Category: Bleeping Computer

Windows
16
Dec
2024

Windows kernel bug now exploited in attacks to gain SYSTEM privileges

CISA has warned U.S. federal agencies to secure their systems against ongoing attacks targeting a high-severity Windows kernel vulnerability. Tracked…

Call center
16
Dec
2024

ConnectOnCall breach exposes health data of over 910,000 patients

Healthcare software as a service (SaaS) company Phreesia is notifying over 910,000 people that their personal and health data was…

Rhode Island
16
Dec
2024

Rhode Island confirms data breach after Brain Cipher ransomware attack

Rhode Island State House (Image: MOHANN) Rhode Island is warning that its RIBridges system, managed by Deloitte, suffered a data breach…

Qualcomm
16
Dec
2024

New Android NoviSpy spyware linked to Qualcomm zero-day bugs

The Serbian government exploited Qualcomm zero-days to unlock and infect Android devices with a new spyware named ‘NoviSpy,’ used to spy…

Hacker
16
Dec
2024

Winnti hackers target other threat actors with new Glutton PHP backdoor

​The Chinese Winnti hacking group is using a new PHP backdoor named ‘Glutton’ in attacks on organizations in China and…

Hacker exploiting a flaw
16
Dec
2024

Clop ransomware claims responsibility for Cleo data theft attacks

The Clop ransomware gang has confirmed to BleepingComputer that they are behind the recent Cleo data-theft attacks, utilizing zero-day exploits…

Russian cyberspies target Android users with new spyware
14
Dec
2024

Russian cyberspies target Android users with new spyware

Russian cyberspies Gamaredon has been discovered using two Android spyware families named ‘BoneSpy’ and ‘PlainGnome’ to spy on and steal…

Hacker
14
Dec
2024

390,000 WordPress accounts stolen from hackers in supply chain attack

A threat actor tracked as MUT-1244 has stolen over 390,000 WordPress credentials in a large-scale, year-long campaign targeting other threat…

Water plant hacker
14
Dec
2024

CISA warns water facilities to secure HMI systems exposed online

CISA and the Environmental Protection Agency (EPA) warned water facilities today to secure Internet-exposed Human Machine Interfaces (HMIs) from cyberattacks….

Gambling with cryptocurrency
14
Dec
2024

FTC warns of online task job scams hooking victims like gambling

The Federal Trade Commission (FTC) warns about a significant rise in gambling-like online job scams, known as “task scams,” that…

LKQ
14
Dec
2024

Auto parts giant LKQ says cyberattack disrupted Canadian business unit

Automobile parts giant LKQ Corporation disclosed that one of its business units in Canada was hacked, allowing threat actors to…

Cleo
14
Dec
2024

CISA confirms critical Cleo bug exploitation in ransomware attacks

​CISA confirmed today that a critical security vulnerability in Cleo Harmony, VLTrader, and LexiCom file transfer software is being exploited…