Category: Securityaffairs

N. Korean Kimsuky APT targets S. Korea-US military exercisesSecurity Affairs
23
Aug
2023

FBI identifies wallets holding cryptocurrency funds stolen by North KoreaSecurity Affairs

The U.S. FBI warned that North Korea-linked threat actors may attempt to cash out stolen cryptocurrency worth more than $40…

Carderbee APT targets Hong Kong orgs via supply chain attacksSecurity Affairs
23
Aug
2023

Carderbee APT targets Hong Kong orgs via supply chain attacksSecurity Affairs

A previously unknown APT group, tracked as Carderbee, was behind a supply chain attack against Hong Kong organizations. Symantec Threat…

TP-Link Tapo L530E smart bulb flaws allow hackers to steal user passwordsSecurity Affairs
23
Aug
2023

TP-Link Tapo L530E smart bulb flaws allow hackers to steal user passwordsSecurity Affairs

Four vulnerabilities in the TP-Link Tapo L530E smart bulb and impacting the mobile app used to control them expose users…

Avast released a free decryptor for Windows version of Akira ransomwareSecurity Affairs
22
Aug
2023

Akira ransomware gang spotted targeting Cisco VPN products to hack organizationsSecurity Affairs

The Akira ransomware gang targets Cisco VPN products to gain initial access to corporate networks and steal their data. The…

Defense contractor Belcan leaks admin password with a list of flawsSecurity Affairs
22
Aug
2023

Defense contractor Belcan leaks admin password with a list of flawsSecurity Affairs

US Government and defense contractor Belcan left its super admin credentials open to the public, Cybernews research team reveals. Belcan…

A cyber attack hit the Australian software provider Energy OneSecurity Affairs
22
Aug
2023

A cyber attack hit the Australian software provider Energy OneSecurity Affairs

The Australian software provider Energy One announced it was hit by a cyberattack last week that affected certain corporate systems…

Adobe warns customers of critical ColdFusion RCE exploited in attacksSecurity Affairs
22
Aug
2023

CISA adds critical Adobe ColdFusion flaw to its Known Exploited Vulnerabilities catalogSecurity Affairs

US CISA added critical vulnerability CVE-2023-26359 in Adobe ColdFusion to its Known Exploited Vulnerabilities catalog. US Cybersecurity and Infrastructure Security Agency (CISA)…

APT28 hacked Roundcube email servers of Ukrainian entitiesSecurity Affairs
22
Aug
2023

Snatch gang hacked of the Department of Defence South AfricaSecurity Affairs

Snatch gang claims the hack of the Department of Defence South Africa and added the military organization to its leak…

New flaw in Ivanti Endpoint Manager Mobile actively exploited in the wildSecurity Affairs
22
Aug
2023

Ivanti fixed a new critical Sentry API authentication bypass flawSecurity Affairs

Ivanti warned customers of a new critical Sentry API authentication bypass vulnerability tracked as CVE-2023-38035. The software company Ivanti released…

New HiatusRAT campaign targets Taiwan and U.S. military procurement systemSecurity Affairs
21
Aug
2023

New HiatusRAT campaign targets Taiwan and U.S. military procurement systemSecurity Affairs

HiatusRAT malware operators resurfaced with a new wave of attacks targeting Taiwan-based organizations and a U.S. military procurement system. In…

BlackCat ransomware group claims the hack of Seiko networkSecurity Affairs
21
Aug
2023

BlackCat ransomware group claims the hack of Seiko networkSecurity Affairs

The BlackCat/ALPHV ransomware group claims to have hacked the Japanese maker of watches Seiko and added the company to its…

Spoofing an Apple device and tricking users into sharing dataSecurity Affairs
21
Aug
2023

Spoofing an Apple device and tricking users into sharing dataSecurity Affairs

White hat hackers at the recent hacking conference Def Con demonstrated how to spoof an Apple device and trick users…