Cloud Extortion Campaign Hacks AWS .Env Files To Ransom Data
Researchers have uncovered an extortion campaign that targeted more than 100,000 domains by using misconfigured AWS environment variable files (.env files) to ransom data in cloud…
Category: TheCyberExpress
Massive AI-Controlled X Disinformation Network Linked To China
Researchers have uncovered a network of at least 5,000 fake X (formerly Twitter) accounts that appear to be controlled by AI in a disinformation campaign…
GitHub Actions Artifacts Expose Sensitive Tokens In Major Repos
GitHub repositories have become a crucial part of modern software development, allowing teams to collaborate, build, and deploy code. However, a critical vulnerability has been…
Russia Spreading Deepfakes And Misinformation On Kursk Offensive, Says Ukraine
Deepfakes and Misinformation: Russia’s old but renewed playbook! As Ukraine continues to bomb the Russian border region of Kursk in a “surprise incursion” with missiles…
Independence Day Cybersecurity Threats Loom Over Celebrations
As India prepares to celebrate its 78th Independence Day on August 15, 2024, with nationwide festivities marking the end of nearly 200 years of British…
Critical Flaws In Microsoft’s Azure Health Bot Service
The Azure Health Bot Service, a cloud platform designed for healthcare organizations to create and deploy AI-powered virtual health assistants, has been found vulnerable to…
Threat Actor Tools Found That Bypass AV Tools, Purge Backups
Security researchers have found a trove of threat actor tools that can bypass security defenses like Windows Defender and Malwarebytes, delete backups, disable systems, and…
Ransomware-as-a-Service Model Architect Extradited To U.S.
The suspected architect of the Ransomware-as-a-service model, who called himself the “J.P. Morgan” of the underground cybercrime world, has been arrested and extradited from Poland…
X’s AI Training Irks Privacy Experts; Draws Nine GDPR Complaints Across Europe
Twitter International, now rebranded as “X,” has been accused of unlawfully using the personal data of over 60 million users in the EU/EEA to train…
Switzeland’s Schlatter Industries Falls Victim To Cyberattack
Switzerland-based Schlatter Industries announced that its IT network was compromised by a sophisticated malware attack on Friday. The company suspects that the attack may have…
Ukrainian Government Agencies Hit By Stealthy MeshAgent Malware Campaign
Over 100 Ukrainian state and local government computers have been compromised with MeshAgent malware in a phishing campaign leveraging trust in the Security Service of…
Amazon Customer In India Alleges Data Breach After Fake Orders
An Amazon customer in India has raised concerns about a potential data breach at Amazon after receiving duplicate orders and fake products. The customer, through…