Skip to main content

Security News

Filter by:

FIN7 crime-gang pen tester headed to US prison for five years

He's the third FIN7 gangster to face time behind bars Another member of notorious cybercrime ring FIN7 is headed to jail after the gang breached major companies' networks across the US and stole more than $1 billion from these businesses' customers.…
The Register 8 Apr 2022 7637 Views

Microsoft takes down APT28 domains used in attacks against Ukraine

Microsoft has successfully disrupted attacks against Ukrainian targets coordinated by the Russian APT28 hacking group after taking down seven domains used as attack infrastructure. [...]
Bleepingcomputer 8 Apr 2022 270 Views

This new malware targets AWS Lambda environments

A new malware variant that targets AWS Lambda has been discovered.
ZDNet 7 Apr 2022 274 Views

Cash App notifies 8.2 million US customers about data breach

Cash App is notifying 8.2 million current and former US customers of a data breach after a former employee accessed their account information. [...]
Bleepingcomputer 6 Apr 2022 282 Views

Microsoft detects Spring4Shell attacks across its cloud services

Microsoft said that it's currently tracking a "low volume of exploit attempts" targeting the critical Spring4Shell (aka SpringShell) remote code execution (RCE) vulnerability across its cloud services. [...]
Bleepingcomputer 6 Apr 2022 282 Views

Remote Access Trojan adds ransomware and DDoS attacks to usual bag of tricks

Known as Borat, a new Trojan spotted by Cyble allows attackers to compile malicious code to launch ransomware campaigns and DDoS attacks on the victim’s machine. The post Remote Access Trojan adds ransomware and DDoS attacks to usual bag of tricks appeared first on TechRepublic.
TechRepublic 6 Apr 2022 275 Views

SpringShell attacks target about one in six vulnerable orgs

Roughly one out of six organizations worldwide that are impacted by the Spring4Shell zero-day vulnerability have already been targeted by threat actors, according to statistics from one cybersecurity company. [...]
Bleepingcomputer 6 Apr 2022 275 Views

Fake Trezor data breach emails used to steal cryptocurrency wallets

A compromised Trezor hardware wallet mailing list was used to send fake data breach notifications to steal cryptocurrency wallets and the assets stored within them.
Bleepingcomputer 4 Apr 2022 309 Views

$620 million in crypto stolen from Axie Infinity's Ronin bridge

A hacker has stolen almost $620 million in Ethereum and USDC tokens from Axie Infinity's Ronin network bridge, making it possibly the largest crypto hack in history. [...]
Bleepingcomputer 30 Mar 2022 415 Views

Log4JShell Used to Swarm VMware Servers with Miners, Backdoors

Researchers have found three backdoors and four miners in attacks exploiting the Log4Shell vulnerability, some of which are still ongoing.
Threatpost 30 Mar 2022 162 Views