BleepingComputer.com

"This Week in Ransomware-September 29th 2023-Dark Angels."

Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 30 September 2023, 1332 UTC.  Content provided by "BleepingComputer.com."

Source:  https://www.bleepingcomputer.com/ ("BleepingComputer.com").

Please click link or scroll down to read your selections.  Thanks for joining us today.

Russ Roberts (https://www.hawaiicybersecurityjournal.net).

LATEST ARTICLES

• 
   
  SECURITY

The Week in Ransomware - September 29th 2023 - Dark Angels

• This week has been a busy ransomware week, with ransomware attacks having a massive impact on organizations and the fallout of the MOVEit breaches to be disclosed.

  • LAWRENCE ABRAMS
   
  • SEPTEMBER 29, 2023
   
  • 05:50 PM
   
  •  2
• 
   
  SECURITY

Millions of Exim mail servers exposed to zero-day RCE attacks

• A critical zero-day vulnerability in all versions of Exim mail transfer agent (MTA) software can let unauthenticated attackers gain remote code execution (RCE) on Internet-exposed servers.

  • SERGIU GATLAN
   
  • SEPTEMBER 29, 2023
   
  • 04:11 PM
   
  •  0
• 
   
  SECURITY

Exploit released for Microsoft SharePoint Server auth bypass flaw

• Proof-of-concept exploit code has surfaced on GitHub for a critical authentication bypass vulnerability in Microsoft SharePoint Server, allowing privilege escalation.

  • SERGIU GATLAN
   
  • SEPTEMBER 29, 2023
   
  • 02:06 PM
   
  •  0
• 
   
  SECURITY, LEGAL

ShinyHunters member pleads guilty to $6 million in data theft damages

• Sebastien Raoult, a 22-year-old from France, has pleaded guilty in the U.S. District Court of Seattle to conspiracy to commit wire fraud and aggravated identity theft as part of his activities in the ShinyHunters hacking group.

  • BILL TOULAS
   
  • SEPTEMBER 29, 2023
   
  • 10:59 AM
   
  •  0
• 
   
  SECURITY

Discord is investigating cause of ‘You have been blocked’ errors

• Many Discord users attempting to access the popular instant messaging and VoIP social platform today have been met with a scary "Sorry, you have been blocked" message.

  • BILL TOULAS
   
  • SEPTEMBER 29, 2023
   
  • 08:21 AM
   
  •  0
• 
   
  SECURITY

Lazarus hackers breach aerospace firm with new LightlessCan malware

• The North Korean 'Lazarus' hacking group targeted employees of an aerospace company located in Spain with fake job opportunities to hack into the corporate network using a previously unknown 'LightlessCan' backdoor.

  • BILL TOULAS
   
  • SEPTEMBER 29, 2023
   
  • 05:30 AM
   
  •  1
• 
   
  SECURITY

Progress warns of maximum severity WS_FTP Server vulnerability

• Progress, the maker of the MOVEit Transfer file-sharing platform recently exploited in widespread data theft attacks, warned customers to patch a maximum severity vulnerability in its WS_FTP Server software.

  • SERGIU GATLAN
   
  • SEPTEMBER 28, 2023
   
  • 06:02 PM
   
  •  5
• 
   
  SECURITY, GOVERNMENT

Microsoft breach led to theft of 60,000 US State Dept emails

• Chinese hackers stole tens of thousands of emails from U.S. State Department accounts after breaching Microsoft's cloud-based Exchange email platform in May.

  • SERGIU GATLAN
   
  • SEPTEMBER 28, 2023
   
  • 04:45 PM
   
  •  4
• 
   
  SECURITY, MICROSOFT

Bing Chat responses infiltrated by ads pushing malware

• Malicious advertisements are now being injected into Microsoft's AI-powered Bing Chat responses, promoting fake download sites that distribute malware.

  • BILL TOULAS
   
  • SEPTEMBER 28, 2023
   
  • 02:35 PM
   
  •  6
• 
   
  SECURITY

FBI: Dual ransomware attack victims now get hit within 48 hours

• The FBI has warned about a new trend in ransomware attacks where multiple strains are deployed on victims' networks to encrypt systems in under two days.

  • SERGIU GATLAN
   
  • SEPTEMBER 28, 2023
   
  • 02:14 PM
   
  •  0
• 
   
  SECURITY

Cisco urges admins to fix IOS software zero-day exploited in attacks

• Cisco warned customers on Wednesday to patch a zero-day IOS and IOS XE software vulnerability targeted by attackers in the wild.

  • SERGIU GATLAN
   
  • SEPTEMBER 28, 2023
   
  • 11:34 AM
   
  •  0
• 
   
  SECURITY

Cisco Catalyst SD-WAN Manager flaw allows remote server access

• Cisco is warning of five new Catalyst SD-WAN Manager products vulnerabilities with the most critical allowing unauthenticated remote access to the server.

  • BILL TOULAS
   
  • SEPTEMBER 28, 2023
   
  • 11:15 AM
   
  •  0
• 
   
  SECURITY

Security researcher stopped at US border for investigating crypto scam

• Security researcher Sam Curry describes a stressful situation he encountered upon his return to the U.S. when border officials and federal agents seized and searched his electronic devices. Curry was further served with a 'Grand Jury' subpoena that demanded him to appear in court for testimony.

  • AX SHARMA
   
  • SEPTEMBER 28, 2023
   
  • 10:52 AM
   
  •  5
• 
   
  SECURITY

Budworm hackers target telcos and govt orgs with custom malware

• A Chinese cyber-espionage hacking group tracked as Budworm has been observed targeting a telecommunication firm in the Middle East and a government entity in Asia using a new variant of its custom 'SysUpdate' backdoor.

  • BILL TOULAS
   
  • SEPTEMBER 28, 2023
   
  • 09:52 AM
   
  •  0
• 
   
  SECURITY, GOOGLE

Google fixes fifth actively exploited Chrome zero-day of 2023

• Google has patched the fifth Chrome zero-day vulnerability exploited in attacks since the start of the year in emergency security updates released today.

  • SERGIU GATLAN
   
  • SEPTEMBER 27, 2023
   
  • 06:12 PM
   
  •  2
• 
   
  SECURITY

SSH keys stolen by stream of malicious PyPI and npm packages

• A stream of malicious npm and PyPi packages have been found stealing a wide range of sensitive data from software developers on the platforms.

  • BILL TOULAS
   
  • SEPTEMBER 27, 2023
   
  • 05:48 PM
   
  •  1

• 1
 
• 2
 
• 3
 
• 4
 
• 5
 

VIEW MORE