Hacking Archives - Page 234 of 954

Pierluigi Paganini July 06, 2022

Cyberattacks against law enforcement are on the rise

Experts observed an increase in malicious activity targeting law enforcement agencies at the beginning of Q2 2022. Resecurity, a Los Angeles-based cybersecurity company protecting Fortune 500 companies worldwide, has registered an increase in malicious activity targeting law enforcement agencies at the beginning of Q2 2022. Threat actors are hacking email and other accounts which belong […]

Pierluigi Paganini July 06, 2022

Less popular, but very effective, Red-Teaming Tool BRc4 used in attacks in the wild

Threat actors are abusing legitimate adversary simulation software BRc4 in their campaigns to evade detection. Researchers from Palo Alto Networks Unit 42 discovered that a sample uploaded to the VirusTotal database on May 19, 2022 and considered benign by almost all the antivirus, was containing a payload associated with Brute Ratel C4 (BRc4), a new red-teaming and […]

Pierluigi Paganini July 06, 2022

Malicious NPM packages used to grab data from apps, websites

Researchers from ReversingLabs discovered tens of malicious NPM packages stealing data from apps and web forms. Researchers from ReversingLabs discovered a couple of dozen NPM packages that included malicious code designed to steal data from apps and web forms on websites that included the modules. The malicious NPM modules were delivered as part of a […]

Pierluigi Paganini July 05, 2022

Iranian Fars News Agency claims cyberattack on a company involved in the construction of Tel Aviv metro

Iran’s Fars News Agency reported that a massive cyberattack hit operating systems and servers of the Tel Aviv Metro. Iran’s Fars News Agency reported on Monday that operating systems and servers of the Tel Aviv Metro were hit by a massive cyberattack. The rail system is still under construction and according to The Jerusalem Post, […]

Pierluigi Paganini July 05, 2022

Threat actors compromised British Army ’s Twitter, YouTube accounts to promote crypto scams

Threat actors compromised the Twitter and YouTube accounts of the British Army to promote online crypto scams. The Twitter and YouTube accounts of the British Army were used to promote NFT and other crypto scams. The YouTube account was used to transmit an older Elon Musk clip that attempts to trick users into visiting cryptocurrency scam […]

Pierluigi Paganini July 04, 2022

Google fixes the fourth Chrome zero-day in 2022

Google addressed a high-severity zero-day Chrome vulnerability actively exploited in the wild, it is the fourth zero-day patched in 2022. Google has released Chrome 103.0.5060.114 for Windows to fix a high-severity zero-day Chrome vulnerability, tracked as CVE-2022-2294, which is actively exploited in the wild. The flaw is a heap buffer overflow that resides in the […]

Pierluigi Paganini July 04, 2022

Data of a billion Chinese residents available for sale on a cybercrime forum

Threat actors claim to have breached a database belonging to Shanghai police and stole the data of a billion Chinese residents. Unknown threat actors claimed to have obtained data of a billion Chinese residents after breaching a database of the Shanghai police. If the incident will be confirmed, this data breach is the largest one […]

Pierluigi Paganini July 03, 2022

Tens of Jenkins plugins are affected by zero-day vulnerabilities

Jenkins security team disclosed tens of flaws affecting 29 plugins for the Jenkins automation server, most of them are yet to be patched. Jenkins is the most popular open-source automation server, it is maintained by CloudBees and the Jenkins community. The automation server supports developers build, test and deploy their applications, it has hundreds of thousands […]

Pierluigi Paganini July 02, 2022

Experts shared PoC exploit code for RCE in Zoho ManageEngine ADAudit Plus tool

Researchers shared technical details and proof-of-concept exploit code for the CVE-2022-28219 flaw in Zoho ManageEngine ADAudit Plus tool. Security researchers from Horizon3.ai have published technical details and proof-of-concept exploit code for a critical vulnerability, tracked as CVE-2022-28219 (CVSS 9.8 out of 10), in the Zoho ManageEngine ADAudit Plus tool. The tool allows monitoring activities of […]

Pierluigi Paganini July 02, 2022

A ransomware attack forced publishing giant Macmillan to shuts down its systems

A cyber attack forced the American publishing giant Macmillan to shut down its IT systems. The publishing giant Macmillan has been hit by a cyberattack that forced the company to shut down its IT infrastructure to prevent the threat from spreading within its network. The company spokesman Erin Coffey told different media outlets that attackers have encrypted […]

Hacking

Cyberattacks against law enforcement are on the rise

Less popular, but very effective, Red-Teaming Tool BRc4 used in attacks in the wild

Malicious NPM packages used to grab data from apps, websites

Iranian Fars News Agency claims cyberattack on a company involved in the construction of Tel Aviv metro

Threat actors compromised British Army ’s Twitter, YouTube accounts to promote crypto scams

Google fixes the fourth Chrome zero-day in 2022

Data of a billion Chinese residents available for sale on a cybercrime forum

Tens of Jenkins plugins are affected by zero-day vulnerabilities

Experts shared PoC exploit code for RCE in Zoho ManageEngine ADAudit Plus tool

A ransomware attack forced publishing giant Macmillan to shuts down its systems

newsletter

Subscribe to my email list and stay
up-to-date!

recent articles

Europol shuts down Archetyp Market, longest-running dark web drug marketplace

Kelly Benefits data breach has impacted 550,000 people, and the situation continues to worsen as the investigation progresses

Cisco removed the backdoor account from its Unified Communications Manager

U.S. Sanctions Russia's Aeza Group for aiding crooks with bulletproof hosting

Qantas confirms customer data breach amid Scattered Spider attacks

QUICK LINKS

Hacking

newsletter

Subscribe to my email list and stay up-to-date!

recent articles

Subscribe to my email list and stay
up-to-date!