Super SA discloses third-party data breach – Finance – Security
Super SA, the South Australian government-owned superannuation provider, has disclosed a data breach at a “former external service provider” that affects member data. Super SA…
Month: October 2023
Finland Charges Psychotherapy Hacker With Extortion
Finland on Wednesday charged a hacker, accused of the theft of tens of thousands of records from psychotherapy patients, with over 21,000 counts of extortion,…
Qubitstrike Malware Hits Jupyter Notebooks for Cryptojacking and Cloud Data
KEY FINDINGS Cryptojackers are targeting Jupyter Notebooks to deploy Qubitstrike malware, reports Cado Security. Exposed Jupyter Notebooks are exploited in this campaign, mainly those deployed…
Hacker leaks millions of new 23andMe genetic data profiles
A hacker has leaked an additional 4.1 million stolen 23andMe genetic data profiles for people in Great Britain and Germany on a hacking forum. Earlier…
Three Months After Patch, Gov-backed Actors Exploiting WinRAR Flaw
Malware hunters in Google’s Threat Analysis Group (TAG) say government-backed hacking groups from different countries are feasting on a well-documented security flaw in the popular…
Google links WinRAR exploitation to Russian, Chinese state hackers
Google says that several state-backed hacking groups have joined ongoing attacks exploiting a high-severity vulnerability in WinRAR, a compression software used by over 500 million users, aiming to…
MATA malware framework exploits EDR in attacks on defense firms
An updated version of the MATA backdoor framework was spotted in attacks between August 2022 and May 2023, targeting oil and gas firms and the…
387+ New Security Flaws Patched
Oracle consistently receives reports of attempted malicious exploits, with some attackers succeeding due to customers neglecting available security patches. The company urges customers to stay…
SonicWall Hit By Several Flaws That Lead to A Firewall Crash
Multiple vulnerabilities were detected in the SonicOS Management web interface and the SSLVPN portal, resulting in a firewall crash. In a security alert that was…
Google Play Protect adds real-time scanning to fight Android malware
Google has announced new, real-time scanning features for Google Play Protect that make it harder for malicious apps employing polymorphism to evade detection. This represents…
Synology NAS System Flaw Let Attackers Hijack Admin Account
Synology DiskStation Manager (DSM) powers Synology NAS systems, offering remote file access and management. The DSM OS includes two default Linux users: ‘admin’ and ‘guest’…
Single Sign On and the Cybercrime Ecosystem
It’s not just your perception, cybercrime is increasing dramatically. At Flare we’ve identified a 112% increase in data extortion ransomware attacks in 2023 compared to…