Sunday, December 29, 2024

Security Affairs.

"China-based APT Salt Typhoon breached a ninth U.S. telecommunications firm."

Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 29 December 2024, 2332 UTC.

Content and Source:  Email subscription via https://feedly.com.

 https://feedly.com/i/subscription/feed%2Fhttp%3A%2F%2Fsecurityaffairs.co%2Fwordpress%2Ffeed

Please check link or scroll down to read your selections.  Thanks for joining us today.

Russ Roberts (https://www.hawaiicybersecurityjournal.net).

Security Affairs

69K followers22 articles per week#security#tech
8

Today

China-linked APT Salt Typhoon breached a ninth U.S. telecommunications firm

by Pierluigi Paganini / 7h
A White House official confirmed that China-linked threat actor Salt Typhoon breached a ninth U.S. telecommunications company. A White House official confirmed confirmed that China-linked APT group Salt Typhoon has breached a ninth U.S. telecoms company as part of a cyberespionage campaign aimed at telco firms worldwide. “A White House official said Friday the US identified a ninth telecommunicat

SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 26

by Pierluigi Paganini / 9h
Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape. Now You See Me, Now You Don’t: Using LLMs to Obfuscate Malicious JavaScript Analyzing Malicious Intent in Python Code: A Case Study DigiEver Fix That IoT Thing! Botnets Continue to Target Aging D-Link Vulnerabilities OtterCookie, a new malware used by Contagious I

Security Affairs newsletter Round 504 by Pierluigi Paganini – INTERNATIONAL EDITION

by Pierluigi Paganini / 10h
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. Pro-Russia group NoName targeted the websites of Italian airports North Korea actors use OtterCookie malware in Contagious Interview campaign Experts warn

Yesterday

Pro-Russia group NoName targeted the websites of Italian airports

2 TTPs
by Pierluigi Paganini / 1d
Pro-Russian cyberattacks target Italy's
Pro-Russia group NoName057 targets Italian sites, including Malpensa and Linate airports, in a new DDoS campaign amid rising geopolitical tensions. The pro-Russia group NoName57 continues its campaign of DDoS attacks against Italian infrastructure. This time, the group of alleged hacktivists targeted multiple websites, include the sites of Malpensa and Linate airports, as well as the site of the

Dec 27, 2024

North Korea actors use OtterCookie malware in Contagious Interview campaign

6 TTPs
by Pierluigi Paganini / 1d
OtterCookie malware targets developers' jobs
North Korea-linked threat actors are using the OtterCookie backdoor to target software developers with fake job offers. North Korea-linked threat actors were spotted using new malware called OtterCookie as part of the Contagious Interview campaign that targets software developer community with fake job offers. The Contagious Interview campaign was first detailed by Palo Alto Networks researchers

Experts warn of a surge in activity associated FICORA and Kaiten botnets

IoC > 2 IPs
by Pierluigi Paganini / 2d
12 TTPs
D-Link routers targeted by botnets
FortiGuard Labs observed increased activity from two botnets, the Mirai variant “FICORA” and the Kaiten variant “CAPSAICIN”. FortiGuard Labs researchers observed a surge in activity associated with two botnets, the Mirai variant “ FICORA ” and the Kaiten variant “CAPSAICIN,” in late 2024. Both botnets target vulnerabilities in D-Link devices, particularly through the HNAP interface, allowing remo

Palo Alto Networks fixed a high-severity PAN-OS flaw

2 TTPs
by Pierluigi Paganini / 2d
Palo Alto Networks addressed a high-severity PAN-OS flaw that could trigger denial-of-service (DoS) on vulnerable devices. Palo Alto Networks addressed a high-severity flaw, tracked as CVE-2024-3393 (CVSS score: 8.7), in PAN-OS software that could cause a denial-of-service (DoS) condition. An unauthenticated attacker can exploit this vulnerability to reboot the firewall by sending a malicious pac

Dec 26, 2024

Brazilian citizen charged for threatening to release data stolen from a company in 2020

Brazilian man charged with extortion
by Pierluigi Paganini / 2d
A Brazilian citizen faces U.S. charges for allegedly threatening to release data stolen from a company in a March 2020 security breach. The U.S. government has charged the Brazilian citizen Junior Barros De Oliveira, 29, with allegedly threatening to release data stolen from a company during a March 2020 security breach. De Oliveira was charged with four counts of extortionate threats involving i

End of feed

at
Labels:

No comments:

Post a Comment

Please leave a comment about our recent post.

Subscribe to: Post Comments (Atom)

ZDNet | Security.

"It's official:  All your Office apps are getting AI and a price increase." Views expressed in this cybersecurity, cyber crime...

  • The Cyberwire Daily Briefing
    "Fortinet confirms breach of customer data." Views expressed in this cybersecurity, cyber crime update are those of the reporters ...
  • Cyber War News Today.
    "International Defence Cooperation:  A key to regional stability." Views expressed in this cybersecurity, cyber espionage, and cyb...
  • SecurityWeek Briefing
    "New RAMBO attack allows air-gapped data theft." Views expressed in this cybersecurity, cyber crime update are those of the report...