Internet Security

Kinsing threat actors probed the Looney Tunables flaws in recent attacks

November 4, 2023 add comment
Kinsing threat actors are exploiting the recently disclosed Linux privilege escalation flaw Looney Tunables to target cloud environments. Researchers are cloud security firm Aqua have observed threat actors exploiting the... Read more »

ZDI discloses four zero-day flaws in Microsoft Exchange

November 3, 2023 add comment
Researchers disclosed four zero-day flaws in Microsoft Exchange that can be remotely exploited to execute arbitrary code or disclose sensitive information on vulnerable installs. Trend Micro’s Zero Day Initiative... Read more »

Okta customer support system breach impacted 134 customers

November 3, 2023 add comment
Threat actors who breached the Okta customer support system also gained access to files belonging to 134 customers. Threat actors who breached the Okta customer support system in October... Read more »

Multiple WhatsApp mods spotted containing the CanesSpy Spyware

November 3, 2023 add comment
Kaspersky researchers are warning of multiple WhatsApp mods that embed a spyware module dubbed CanesSpy. Kaspersky researchers discovered multiple WhatsApp mods that embed a spyware module dubbed CanesSpy. mods are modifications... Read more »

Russian FSB arrested Russian hackers who supported Ukrainian cyber operations

November 3, 2023 add comment
The FSB arrested two Russian hackers who are accused of having helped Ukrainian entities carry out cyberattacks on critical infrastructure targets. The Russian intelligence agency Federal Security Service (FSB)... Read more »

MuddyWater has been spotted targeting two Israeli entities

November 3, 2023 add comment
Iran-linked cyberespionage group MuddyWater is targeting Israeli entities in a new spear-phishing campaign. Iran-linked APT group MuddyWater (aka SeedWorm, TEMP.Zagros, and Static Kitten) is targeting Israeli entities in a new spear-phishing campaign, Deep Instinct’s Threat... Read more »

Clop group obtained access to the email addresses of about 632,000 US federal employees

November 2, 2023 add comment
Clop ransomware gang gained access to the email addresses of more than 632K US federal employees at the departments of Defense and Justice. Russian-speaking Clop ransomware group gained access... Read more »

Okta discloses a new data breach after a third-party vendor was hacked

November 2, 2023 add comment
Okta warns approximately 5,000 employees that their personal information was compromised due to a third-party vendor data breach. Cloud identity and access management solutions provider Okta warns nearly 5,000... Read more »

Suspected exploitation of Apache ActiveMQ flaw CVE-2023-46604 to install HelloKitty ransomware

November 2, 2023 add comment
Rapid7 researchers warn of the suspected exploitation of a recently disclosed critical security flaw (CVE-2023-46604) in the Apache ActiveMQ. Cybersecurity researchers at Rapid7 are warning of the suspected exploitation... Read more »

Boeing confirmed its services division suffered a cyberattack

November 2, 2023 add comment
Boeing confirmed it is facing a cyber incident that hit its global services division, the company pointed out that flight safety isn’t affected. The Boeing Company, commonly known as Boeing,... Read more »
Subscribe to our Newsletter