Threat actors impersonating Ukraine’s CERT using AnyDesk
In these cases, threat actors sent requests to connect via AnyDesk, falsely claiming to represent CERT-UA.
Cybersecurity News - Page 85
Europol's largest-ever operation seizes millions in criminal assets worldwide
The global operation uncovered 83 crypto wallets and addresses linked to criminal organizations.
US sanctions Chinese threat actors linked to treasury breach and Salt Typhoon attacks
The US Department of State has announced a reward of up to $10 million for tips leading to the identification or location of hackers.
Cyber Security Week in Review: January 17, 2025
In brief: Microsoft fixes 3 zero-days, Russia-linked Star Blizzard cyber espionage campaign targets WhatsApp accounts, and more.
Massive botnet abuses misconfigured DNS records to deliver malware
The threat actor took advantage of SPF records with an overly permissive configuration option, which allows any server to send emails on behalf of a domain.
Russia-linked hackers increasingly exploiting legitimate services in Ukraine to carry out cyberattacks
Most of the cyberattacks targeting Ukraine over the past year were intended for espionage, financial theft, or to inflict psychological damage.
Codefinger hackers target Amazon S3 buckets with encryption attacks
The attacks rely on AWS's Server-Side Encryption with Customer-Provided Keys (SSE-C) feature.
North Korean Nickle Tapestry group linked to fraudulent crowdfunding campaigns
Nickle Tapestry orchestrated a scam on the IndieGoGo crowdfunding platform in 2016.
Global brute-force attacks target Microsoft 365 accounts using FastHTTP Go library
The brute-force attempts have resulted in account takeovers approximately 10% of the time.
Microsoft patches over 160 vulnerabilities, including 3 actively exploited zero-days
The three zero-day flaws allow attackers to escalate their privileges to SYSTEM-level access.
Showing elements 841 - 850