Internet Security

German agency BSI sinkholed a botnet of 30,000 devices infected with BadBox

December 13, 2024 add comment
The German agency BSI has sinkholed a botnet composed of 30,000 devices shipped with BadBox malware pre-installed. The Federal Office for Information Security (BSI) announced it had blocked communication... Read more »

U.S. authorities seized cybercrime marketplace Rydox

December 13, 2024 add comment
The U.S. Department of Justice (DoJ) announced the seizure of the cybercrime marketplace Rydox (“rydox.ru” and “rydox[.]cc”). The U.S. Department of Justice (DoJ) seized Rydox, a cybercrime marketplace for... Read more »

Experts discovered the first mobile malware families linked to Russia’s Gamaredon

December 13, 2024 add comment
The Russia-linked APT Gamaredon used two new Android spyware tools called BoneSpy and PlainGnome against former Soviet states. Lookout researchers linked the BoneSpy and PlainGnome Android surveillance families to the Russian APT... Read more »

US Bitcoin ATM operator Byte Federal suffered a data breach

December 12, 2024 add comment
US Bitcoin ATM operator Byte Federal suffered a data breach impacting 58,000 customers, attackers gained unauthorized access to a server via GitLab flaw. US Bitcoin ATM operator Byte Federal... Read more »

Experts discovered surveillance tool EagleMsgSpy used by Chinese law enforcement

December 12, 2024 add comment
Chinese law enforcement uses the mobile surveillance tool EagleMsgSpy to gather data from Android devices, as detailed by Lookout. Researchers at the Lookout Threat Lab discovered a surveillance tool, dubbed EagleMsgSpy,... Read more »

Operation PowerOFF took down 27 DDoS platforms across 15 countries

December 12, 2024 add comment
Operation PowerOFF took down 27 DDoS stresser services globally, disrupting illegal platforms used for launching cyberattacks. A global law enforcement operation codenamed Operation PowerOFF disrupted 27 of the most... Read more »

Russia’s Secret Blizzard APT targets Ukraine with Kazuar backdoor

December 12, 2024 add comment
Russia-linked APT group Secret Blizzard is using Amadey Malware-as-a-Service to infect systems in Ukraine with the Kazuar backdoor. The Russia-linked APT group Secret Blizzard (aka Turla, Snake, Uroburos, Waterbug, Venomous Bear and KRYPTON) was spotted using the Amadey... Read more »

Ivanti fixed a maximum severity vulnerability in its CSA solution

December 11, 2024 add comment
Ivanti addressed a critical authentication bypass vulnerability impacting its Cloud Services Appliance (CSA) solution. Ivanti addressed a critical authentication bypass vulnerability, tracked as CVE-2024-11639 (CVSS score of 10), in... Read more »

Operation Digital Eye: China-linked relies on Visual Studio Code Remote Tunnels to spy on Europen entities

December 11, 2024 add comment
An alleged China-linked APT group targeted large business-to-business IT service providers in Southern Europe as part of Operation Digital Eye campaign. Between late June and mid-July 2024, a China-linked... Read more »

Chinese national charged for hacking thousands of Sophos firewalls

December 11, 2024 add comment
The U.S. has charged a Chinese national for hacking thousands of Sophos firewall devices worldwide in 2020. The U.S. has charged the Chinese national Guan Tianfeng (aka gbigmao and... Read more »
Subscribe to our Newsletter