BleepingComputer.com: Cybersecurity News
"New WhiskerSpy malware delivered via trojanized codec installer."
Views expressed in this cybersecurity, cybercrime update are those of the reporters and correspondents. Accessed on 19 February 2023, 1344 UTC. Content provided by "BleepingComputer.com."
Source: https://www.bleepingcomputer.com/
Please click link or scroll down to read your selections. Thanks for joining us today.
Russ Roberts (https://www.hawaiicybersecurityjournal.net and https://paper.li/RussellRoberts).
New WhiskerSpy malware delivered via trojanized codec installer
Security researchers have discovered a new backdoor called WhiskerSpy used in a campaign from a relatively new advanced threat actor tracked as Earth Kitsune, known for targeting individuals showing an interest in North Korea.
- FEBRUARY 18, 2023
- 10:14 AM
0
Europol busts ‘CEO fraud’ gang that stole €38M in a few days
Europol has dismantled a Franco-Israeli 'CEO fraud' group that employed business email compromise (BEC) attacks to divert payments from organizations to bank accounts under the threat actor's control.
- FEBRUARY 17, 2023
- 01:18 PM
- 0
GoDaddy: Hackers stole source code, installed malware in multi-year breach
Web hosting giant GoDaddy says it suffered a breach where unknown attackers have stolen source code and installed malware on its servers after breaching its cPanel shared hosting environment in a multi-year attack.
- FEBRUARY 17, 2023
- 12:27 PM
- 0
Norwegian police recover $5.8M crypto from massive Axie Infinity hack
Norwegian police (Økokrim) have seized 60 million kroner ($5,800,000) worth of cryptocurrency stolen by the North Korean Lazarus hacking group last year from Axie Infinity's Ronin Bridge.
- FEBRUARY 17, 2023
- 12:19 PM
- 0
Bing Chat's secret modes turn it into a personal assistant or friend
Bing's new AI chat has secret chat modes that can be used to change the AI bot into a personal assistant, a friend to help with your emotions and problems, a game mode to play games with Bing, or its default, Bing Search mode.
- FEBRUARY 17, 2023
- 10:35 AM
- 5
FBI is investigating a cybersecurity incident on its network
The U.S. Federal Bureau of Investigation (FBI) is reportedly investigating malicious cyber activity on the agency's network.
- FEBRUARY 17, 2023
- 09:23 AM
- 0
Fortinet fixes critical RCE flaws in FortiNAC and FortiWeb
Cybersecurity solutions company Fortinet has released security updates for its FortiNAC and FortiWeb products, addressing two critical-severity vulnerabilities that may allow unauthenticated attackers to perform arbitrary code or command execution.
- FEBRUARY 17, 2023
- 09:13 AM
- 0
New Mirai malware variant infects Linux devices to build DDoS botnet
A new Mirai botnet variant tracked as 'V3G4' targets 13 vulnerabilities in Linux-based servers and IoT devices to use in DDoS (distributed denial of service) attacks.
- FEBRUARY 16, 2023
- 05:12 PM
- 0
Microsoft Exchange ProxyShell flaws exploited in new crypto-mining attack
A new malware dubbed 'ProxyShellMiner' exploits the Microsoft Exchange ProxyShell vulnerabilities to deploy cryptocurrency miners throughout a Windows domain to generate profit for the attackers.
- FEBRUARY 16, 2023
- 04:03 PM
- 0
Scandinavian Airlines says cyberattack caused passenger data leak
Scandinavian Airlines (SAS) has posted a notice warning passengers that a recent multi-hour outage of its website and mobile app was caused by a cyberattack that also exposed customer data.
- FEBRUARY 16, 2023
- 03:32 PM
- 0
CISA warns of Windows and iOS bugs exploited as zero-days
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added four security vulnerabilities exploited in attacks as zero-day to its list of bugs known to be abused in the wild.
- FEBRUARY 16, 2023
- 02:59 PM
- 0
Burton Snowboards cancels online orders after 'cyber incident'
Burton Snowboards, a leading snowboard manufacturing company, has canceled all online orders today following what it describes as a "cyber incident."
- FEBRUARY 16, 2023
- 12:57 PM
- 0
Atlassian data leak caused by stolen employee credentials
Atlassian has confirmed that a breach at a third-party vendor caused a recent leak of company data and that their network and customer information is secure.
- FEBRUARY 16, 2023
- 12:41 PM
- 0
Hackers backdoor Microsoft IIS servers with new Frebniis malware
Hackers are deploying a new malware named 'Frebniss' on Microsoft's Internet Information Services (IIS) that stealthily executes commands sent via web requests.
- FEBRUARY 16, 2023
- 11:38 AM
- 0
Microsoft: February updates break some Windows Server 2022 VMs
Microsoft says some Windows Server 2022 virtual machines might not boot up after installing updates released during this month's Patch Tuesday.
- FEBRUARY 16, 2023
- 06:25 AM
- 2
Hackers start using Havoc post-exploitation framework in attacks
Security researchers are seeing threat actors switching to a new and open-source command and control (C2) framework known as Havoc as an alternative to paid options such as Cobalt Strike and Brute Ratel.
- FEBRUARY 15, 2023
- 07:00 PM
- 2
GitHub Copilot update stops AI model from revealing secrets
GitHub has updated the AI model of Copilot, a programming assistant that generates real-time source code and function recommendations in Visual Studio, and says it's now safer and more powerful.
- FEBRUARY 15, 2023
- 04:03 PM
- 0
Comments
Post a Comment
Please leave a comment about our recent post.