"Massive brute force attack uses 2.8 million IPs to target VPN devices."
Views expressed in this cybersecurity, cyber crime, and cyber espionage update are those of the reporters and correspondents. Accessed on 09 February 2025, 1420 UTC.
Content and Source: https://www.bleepingcomputer.com/
Please check link or scroll down to read your selections. Thanks for joining us today.
Russ Roberts (https://www.hawaicybersecurityjournal.net).
Security· Sponsored ContentA Cybersecurity Leader’s Guide to SecVal in 2025
Are your defenses truly battle-tested? Security validation ensures you're not just hoping your security works—it proves it. Learn more from Pentera on how to validate against ransomware, credential threats, and unpatched vulnerabilities in the GOAT Guide.
- February 09, 2025
- 09:00 AM
0
Getting started in cybersecurity? Training for a CISSP certification can help
The CISSP (Certified Information Systems Security Professional) certification requires more than a basic understanding of security concepts—it's a deep dive into eight core domains. You might take this CISSP Security & Risk Management Training Bundle to help you pass, as it's only $39.99 for lifetime access (reg. $424).
- February 09, 2025
- 08:12 AM
- 0
Sponsored Content
Discover and secure AI use [Free trial]With new AI tools like DeepSeek popping up daily, it's critical to gain visibility into who's using which AI apps and where they are connected to other business applications. Get a complete (and free) AI inventory today with Nudge Security.
Massive brute force attack uses 2.8 million IPs to target VPN devices
A large-scale brute force password attack using almost 2.8 million IP addresses is underway, attempting to guess the credentials for a wide range of networking devices, including those from Palo Alto Networks, Ivanti, and SonicWall.
- February 08, 2025
- 10:15 AM
- 1
Turn your phone into a powerful scanner for just $41.99 with this SwiftScan deal
What if you could turn your phone into a professional-grade scanner and ditch the frustration forever? For a one-time payment of just $41.99 (reg. $199.99), you'll get lifetime access to high-quality document scanning, PDF editing, cloud storage integration, and more—all from your phone.
- February 08, 2025
- 08:19 AM
- 0
HPE notifies employees of data breach after Russian Office 365 hack
Hewlett Packard Enterprise (HPE) is notifying employees whose data was stolen from the company's Office 365 email environment by Russian state-sponsored hackers in a May 2023 cyberattack.
- February 07, 2025
- 02:21 PM
- 0
Hackers exploit Cityworks RCE bug to breach Microsoft IIS servers
Software vendor Trimble is warning that hackers are exploiting a Cityworks deserialization vulnerability to remotely execute commands on IIS servers and deploy Cobalt Strike beacons for initial network access.
- February 07, 2025
- 01:42 PM
- 0
US health system notifies 882,000 patients of August 2023 breach
Hospital Sisters Health System notified over 882,000 patients that an August 2023 cyberattack led to a data breach that exposed their personal and health information.
- February 07, 2025
- 11:44 AM
- 0
Cloudflare outage caused by botched blocking of phishing URL
An attempt to block a phishing URL in Cloudflare's R2 object storage platform backfired yesterday, triggering a widespread outage that brought down multiple services for nearly an hour.
- February 07, 2025
- 10:44 AM
- 0
Microsoft shares workaround for Windows security update issues
Microsoft has shared a workaround for users affected by a known issue that blocks Windows security updates from deploying on some Windows 11 24H2 systems.
- February 07, 2025
- 08:53 AM
- 0
Want to get started using ChatGPT? These courses show you the right way
With ChatGPT-5 on the horizon, now is an excellent time to work on going from a casual user to a ChatGPT expert. This 2025 ChatGPT Skills and Creativity training bundle won't just show you ways to save time in your personal life but at work, too. You can get lifetime access for $29.99 (reg. $249.99).
- February 07, 2025
- 07:19 AM
- 0
Microsoft has finally fixed Date & Time bug in Windows 11
Windows 11's January 28 optional update has fixed a long-standing issue in Windows 11 24H2 that prevents non-admin users from changing their time zone in Date & Time Settings.
- February 07, 2025
- 06:40 AM
- 1
Microsoft Edge update adds AI-powered Scareware Blocker
Microsoft Edge 133 is now rolling out globally, and it ships with several improvements, including a new scareware blocker feature. In addition, Microsoft is updating the backend of the Downloads UI with performance improvements.
- February 07, 2025
- 06:15 AM
- 2
Microsoft says attackers use exposed ASP.NET keys to deploy malware
Microsoft warns that attackers are deploying malware in ViewState code injection attacks using static ASP. NET machine keys found online.
- February 06, 2025
- 03:59 PM
- 0
Get Visual Studio Pro at a discount in this deal
Visual Studio Pro is a 64-bit development environment that makes it easier to work on complex projects, including mobile or desktop apps. Instead of paying for a subscription, now you can actually get Visual Studio Pro license for only $27.97 (reg. $499).
- February 06, 2025
- 02:09 PM
- 0
Kimsuky hackers use new custom RDP Wrapper for remote access
The North Korean hacking group known as Kimsuky was observed in recent attacks using a custom-built RDP Wrapper and proxy tools to directly access infected machines.
- February 06, 2025
- 01:55 PM
- 0
Critical RCE bug in Microsoft Outlook now exploited in attacks
CISA warned U.S. federal agencies on Thursday to secure their systems against ongoing attacks targeting a critical Microsoft Outlook remote code execution (RCE) vulnerability.
- February 06, 2025
- 01:17 PM
- 0
Hackers exploit SimpleHelp RMM flaws to deploy Sliver malware
Hackers are targeting vulnerable SimpleHelp RMM clients to create administrator accounts, drop backdoors, and potentially lay the groundwork for ransomware attacks.
- February 06, 2025
- 12:50 PM
- 1
Critical Cisco ISE bug can let attackers run commands as root
Cisco has fixed two critical Identity Services Engine (ISE) vulnerabilities that can let attackers with read-only admin privileges bypass authorization and run commands as root.
- February 06, 2025
- 11:40 AM
- 0
DDoS attacks reportedly behind DayZ and Arma network outages
An ongoing distributed denial of service (DDoS) attack targets Bohemia Interactive's infrastructure, preventing players of DayZ and Arma Reforger from playing the games online.
- February 06, 2025
- 11:09 AM
- 0
British engineering firm IMI discloses breach, shares no details
British-based engineering firm IMI plc has disclosed a security breach after unknown attackers hacked into the company's systems.
- February 06, 2025
- 09:36 AM
- 0
Comments
Post a Comment
Please leave a comment about our recent post.