Your cart is currently empty!
Author: Omar
-
For two years, Chinese hackers silently exploited VMware Zero-Day Flaw.
NewsroomZero Day / Cyber Espionage on January 20, 2024 Since late 2021, an advanced China-Nexus cyber espionage group has been linked to the abuse of a crucial vulnerability in VMware vCenter Server. This group was previously associated with the use of security flaws in Fortinet and VMware appliances. This latest example further demonstrates UNC3886’s capabilities,…
-
CISA Issues Emergency Directive to Federal Agencies
Ivanti Zero-Day Exploits: CISA Issues Emergency Directive to Federal Agencies NewsroomNetwork Security / Threat Intelligence Jan 20, 2024 The Federal Civilian Executive Branch (FCEB ) agencies were urged to implement mitigations against two actively exploited zero-day flaws in the Ivanti Connect Secure ( ICS) and IIPT ( IPS) products in an emergency directive issued by…
-
Sophisticated APT Cyberattack Linked to Russia Compromises Email Systems, Microsoft and Senior Executives Targeted
NewsroomCyber Espionage / Emails Security Jan 20, 2024 The theft of emails and attachments from senior executives and other members of the company’s cybersecurity and legal departments resulted in Microsoft being the target of a nation-state attack on its corporate systems, it was revealed on Friday. APT29, BlueBravo, Cloaked Ursa, Cozy Bear, and The…
-
TA866 deploys WasabiSeed and, Screenshotter Malware
TA866 deploys WasabiSeed and, Screenshotter Malware, according to an invoice Phishing Alert After a nine-month hiatus, the threat actor known as TA866 has resurfaced, this time delivering well-known malware families like WasabiSeed and Screenshotter. Thousands of invoice-themed emails bearing fake PDF files were sent to North America as part of the campaign, which was observed…
-
Microsoft was breached by Russian hackers to steal corporate emails.
Microsoft revealed on Friday night that the Russian state-sponsored hacking group Midnight Blizzard had breached and stolen data from some of its corporate email accounts. On January 12th, the company discovered the attack, and Microsoft started its investigation, disruption, or mitigation of the breach as a result. According to their investigation, they were breached by…
-
Administrator of BreachForums was given a 20-year supervised release sentence for hacking the forum.
Conor Brian Fitzpatrick was given a 20-year sentence of supervised release today in the Eastern District of Virginia for running the infamous BreachForums hacking forum, which is known for selling and leaking personal information from hundreds of millions of people all over the world. On the Breached cybercrime forum, Fitzpatrick andnbsp were charged in March…
-
Contracts through January 19, 2024
WASHINGTON HEADQUARTERS SERVICES Institute for Defense Analyses ( IDA ), Alexandria, Virginia, is awarded a$ 180, 000, 000 modification ( P00005 ) to increase the ceiling on a cost- plus- fixed- fee contract ( HQ003419D0001 ) from$ 950, 668, 589 to$ 1, 130, 668, 589. No funds are being obligated at the time of the…
-
Argentina’s Payoneer accounts were hacked during 2FA bypass attacks.
Many Payoneer users in Argentina claim that after receiving SMS OTP codes while they were sleeping, their 2FA-protected accounts were compromised and money was stolen. A financial services platform called Payoneer offers digital payment and online money transfer services. It is well-liked in Argentina because it enables individuals to make money abroad while evading local…
-
Emergency order from CISA: Mitigate Ivanti right away.
In response to widespread and active exploitation by numerous threat actors, CISA issued this year’s first emergency directive directing Federal Civilian Executive Branch (FCEB ) agencies to immediately mitigate two Ivanti Connect Secure and Ivani Policy Secure zero-day flaws. Given that numerous attacks have been launched against vulnerable Ivanti devices since December, including the CVE-…
-
One more data broker is prohibited by the FTC from selling your location information.
In a settlement with InMarket Media that forbids the company from selling Americans ‘ precise location data, the U. S. Federal Trade Commission (FTC ) continues to target data brokers. A Texas-based data aggregation company called InMarket specializes in gathering and analyzing locational information about people. The business collects location data from a variety of…