Criminals hack radio commands to stop Poland Trains
Over the past 48 hours, media outlets have been abuzz with reports of Russian cyber-attacks targeting government websites. However, what remains shrouded in relative obscurity…
Month: August 2023
DarkGate Malware Activity Spikes as Developer Rents Out Malware to Affiliates
Aug 29, 2023The Hacker NewsMalware / Cyber Threat A new malspam campaign has been observed deploying an off-the-shelf malware called DarkGate. “The current spike in…
Reborn XSpear 🔱
제가 Dalfox 를 개발하기 전에 Ruby로 작성했었던 XSpear란 도구가 있었습니다. 동일하게 XSS를 테스팅하기 위한 도구였고, 현재 성능은 당연히 Dalfox쪽이 압도적으로 좋은 상태입니다. 그리고 작년부터 XSpear에…
Meta Fights Sprawling Chinese ‘Spamouflage’ Operation
Meta on Tuesday said it purged thousands of Facebook accounts that were part of a widespread online Chinese spam operation trying to covertly boost China…
University of Michigan shuts down network after cyberattack
The University of Michigan has taken all of its systems and services offline to deal with a cybersecurity incident, causing a widespread impact on online…
Battling malware in the industrial supply chain
[ This article was originally published here ] The content of this post is solely the responsibility of the author. AT&T does not adopt or…
Chinese Hacking Group Exploits Barracuda Zero-Day to Target Government, Military, and Telecom
A suspected Chinese-nexus hacking group exploited a recently disclosed zero-day flaw in Barracuda Networks Email Security Gateway (ESG) appliances to breach government, military, defense and…
Chinese APT Was Prepared for Remediation Efforts in Barracuda ESG Zero-Day Attack
The Chinese cyberespionage group exploiting Barracuda Email Security Gateway (ESG) appliances was preparing for remediation efforts, deploying persistent backdoors on select targets, Mandiant reports. Tracked…
Hackers infiltrated Japan’s National Center of Incident Readiness and Strategy for Cybersecurity (NISC) for months
Hackers infiltrated Japan’s National Center of Incident Readiness and Strategy for Cybersecurity (NISC) for months Pierluigi Paganini August 29, 2023 Japan’s National Center of Incident…
Hackers exploit critical Juniper RCE bug chain after PoC release
Hackers are using a critical exploit chain to target Juniper EX switches and SRX firewalls via their Internet-exposed J-Web configuration interface. Successful exploitation enables unauthenticated…
Hackers using HTML Smuggling Technique to Deliver Ransomware
Threat actors adopt the highly invasive techniques of HTML smuggling to launch Nokoyawa ransomware despite being delivered through macro and ICedID malware. The Nokoyawa Ransomware…
Zero-day that forced Barracuda users to bin kit was exploited by China
Google Cloud’s Mandiant and Barracuda Networks have confirmed that a zero-day vulnerability in Barracuda’s Email Security Gateway (ESG) appliances was heavily exploited by suspected Chinese…