Category: Securityaffairs

Cloud and hosting provider Leaseweb took down critical systems after a cyber attackSecurity Affairs
26
Aug
2023

Cloud and hosting provider Leaseweb took down critical systems after a cyber attackSecurity Affairs

The cloud and hosting provider Leaseweb suffered a security breach that impacted some “critical” systems of the company. Global hosting…

French employment agency Pôle emploi data breach impacted 10M peopleSecurity Affairs
26
Aug
2023

French employment agency Pôle emploi data breach impacted 10M peopleSecurity Affairs

Pôle emploi, the French government employment agency suffered a data breach that impacted 10 million individuals. The French government employment agency…

Crypto investor data exposed by a SIM swapping attack against a Kroll employeeSecurity Affairs
26
Aug
2023

Crypto investor data exposed by a SIM swapping attack against a Kroll employeeSecurity Affairs

Security consulting giant Kroll disclosed a data breach resulting from a SIM-swapping attack against one of its employees. Security consulting firm Kroll revealed…

China-linked Flax Typhoon APT targets TaiwanSecurity Affairs
25
Aug
2023

China-linked Flax Typhoon APT targets TaiwanSecurity Affairs

China-linked APT group Flax Typhoon targeted dozens of organizations in Taiwan as part of a suspected espionage campaign. Microsoft linked…

Whiffy Recon malware triangulates the position of infected systems via Wi-FiSecurity Affairs
25
Aug
2023

Whiffy Recon malware triangulates the position of infected systems via Wi-FiSecurity Affairs

Experts observed the SmokeLoader malware delivering a new Wi-Fi scanning malware strain dubbed Whiffy Recon. Secureworks Counter Threat Unit (CTU) researchers…

CISA warns about SUBMARINE Backdoor employed in Barracuda ESG attacksSecurity Affairs
25
Aug
2023

Patches for Barracuda ESG CVE-2023-2868 are ineffectiveSecurity Affairs

The FBI warned that patches for a critical Barracuda ESG flaw CVE-2023-2868 are “ineffective” and patched appliances are still being…

Experts released PoC exploit for Ivanti Sentry CVE-2023-38035Security Affairs
24
Aug
2023

Experts released PoC exploit for Ivanti Sentry CVE-2023-38035Security Affairs

Proof-of-concept exploit code for critical Ivanti Sentry authentication bypass flaw CVE-2023-38035 has been released. Researchers released a proof-of-concept (PoC) exploit…

Lazarus APT exploits Zoho ManageEngine flaw to target an Internet backbone infrastructure providerSecurity Affairs
24
Aug
2023

Lazarus APT exploits Zoho ManageEngine flaw to target an Internet backbone infrastructure providerSecurity Affairs

The North Korea-linked Lazarus group exploits a critical flaw in Zoho ManageEngine ServiceDesk Plus to deliver the QuiteRAT malware. The…

Lapsus$ member has been convicted of having hacked multiple high-profile companiesSecurity Affairs
24
Aug
2023

Lapsus$ member has been convicted of having hacked multiple high-profile companiesSecurity Affairs

An 18-year-old member of the Lapsus$ gang has been convicted of having helped hack multiple high-profile companies. A teenage member of…

+3,000 Openfire servers exposed to attacks using a new exploitSecurity Affairs
24
Aug
2023

+3,000 Openfire servers exposed to attacks using a new exploitSecurity Affairs

Researchers warn that more than 3,000 unpatched Openfire servers are exposed to attacks using an exploit for a recent flaw….

Hackers stole millions of dollars worth of crypto assets from Poly Network platformSecurity Affairs
23
Aug
2023

DoJ charged Tornado Cash founders with laundering more than $1 billionSecurity Affairs

The U.S. DoJ charged two men with operating the Tornado Cash service and laundering more than $1 Billion in criminal…

N. Korean Kimsuky APT targets S. Korea-US military exercisesSecurity Affairs
23
Aug
2023

FBI identifies wallets holding cryptocurrency funds stolen by North KoreaSecurity Affairs

The U.S. FBI warned that North Korea-linked threat actors may attempt to cash out stolen cryptocurrency worth more than $40…