Russian Cyberattackers Launch Multi-Phase PsyOps Campaign
Operation Texonto spanned several months, using various Russian propaganda lures and spear-phishing to misinform and trick users into giving up Microsoft 365 credentials.
4 Key Steps to Reevaluate Your Cybersecurity Priorities
Amid a spike in attacks, now is a good time for brands to strengthen their cybersecurity strategy.
Iran-Backed Charming Kitten Stages Fake Webinar Platform to Ensnare Targets
The latest ploy by the APT also known as Charming Cypress targets policy experts in the Middle East, Europe, and the US.
'Lucifer' Botnet Turns Up the Heat on Apache Hadoop Servers
More than 3,000 unique attacks hitting Hadoop and Druid honeypots in just the past month indicate an attacker testing phase, portending fire and brimstone to come.
https://www.darkreading.com/cloud-security/lucifer-botnet-heat-apache-hadoop-servers
'VoltSchemer' Hack Allows Wireless Charger Takeovers
Researchers tested their theory on nine chargers, each different and available to consumers, and found them all vulnerable to their attacks.
El Al Flight Crew Suffers Midflight Communication Disruption
Though the incident took place over a known Houthi area, some say this incident was at the hands of a Somali group, based on frequent communication disruptions in the country.
Critical ConnectWise RMM Bug Poised for Exploitation Avalanche
Two days after disclosure, most instances of the remote desktop tool remain unpatched, while cyberattackers have started in-the-wild exploitation β and researchers warn it could get ugly, fast.
DoT, White House Tackle the Chinese Threat to US Port Security
New investments and Coast Guard authority aim to curb the alleged threat that Chinese vendors pose to American maritime security.
https://www.darkreading.com/ics-ot-security/dot-white-house-tackle-chinese-threat-us-port-security
Critical Vulnerability in VMware vSphere Plug-in Allows Session Hijacking
Admins are urged to remove vSphere's vulnerable Enhanced Authentication Plug-in, which was discontinued nearly three years ago but is still widely in use.
How CISOs Balance Business Growth, Security in Cyber-Threat Landscape
Collaboration, care, and proactive planning need to be part of CISO toolboxes as worsening threat environments become the new normal. CISOs need to adjust processes so business innovation can continue...
Library Cyber-Defenses Are Falling Down
Librarians are being asked to defend themselves online against sophisticated and complex attacks. Itβs an unequal fight.
https://www.darkreading.com/cloud-security/library-cyber-defenses-are-falling-down
Iranian APTs Dress Up As Hacktivists for Disruption, Influence Ops
Iran has taken a page from the Russian playbook: Passing off military groups as civilians for the sake of PR and plausible deniability.
AI-Generated Patches Could Ease Developer, Operations Workload
Using information from a common technique for finding vulnerabilities, Google's Gemini can currently produce patches for 15% of such bugs. And it's not the only way to help automate bug fixing.
https://www.darkreading.com/application-security/ai-patch-ease-developer-operations-workload
New Wave of 'Anatsa' Banking Trojans Targets Android Users in Europe
Users have already downloaded droppers for the malware from Google's official Play store more than 100,000 times since last November.
Wyze Cameras Allow Accidental User Spying
About 13,000 users received camera images and feeds that weren't theirs. This cyber incident takes place only five months after the company experienced a similar issue and failed to be transparent wit...
https://www.darkreading.com/endpoint-security/wyze-cameras-allow-accidental-user-spying
Joomla XSS Bugs Open Millions of Websites to RCE
Improper content filtering in a core function allows multiple paths to exploitation for CVE-2024-21726.
https://www.darkreading.com/application-security/joomla-xss-bugs-open-millions-websites-rce
Meta Disrupts 8 Spyware Firms, 3 Fake News Networks
While furiously trying to put out one fire β fake news β the social media giant is dealing with another growing threat: spies for hire.
https://www.darkreading.com/threat-intelligence/meta-disrupts-8-spyware-firms-3-fake-news-networks
Google's Cloud Run Service Spreads Several Bank Trojans
A surging bank malware campaign abuses Google Cloud Run and targets Latin America, with indications that it's spreading to other regions, researchers warn.
https://www.darkreading.com/application-security/google-cloud-run-spreading-several-bank-trojans-
Median Ransomware Demands Grow to $600K a Pop
The now-disrupted LockBit gang outpaced its competitors in volume in 2023, as ransom amounts spiked 20% year-over-year.
https://www.darkreading.com/vulnerabilities-threats/median-ransomware-demands-grow-600k
'KeyTrap' DNS Bug Threatens Widespread Internet Outages
Thanks to a 24-year-old security vulnerability tracked as CVE-2023-50387, attackers could stall DNS servers with just a single malicious packet, effectively taking out wide swaths of the Internet.
https://www.darkreading.com/cloud-security/keytrap-dns-bug-threatens-widespread-internet-outages