Tag: technews

China’s Stealthy Hackers Infiltrate U.S. and Guam Critical Infrastructure A stealthy China-based group has managed to gain a foothold in several critical infrastructure organizations in the U.S. and Guam without being detected, according to Microsoft and the Five Eyes nations. The tech giant’s threat intelligence team is tracking the activity, which includes post-compromise credential access…

Buhti ransomware gang switches tactics, utilizes leaked LockBit and Babuk code Buhti ransomware targetting Linux and Windows customers is a new kind of ransomware. Previous ransomware families that targeted Linux include those from LockBit and Babuk, as well as some from the Bl00dy Ransomware Gang. Buhti does not have a custom payload and can be…

Browser Security: New Approaches with Guest Forrester In order to make organizations aware of the latest threats to browser security, LayerX is hosting a webinar featuring Guest Speaker Paddy Harrington, a Senior Analyst at Forrester and the lead author of Forresters report Securing the Browser In The World Of Anywhere Work. In this webinar, Harrington…

Alert: Brazilian Hackers Targeting Users of Over 30 Portuguese Banks Alert: A brasilian threat actor has hit up more than 30 Portuguese financial institutions with information-stealing malware in a campaign that began in 2021. The sophisticated hacking effort represents the latest iteration in a long line of financially motivated malware campaigns originating from Latin America,…

A new backdoor used in an Iranian cyber attack on the UAE government has been identified. This vulnerability was designed to allow an Iranian threat actor to remotely compromise a victim’s Exchange Server with a backdoor called PowerExchange. CVE-2018-0122 describes the capabilities of this so-called simple yet effective backdoor. PowerExchange, written in PowerShell, employs text…

Cynet Prevents Lethal Infection in Hospital The hospital was in the process of upgrading its imaging systems. One of these systems had a USB key that could be used to store files on any device. Unfortunately, this USB key became infected with malware. Fortunately, the company uses Cynet’s technology to protect this key and prevent…

Google Cloud’s Cloud SQL Service had a severe flaw that exposed confidential data. A new security flaw has been disclosed in the Google Cloud SQL service that could be potentially exploited to gain access to confidential data within the company’s cloud infrastructure. According to Dig, the vulnerability could have enabled a malicious actor to escalate…

Zyxel issues security patches for firewall and VPN products Zyxel has released software updates to address two critical security flaws in its firewall and VPN products that could be abused by remote attackers to gain code execution. The company says that the flaws, CVE-2023-33009 and CVE-20170130, are buffer overflow vulnerabilities. It notes that the following…

DDoS Attacks on Gaming Industry by Dark Frost Botnet A new botnet called Dark Frost has been observed launching distributed denial-of-service (DDoS) attacks against the gaming industry. The targets include gaming companies, game server hosting providers, online streamers, and even other gaming community members with whom the threat actor has interacted directly. According to ThreatPost,…

Barracuda Email Security Gateway Appliances Breach Email Security with Zero-Day Expl Email protection and network security services provider Barracuda is warning customers about a flaw that it says has been exploited by remote attackers. The company said it blocked nearly 3 million attacks against more than 1.5 million sites, from nearly 14,000 IP addresses since…