Hive RAT Creators and $3.5M Cryptojacking Mastermind Arrested in Global Crackdown

Leave a Comment / Uncategorized /

Two people have been detained in Australia and the United States in relation to a purported plan to create and disseminate the remote access trojan known as Hive RAT (formerly Firebird). According to the U.S. Department of Justice (DoJ), the virus “gave the malware purchasers control over victim computers and enabled them to access victims’ […]

Hive RAT Creators and $3.5M Cryptojacking Mastermind Arrested in Global Crackdown Read More »

The Mispadu Trojan Attacks Europe, Compromising Thousands of Credentials

Leave a Comment / Malware /

The banking trojan known as Mispadu now targets users in Italy, Poland, and Sweden in addition to Latin America (LATAM) and Spanish-speaking people. According to Morphisec, the campaign’s targets include businesses in the banking, services, automotive manufacturing, legal, and commercial sectors. According to a report released last week by security expert Arnold Osipov, “Mexico remains

The Mispadu Trojan Attacks Europe, Compromising Thousands of Credentials Read More »

U.S. Cyber Safety Board Denounces Microsoft for Security Vulnerability Caused by Chinese Hackers

Leave a Comment / Cyber Attacks /

Microsoft has come under fire from the U.S. Cyber Safety Review Board (CSRB) for a string of security failings that allowed a nation-state group named Storm-0558, based in China, to compromise almost two dozen businesses in Europe and the United States last year. According to the results, which were made public by the Department of

U.S. Cyber Safety Board Denounces Microsoft for Security Vulnerability Caused by Chinese Hackers Read More »

U.S. Charges Iranian Hacker, Offers $10 Million Reward for Capture

Leave a Comment / Cyber Attacks /

An Iranian person was the target of an alleged multi-year cyber-enabled campaign by the U.S. Department of Justice (DoJ) on Friday, when the DoJ unsealed an indictment against him. The campaign was intended to breach both private and governmental entities in the United States. According to reports, over a dozen organisations have been targeted, including

U.S. Charges Iranian Hacker, Offers $10 Million Reward for Capture Read More »

Over 225,000 Compromised ChatGPT Credentials Up for Sale on Dark Web Markets

Leave a Comment / Uncategorized /

Between January and October 2023, more than 225,000 logs with compromised OpenAI ChatGPT credentials were put up for sale on dark web marketplaces, according to recent research from Group-IB. These login credentials were discovered in information theft records connected to the Raccoon, RedLine, and LummaC2 malware. “The number of infected devices grew significantly between August

Over 225,000 Compromised ChatGPT Credentials Up for Sale on Dark Web Markets Read More »

CISA Warning: Akira Ransomware Exploiting Cisco ASA/FTD Vulnerability

Leave a Comment / Uncategorized /

Following reports that it’s likely being exploited in Akira ransomware attacks, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a now-patched security flaw affecting Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defence (FTD) software to its list of known exploited vulnerabilities (KEV) on Thursday. The high-severity information disclosure flaw in question is CVE-2020-3259

CISA Warning: Akira Ransomware Exploiting Cisco ASA/FTD Vulnerability Read More »

WordPress Bricks Theme Under Active Attack: Critical Flaw Impacts 25,000+ Sites

Leave a Comment / Vulnerabilities /

Threat actors are actively using a serious security vulnerability in the WordPress Bricks theme to force arbitrary PHP code to run on vulnerable installations. The vulnerability, identified as CVE-2024-25600 (CVSS score: 9.8), allows remote code execution to be accomplished by unauthorised attackers. It affects every Bricks version up to and including 1.9.6. Only a few

WordPress Bricks Theme Under Active Attack: Critical Flaw Impacts 25,000+ Sites Read More »

Russian Government Software Backdoored to Deploy Konni RAT Malware

Leave a Comment / Malware /

A backdoor has been included in an installer for a utility that is probably used by the Ministry of Foreign Affairs (MID)’s Russian Consular Department to distribute the remote access trojan Konni RAT (also known as UpDog). The investigation was conducted by German cybersecurity firm DCSO, which concluded that actors with ties to the Democratic

Russian Government Software Backdoored to Deploy Konni RAT Malware Read More »

Apple Issues Patch for Critical Zero-Day in iPhones, Macs – Update Now

Leave a Comment / Technology /

In response to a zero-day vulnerability that is being actively exploited in the wild, Apple provided security upgrades on Monday for the Safari web browser, iOS, iPadOS, macOS, tvOS, and Linux. A threat actor could use the problem, identified as CVE-2024-23222, which is a type confusion bug in the WebKit browser engine, to execute arbitrary

Apple Issues Patch for Critical Zero-Day in iPhones, Macs – Update Now Read More »

BreachForums Founder Will Not Be Going To Jail

Leave a Comment / Data Breach /

Conor Brian Fitzpatrick, who founded and oversaw BreachForums, received a sentence of time served and 20 years of supervised release. Fitzpatrick, also known online as “pompompurin,” was detained in New York in March 2023 and charged with possessing child pornography and conspiring to commit access device fraud. After posting a $300,000 bond and entering a

BreachForums Founder Will Not Be Going To Jail Read More »