telecom Sector on Salt Typhoon Threat
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-12-04 23:07:112024-12-04 23:07:11Wyden and Schmitt Call for Investigation of Pentagon’s Phone Systems
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-12-04 23:07:102024-12-04 23:07:10Onapsis Expands Code Security Capabilities to Accelerate and De-Risk SAP BTP Development Projects
OpenAI plans to team up with Anduril, the defense startup, to supply its AI tech to systems the U.S. military uses to counter drone attacks. The Wall Street Journal reports that Anduril will incorporate OpenAI tech into software that assesses and tracks unmanned aircraft. Anduril tells the publication that OpenAI’s models could improve the accuracy […]
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-12-04 21:06:552024-12-04 21:06:55API Security in Open Banking: Balancing Innovation with Risk Management
BackBox.org offers a range of Penetration Testing services to simulate an attack on your network or application. If you are interested in our services, please contact us and we will provide you with further information as well as an initial consultation.
ANEL and NOOPDOOR Backdoors Weaponized in New MirrorFace Campaign Against Japan
/in General NewsThe China-linked threat actor known as MirrorFace has been attributed to a new spear-phishing campaign mainly targeting individuals and organizations in Japan since June 2024.
The aim of the campaign is to deliver backdoors known as NOOPDOOR (aka HiddenFace) and ANEL (aka UPPERCUT), Trend Micro said in a technical analysis.
“An interesting aspect of this campaign is the comeback of a backdoor
The Hacker News – Read More
African Law Enforcement Nabs 1,000+ Cybercrime Suspects
/in General NewsAuthorities across 19 African countries also dismantled their infrastructure and networks, thanks to cooperation between global law enforcement and private firms.
darkreading – Read More
NCA Busts Russian Crypto Networks Laundering Funds and Evading Sanctions
/in General NewsThe U.K. National Crime Agency (NCA) on Wednesday announced that it led an international investigation to disrupt Russian money laundering networks that were found to facilitate serious and organized crime across the U.K., the Middle East, Russia, and South America.
The effort, codenamed Operation Destabilise, has resulted in the arrest of 84 suspects linked to two Russian-speaking networks
The Hacker News – Read More
CISA Warns of Active Exploitation of Flaws in Zyxel, ProjectSend, and CyberPanel
/in General NewsThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) added multiple security flaws affecting products from Zyxel, North Grid Proself, ProjectSend, and CyberPanel to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation in the wild.
The list of vulnerabilities is as follows –
CVE-2024-51378 (CVSS score: 10.0) – An incorrect default permissions
The Hacker News – Read More
How Microsoft defends against 7000 password attackers per second
/in General NewsVasu Jakkal’s reflects how AI is the core DNA of Microsoft security, permeating every product and service the software giant produces.Read More
Security News | VentureBeat – Read More
CISA Issues Guidance to Telecom Sector on Salt Typhoon Threat
/in General NewsIndividuals concerned about the privacy of their communications should consider using encrypted messaging apps and encrypted voice communications, CISA and FBI officials say.
darkreading – Read More
Wyden and Schmitt Call for Investigation of Pentagon’s Phone Systems
/in General NewsPost Content
darkreading – Read More
Onapsis Expands Code Security Capabilities to Accelerate and De-Risk SAP BTP Development Projects
/in General NewsPost Content
darkreading – Read More
OpenAI inks deal to upgrade Anduril’s anti-drone tech
/in General NewsOpenAI plans to team up with Anduril, the defense startup, to supply its AI tech to systems the U.S. military uses to counter drone attacks. The Wall Street Journal reports that Anduril will incorporate OpenAI tech into software that assesses and tracks unmanned aircraft. Anduril tells the publication that OpenAI’s models could improve the accuracy […]
© 2024 TechCrunch. All rights reserved. For personal use only.
Security News | TechCrunch – Read More
API Security in Open Banking: Balancing Innovation with Risk Management
/in General NewsAny technological innovation comes with security risks, and open banking is no exception. Open banking relies on APIs…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More