Internet Security

Indian foreign ministry’s Global Pravasi Rishta portal leaks expat passport details

December 12, 2022 add comment
The Cybernews research team reported that India’s government platform Global Pravasi Rishta Portal was leaking sensitive user data. Original post @ https://cybernews.com/security/indias-foreign-ministry-leaks-passport-details/ The Global Pravasi Rishta Portal, India’s government... Read more »

Cryptomining campaign targets Linux systems with Go-based CHAOS Malware

December 12, 2022 add comment
Researchers spotted a cryptocurrency mining campaign targeting Linux users with Go-based CHAOS malware (Trojan.Linux.CHAOSRAT). In November 2022, Trend Micro researchers discovered a cryptocurrency mining campaign targeting Linux users with... Read more »

Evilnum group targets legal entities with a new Janicab variant

December 12, 2022 add comment
A hack-for-hire group dubbed Evilnum is targeting travel and financial entities with the new Janicab malware variant. Kaspersky researchers reported that a hack-for-hire group dubbed Evilnum is targeting travel and financial entities.... Read more »

TrueBot infections were observed in Clop ransomware attacks

December 12, 2022 add comment
Researchers reported an increase in TrueBot infections, attackers have shifted from using malicious emails as their primary delivery method to other techniques. Cisco Talos researchers reported an increase in TrueBot infections, threat actors... Read more »

Pwn2Own Toronto 2022 Day 4: $989K awarded for 63 unique zero-days

December 11, 2022 add comment
The Pwn2Own Toronto 2022 is ended, and the participants earned a total of $989,750 for 63 unique zero-day exploits. The Zero Day Initiative’s Pwn2Own Toronto 2022 hacking competition has... Read more »

Security Affairs newsletter Round 397

December 11, 2022 add comment
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. If you want to... Read more »

MuddyWater APT group is back with updated TTPs

December 11, 2022 add comment
The Iran-linked MuddyWater APT is targeting countries in the Middle East as well as Central and West Asia in a new campaign. Deep Instinct’s Threat Research team uncovered a new campaign... Read more »

At least 4,460 vulnerable Pulse Connect Secure hosts are exposed to the Internet

December 10, 2022 add comment
Censys researchers warn of more than 4,000 vulnerable Pulse Connect Secure hosts exposed to the Internet. Pulse Connect Secure is a widely-deployed SSL VPN solution for remote and mobile users,... Read more »

US HHS warns healthcare orgs of Royal Ransomware attacks

December 10, 2022 add comment
The US Department of Health and Human Services (HHS) warns healthcare organizations of Royal ransomware attacks. The human-operated Royal ransomware first appeared on the threat landscape in September 2022,... Read more »

CommonSpirit confirms data breach impacts 623K patients

December 9, 2022 add comment
CommonSpirit Health confirmed that the October security breach resulted in the exposure of the personal data of 623,774 patients. In early October, Common Spirit, one of the largest hospital... Read more »
Subscribe to our Newsletter