Lazarus Group Targets Blockchain Pros with Fake Video Conferencing, Job Scam
A new Group-IB report highlights an ongoing campaign by the North Korean Lazarus Group, known as the “Eager Crypto Beavers” campaign. This group employs sophisticated…
Category: HackRead
Critical GeoServer Vulnerability Exploited in Global Malware Campaign
A critical GeoServer vulnerability (CVE-2024-36401) is being actively exploited, allowing attackers to take control of systems for malware deployment, cryptojacking, and botnet attacks. Update GeoServer…
AI Firm’s Misconfigured Server Exposed 5.3 TB of Mental Health Records
A misconfigured server from a US-based AI healthcare firm Confidant Health exposed 5.3 TB of sensitive mental health records, including personal details, assessments, and medical…
RansomHub Claims Planned Parenthood Hack, Steals 93GB of Sensitive Data
RansomHub claims to have breached Intermountain Planned Parenthood, stealing 93GB of data. The healthcare provider is investigating the cyber attack while experts warn of escalating…
WordPress Mandates 2FA, SVN Passwords for Plugin, Theme Authors
Starting October 2024, WordPress requires plugin and theme authors to enable two-factor authentication (2FA) and use SVN-specific passwords for commit access, boosting security for millions…
Cutting-Edge Security Platform for Email and Network Providers
Boston, MA, September 5th, 2024, CyberNewsWire Abusix, a network security company that offers solutions for email security and network abuse report handling, today announced the…
Fake OnlyFans Checker Tool Infects Hackers with Lummac Stealer Malware
Cybersecurity experts uncover the Lummac Stealer malware, disguised as an OnlyFans “Checker” tool, targeting hackers. The tool also targets Disney+ and Instagram hackers. Cybersecurity experts…
New Supply Chain Attack Revival Hijack Risks Massive PyPI Takeovers
Cybersecurity researchers at JFrog have uncovered a new supply chain attack technique for attacking Python Package Index (PyPI) repositories, potentially impacting over 22,000 software packages…
DDoS Attacks Hit France Over Telegram’s Pavel Durov Arrest
Hacktivists unite for the #FreeDurov campaign to launch a massive cyber campaign against France in response to Telegram CEO Pavel Durov’s arrest, targeting over 50…
Rage Stealer Rebranded as Angry Stealer, Now Uses Telegram Bot for Data Theft
Beware of “Angry Stealer,” a new malware targeting your online accounts. This rebranded version of Rage Stealer steals passwords, credit card details, and more via…
INE Security Announces 5 Practical Steps to Elevate Cyber Defense Strategies
Cary, North Carolina, September 4th, 2024, CyberNewsWire In a proactive response to the rapidly evolving landscape of cyber threats, INE Security, a global leader in…
Fake GlobalProtect VPN Downloads Used to Spread WikiLoader Malware
Beware of fake GlobalProtect VPN downloads! A new malware campaign uses SEO poisoning and spoofed websites to deliver WikiLoader malware. Primarily targeting education & transportation,…