Russian man pleads guilty to laundering Ryuk ransomware money
Russian citizen Denis Mihaqlovic Dubnikov pleaded guilty on Tuesday to laundering money for the notorious Ryuk ransomware group for over three years. The guilty plea…
Category: Bleeping Computer
Medusa botnet returns as a Mirai-based variant with ransomware sting
A new version of the Medusa DDoS (distributed denial of service) botnet, based on Mirai code, has appeared in the wild, featuring a ransomware module…
Researcher breaches Toyota supplier portal with info on 14,000 partners
Toyota’s Global Supplier Preparation Information Management System (GSPIMS) was breached by a security researcher who responsibly reported the issue to the company. GSPIMS is the…
Actively exploited GoAnywhere MFT zero-day gets emergency patch
Fortra has released an emergency patch to address an actively exploited zero-day vulnerability in the GoAnywhere MFT secure file transfer tool. The vulnerability allows attackers…
Clop ransomware flaw allowed Linux victims to recover files for months
The Clop ransomware gang is now also using a malware variant that explicitly targets Linux servers, but a flaw in the encryption scheme has allowed…
LockBit ransomware gang claims Royal Mail cyberattack
The LockBit ransomware operation has claimed the cyberattack on UK’s leading mail delivery service Royal Mail that forced the company to halt its international shipping services due to…
Microsoft Outlook outage prevents users from sending, receiving emails
Microsoft is investigating and working on addressing an ongoing outage affecting the company’s Outlook webmail service. Users report issues while sending, receiving, or searching email…
Hackers backdoor Windows devices in Sliver and BYOVD attacks
A new hacking campaign exploits Sunlogin flaws to deploy the Sliver post-exploitation toolkit and launch Windows Bring Your Own Vulnerable Driver (BYOVD) attacks to disable…
Exploit released for actively exploited GoAnywhere MFT zero-day
Exploit code has been released for an actively exploited zero-day vulnerability affecting Internet-exposed GoAnywhere MFT administrator consoles. GoAnywhere MFT is a web-based and managed file…
VMware warns admins to patch ESXi servers, disable OpenSLP service
VMware warned customers today to install the latest security updates and disable the OpenSLP service targeted in a large-scale campaign of ransomware attacks against Internet-exposed…
Police hacked Exclu ‘secure’ message platform to snoop on criminals
The Dutch police announced on Friday that they dismantled the Exclu encrypted communications platform after hacking into the service to monitor the activities of criminal…
Linux version of Royal Ransomware targets VMware ESXi servers
Royal Ransomware is the latest ransomware operation to add support for encrypting Linux devices to its most recent malware variants, specifically targeting VMware ESXi virtual…