French defence giant Thales says it may have been hacked
Thales, a major French defence and technology group, announced that criminal group LockBit 3.0 claims to have stolen some of its data and threatens to publish it.
Thales noted it had not received a formal ransom demand at the time of its announcement. The company said LockBit 3.0 announced plans... Read more
Cybercriminals are hacking scammers to hijack crypto transactions
A threat actor named 'Water Labbu' is hacking scam websites to inject malicious JavaScript code and steal cryptocurrency from victims.
In July, the FBI published a warning regarding scams of decentralized applications (dApps) where hackers impersonated cryptocurrency liquidity mining services, ... Read more
Hackers deliver malware through ‘mouseovers’ in PowerPoint files
Hackers suspected of working for Russia are utilizing Microsoft PowerPoint presentations (PTTs) to spread malware, using a hyperlink technique that acts as a set-off to trigger a malicious PowerShell script within the PPT.
There is no need for a malicious macro to execute or download the payload... Read more
FishPig discovers exploit that puts 200,000 websites at risk
200,000 sites risk having their data compromised due to an exploit in FishPig's software.
FishPig is a UK-based e-commerce software developer. Organizations use its Magento and WordPress plugins to streamline processes. FishPig recently discovered that attackers had found a backdoor into the sec... Read more
Lorenz ransomware group breaches corporate network
The Lorenz ransomware group managed to breach into corporate networks using VoIP vulnerabilities.
Data breaches are at an all-time high, with several ransomware gangs exploiting vulnerabilities within systems to steal sensitive data. Lorenz is a ransomware group that uses VoIP vulnerabilities to... Read more
Atlassian warns of critical vulnerability in Bitbucket
Atlassian issued a security alert for its Bitbucket Server and Datacenter solution. A vulnerability allows hackers to execute arbitrary code on affected instances.
Bitbucket is a Git-based code tool for hosting, management and collaboration. The tool integrates with Atlassian's Jira and Trello s... Read more
Hackers target hotel and travel companies
The cyberattackers are using fake booking emails to phish.
A hacker group tracked as TA558 has upped their activity this year, running phishing campaigns that target multiple hotels and firms in the hospitality and travel space, according to a report in BleepingComputer.
The cyberattacker use... Read more
‘Thousands of VNC servers unsafely connected to the Internet’
Security company Cyble discovered that more than a thousand Virtual Network Computing (VNC) endpoints are unsafely connected to the Internet and open to unauthorized access.
VNC is a platform-independent system that allows users to remotely connect to systems to perform monitoring and adjustment... Read more
State-backed North Korean hackers have a smart way of reading your Gmail
Security researchers revealed never-seen-before malware that competent North Korean hackers use to sneak, read, and access the attachments and emails from AOL and Gmail users' accounts.
A malware, dubbed SHARPEXT by security researchers from security firm Volexity, uses smart methods to download... Read more
Google blocks over thirty malicious domains used by hackers
Google blocked over thirty malicious domains connected to cybercriminal groups in Russia, UAE and India.
The domains actively targeted AWS, Gmail and many other personal accounts to perform corporate espionage against organizations and human activists.
According to the threat analysis group a... Read more