Hacking Archives - Page 403 of 957

Pierluigi Paganini June 23, 2020

CLOP Ransomware operators hacked Indian conglomerate IndiaBulls Group

CLOP ransomware operators have allegedly hacked IndiaBulls Group, an Indian conglomerate headquartered in Gurgaon, India. CLOP ransomware operators have allegedly hacked the Indian conglomerate IndiaBulls Group, its primary businesses are housing finance, consumer finance, and wealth management. Indiabulls Group has around 19,000 employees, the company has been earning an average revenue of 25,000 crore Indian rupees. The […]

Pierluigi Paganini June 23, 2020

BlueLeaks: 269GB of data from US law enforcement organizations leaked online

A group of hacktivists and transparency advocates published a massive 269 GB of data, dubbed BlueLeaks, allegedly stolen from U.S. Police and Fusion Centers. A group of hacktivists and transparency advocates has leaked online hundreds of thousands of sensitive documents allegedly stolen from more than 200 police departments, fusion centers, and law enforcement agencies across the […]

Pierluigi Paganini June 22, 2020

Crooks leverage Google Analytics in web skimming attacks

Security researchers at Kaspersky uncovered a web skimming campaign leveraging Google Analytics service to steal user data. Recently, researchers at Kaspersky identified several web skimming attacks that abused Google Analytics service to exfiltrate data stolen with an e-skimmer software. Threat actors exploit the trust in Analytics to bypass Content Security Policy (CSP) using the Analytics API. […]

Pierluigi Paganini June 22, 2020

AMD is going to patch UEFI SMM callout privilege escalation flaw

AMD is going to release patches for a flaw affecting the System Management Mode (SMM) of the Unified Extensible Firmware Interface (UEFI). AMD recently announced that it was preparing patches for an SMM Callout Privilege Escalation vulnerability, tracked as CVE-2020-12890, that affects the System Management Mode (SMM) of the Unified Extensible Firmware Interface (UEFI). The vulnerability […]

Pierluigi Paganini June 21, 2020

US deported NeverQuest operator Stanislav Vitaliyevich Lisov to Russia

The United States has deported the author of NeverQuest banking malware, the computer programmer Stanislav Vitaliyevich Lisov to Russia. The United States has deported the computer programmer Stanislav Vitaliyevich Lisov (35) to Russia, he is the author of NeverQuest banking malware, Lisov was arrested in January 2017 at the Barcelona airport by the Guardia Civil. The […]

Pierluigi Paganini June 21, 2020

COVID-19 themed attacks are just a small percentage of the overall threats

Threat actors adapted their tactics to exploit the interest in the ongoing COVID-19 pandemic, Microsoft says. Since the beginning of the COVID-19 pandemic, threat actors started to actively deploy opportunistic campaigns using Coronavirus lures. Anyway, Microsoft says that malware attacks that abused the COVID-19 theme only had a temporary effect on the total volume of […]

Pierluigi Paganini June 20, 2020

Hundreds of malicious Chrome browser extensions used to spy on you!

Malicious Chrome browser extensions were employed in a surveillance campaign on a large scale, millions of users potentially impacted. Malicious Chrome browser extensions were used in a massive surveillance campaign aimed at users working in the financial services, oil and gas, media and entertainment, healthcare, government organizations, and pharmaceuticals. The malicious Chrome browser extensions were […]

Pierluigi Paganini June 20, 2020

Australian beverages firm Lion hit for the second time in a few days by a cyber attack

The Australian brewery and dairy conglomerate Lion was hit for the second time by a cyber attack, media reported. The Australian beverages company and dairy conglomerate Lion was the victim of a new cyberattack, Sydney Morning Herald reported. Lion is a beverage and food company that operates in Australia and New Zealand, and a subsidiary of Japanese […]

Pierluigi Paganini June 19, 2020

An SSRF flaw in Maximo Asset Management could be used to target corporate networks

IBM recently fixed a high-severity issue in its Maximo asset management solution that could facilitate attacks on corporate networks. IBM recently addressed a high-severity issue, tracked as CVE-2020-4529, in its Maximo asset management solution that could facilitate attacks on making lateral movements within corporate networks. Maximo is designed to assist an organisation in managing its assets […]

Pierluigi Paganini June 19, 2020

AcidBox, a malware that borrows Turla APT exploit, hit Russian organizations

New AcidBox Malware employed in targeted attacks leverages an exploit previously associated with the Russian-linked Turla APT group. Palo Alto Networks researchers analyzed a new malware, dubbed AcidBox, that was employed in targeted attacks and that leverages an exploit previously associated with the Russian-linked Turla APT group. The Turla APT group (aka Snake, Uroburos, Waterbug, Venomous Bear and KRYPTON) has been active since at […]

Hacking

CLOP Ransomware operators hacked Indian conglomerate IndiaBulls Group

BlueLeaks: 269GB of data from US law enforcement organizations leaked online

Crooks leverage Google Analytics in web skimming attacks

AMD is going to patch UEFI SMM callout privilege escalation flaw

US deported NeverQuest operator Stanislav Vitaliyevich Lisov to Russia

COVID-19 themed attacks are just a small percentage of the overall threats

Hundreds of malicious Chrome browser extensions used to spy on you!

Australian beverages firm Lion hit for the second time in a few days by a cyber attack

An SSRF flaw in Maximo Asset Management could be used to target corporate networks

AcidBox, a malware that borrows Turla APT exploit, hit Russian organizations

newsletter

Subscribe to my email list and stay
up-to-date!

recent articles

U.S. CISA urges FCEB agencies to fix two Microsoft SharePoint flaws immediately and added them to its Known Exploited Vulnerabilities catalog

Sophos fixed two critical Sophos Firewall vulnerabilities

French Authorities confirm XSS.is admin arrested in Ukraine

Microsoft linked attacks on SharePoint flaws to China-nexus actors

Cisco confirms active exploitation of ISE and ISE-PIC flaws

QUICK LINKS

Hacking

newsletter

Subscribe to my email list and stay up-to-date!

recent articles

Subscribe to my email list and stay
up-to-date!