Microsoft Revokes Many Signed Drivers Used by Chinese Cybercriminals
After being notified by several security firms, Microsoft has revoked many signed drivers that had been leveraged by threat actors, in many cases by Chinese…
Latest Cybersecurity News — Page 5220
View all →
Same code, different ransomware? Leaks kick-start myriad of new variants
Threat landscape trends demonstrate the impressive flexibility of cybercriminals as they continually seek out fresh methods of attack, including exploiting vulnerabilities, gaining unauthorized access, compromising…
Microsoft users on high alert over dangerous RCE zero-day
Microsoft has disclosed a potentially serious remote code execution (RCE) zero-day under active exploitation – by a group with alleged links to the Russian intelligence…
Fortinet Patches Critical FortiOS Vulnerability Leading to Remote Code Execution
Fortinet on Tuesday announced security updates that address a critical-severity vulnerability in FortiOS and FortiProxy that could be exploited for remote code execution (RCE). Tracked…
Security Serious Unsung Heroes Awards 2023 have launched
Eskenzi PR has today opened nominations for its eighth annual Security Serious Unsung Heroes Awards. The awards are all about celebrating the UK’s cybersecurity professionals,…
Chinese Hackers Deploy Microsoft-Signed Rootkit to Target Gaming Sector
Jul 12, 2023THNCyber Threat / Gaming Cybersecurity researchers have unearthed a novel rootkit signed by Microsoft that’s engineered to communicate with an actor-controlled attack infrastructure.…
FutureDotNow debuts roadmap to guide UK through closing digital skills gap
Tech industry coalition FutureDotNow is calling on government and businesses to work together to help close the IT skills gap, marking the publication of a…
Ransom Negotiation Fails, Ameritrade Data Breach Imminent
What happens when ransom negotiations fail? Leading financial services firm Ameritrade has been targeted and victimized by the notorious Cl0p ransomware group following a failed…
Chinese hackers forged authentication tokens to breach government emails
Sophisticated hackers have accessed email accounts of organizations and government agencies via authentication tokens they forged by using an acquired Microsoft account (MSA) consumer signing…
Teen Uber Hacker Arion Kurtaj Assessed Unfit For Trial
A teenage boy from the Lapsus$ hacking group arrested on charges of breaching Uber and other companies was assessed as not fit for trial. The…
Bug Bytes #207 -IIS, LLMs and iOS
Bug Bytes is a weekly newsletter curated by members of the bug bounty community. The second series is curated by InsiderPhD. Every week, she keeps…
Python-Based PyLoose Fileless Attack Targets Cloud Workloads for Cryptocurrency Mining
Jul 12, 2023The Hacker NewsCloud Security / Cryptocurrency A new fileless attack dubbed PyLoose has been observed striking cloud workloads with the goal of delivering…