https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-04-01 13:06:562024-04-01 13:06:56Supply Chain Attack: Major Linux Distributions Impacted by XZ Utils Backdoor
When executed, the Linux variant of DinodasRAT creates a hidden file in the directory where its binary resides, which acts as a mutex to prevent multiple instances from running on the infected device.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-04-01 13:06:562024-04-01 13:06:56DinodasRAT Malware Targets Linux Servers in Espionage Campaign
U.S. federal agencies have until December to implement a series of safeguards that aim to ensure the government is responsibly using artificial intelligence, the White House ordered Thursday.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-04-01 13:06:562024-04-01 13:06:56OMB Issues First Governmentwide AI Risk Mitigation Rules
Despite a plethora of available security solutions, more and more organizations fall victim to Ransomware and other threats. These continued threats aren’t just an inconvenience that hurt businesses and end users – they damage the economy, endanger lives, destroy businesses and put national security at risk. But if that wasn’t enough – North Korea appears to be using revenue from cyber
An infostealer malware campaign has apparently collected millions of logins from users of various gaming websites, including players that use cheats and pay-to-cheat services.
The UK’s independent nuclear safety regulator has announced that it will be prosecuting the company managing the Sellafield nuclear site over “alleged information technology security offenses during a four year period between 2019 and early 2023.”
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-04-01 12:08:252024-04-01 12:08:25British Nuclear Site Sellafield to be Prosecuted for Cybersecurity Failures
Several malicious Android apps that turn mobile devices running the operating system into residential proxies (RESIPs) for other threat actors have been observed on the Google Play Store.
The findings come from HUMAN’s Satori Threat Intelligence team, which said the cluster of VPN apps came fitted with a Golang library that transformed the user’s device into a proxy node without their knowledge.
Atraf, a popular Israeli LGBTQ dating app, has suffered a major data breach exposing the personal information of over half a million users. Leaked data includes cleartext passwords and payment card data.
Reported data breach incidents rose by 34.5% in 2023, with over 17 billion personal records compromised throughout the year, according to Flashpoint’s 2024 Global Threat Intelligence Report.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-04-01 11:06:452024-04-01 11:06:45Report: 17 Billion Personal Records Exposed in Data Breaches in 2023
In an indictment, the Department of Justice claimed that KuCoin knowingly allowed U.S.-based users to trade on its platform while fulfilling none of its AML obligations, as defined by U.S. laws and regulations.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-04-01 11:06:452024-04-01 11:06:45KuCoin Charged with AML Violations That Let Cybercriminals Launder Billions
BackBox.org offers a range of Penetration Testing services to simulate an attack on your network or application. If you are interested in our services, please contact us and we will provide you with further information as well as an initial consultation.
Supply Chain Attack: Major Linux Distributions Impacted by XZ Utils Backdoor
/in General NewsUrgent security alerts issued as malicious code was found embedded in the XZ Utils data compression library used in many Linux distributions.
The post Supply Chain Attack: Major Linux Distributions Impacted by XZ Utils Backdoor appeared first on SecurityWeek.
SecurityWeek – Read More
DinodasRAT Malware Targets Linux Servers in Espionage Campaign
/in General NewsWhen executed, the Linux variant of DinodasRAT creates a hidden file in the directory where its binary resides, which acts as a mutex to prevent multiple instances from running on the infected device.
Cyware News – Latest Cyber News – Read More
OMB Issues First Governmentwide AI Risk Mitigation Rules
/in General NewsU.S. federal agencies have until December to implement a series of safeguards that aim to ensure the government is responsibly using artificial intelligence, the White House ordered Thursday.
Cyware News – Latest Cyber News – Read More
Detecting Windows-based Malware Through Better Visibility
/in General NewsDespite a plethora of available security solutions, more and more organizations fall victim to Ransomware and other threats. These continued threats aren’t just an inconvenience that hurt businesses and end users – they damage the economy, endanger lives, destroy businesses and put national security at risk. But if that wasn’t enough – North Korea appears to be using revenue from cyber
The Hacker News – Read More
Activision Recommends Users Enable 2FA to Secure Accounts Recently Stolen by Malware
/in General NewsAn infostealer malware campaign has apparently collected millions of logins from users of various gaming websites, including players that use cheats and pay-to-cheat services.
Cyware News – Latest Cyber News – Read More
British Nuclear Site Sellafield to be Prosecuted for Cybersecurity Failures
/in General NewsThe UK’s independent nuclear safety regulator has announced that it will be prosecuting the company managing the Sellafield nuclear site over “alleged information technology security offenses during a four year period between 2019 and early 2023.”
Cyware News – Latest Cyber News – Read More
Malicious Apps Caught Secretly Turning Android Phones into Proxies for Cybercriminals
/in General NewsSeveral malicious Android apps that turn mobile devices running the operating system into residential proxies (RESIPs) for other threat actors have been observed on the Google Play Store.
The findings come from HUMAN’s Satori Threat Intelligence team, which said the cluster of VPN apps came fitted with a Golang library that transformed the user’s device into a proxy node without their knowledge.
The Hacker News – Read More
Israeli LGBTQ Dating App Atraf Faces Data Leak, 700,000 Users Affected
/in General NewsAtraf, a popular Israeli LGBTQ dating app, has suffered a major data breach exposing the personal information of over half a million users. Leaked data includes cleartext passwords and payment card data.
Cyware News – Latest Cyber News – Read More
Report: 17 Billion Personal Records Exposed in Data Breaches in 2023
/in General NewsReported data breach incidents rose by 34.5% in 2023, with over 17 billion personal records compromised throughout the year, according to Flashpoint’s 2024 Global Threat Intelligence Report.
Cyware News – Latest Cyber News – Read More
KuCoin Charged with AML Violations That Let Cybercriminals Launder Billions
/in General NewsIn an indictment, the Department of Justice claimed that KuCoin knowingly allowed U.S.-based users to trade on its platform while fulfilling none of its AML obligations, as defined by U.S. laws and regulations.
Cyware News – Latest Cyber News – Read More