Malware & Threats Archives - Page 14 of 107

Progress warns customers of a new critical flaw in MOVEit Transfer software

Issued by: Security Affairs

Progress is informing customers of a new critical SQL injection vulnerability, tracked as CVE-2023-36934, in its MOVEit Transfer software. MOVEit Transfer software recently made the headlines due to the massive Clop ransomware hacking campaign exploiting a vulnerability in the product. The flaw CVE-2023-36934 impacts software versions released before 2020.1.11 (12.1.11), 2021.0.9 (13.0.9), 2021.1.7 (13.1.7), 2022.0.7…

Malware & Threats

Ransomware Halts Operations at Japan’s Port of Nagoya

Issued by: Dark Reading

Cargo containers filled with imports and exports from all over the world have been stuck at the Port of Nagoya following a ransomware attack on its networks early Tuesday morning. The port is the largest in Japan and the central shipping hub for international carmaker Toyota. According to its operator, Nagoya Harbor Transportation, it received…

Malware & Threats

Dutch Critical OT Systems Vulnerable to Hacks

Issued by: DataBreach Today

Critical services in the Netherlands could be a potential target of ransomware and hacktivist attackers with ties to Russia as a means to sow large-scale disruptions in the country, according to a Dutch National Cyber Security Centre warning this week. Although the Russian invasion of Ukraine did not immediately result in a high-level of attacks…

Malware & Threats

CISA Wants Exposed Government Devices Remediated In 14 Days

Issued by: Dark Reading

Researchers have discovered hundreds of devices running on government networks that expose remote management interfaces on the open Web. Thanks to the Cybersecurity and Infrastructure Security Agency (CISA), that will change quickly — possibly too quickly, according to some experts. On June 13, CISA released Binding Operational Directive (BOD) 23-02, with the goal of eliminating…

Malware & Threats

Attackers add hacked servers to commercial proxy networks for profit

Issued by: CSO Online

Hackers are using commercial proxy networks that pay users for their bandwidth to monetize their illegally obtained access to servers. Dubbed proxyjacking, this type of abuse has been increasingly observed alongside other forms of abusing hacked servers, such as cryptojacking. “Although the concept of proxyjacking is not new, the ability to easily monetize it as…

Malware & Threats

Chip Giant TSMC Blames $70M LockBit Breach on IT Hardware Supplier

Issued by: Dark Reading

Taiwan Semiconductor Manufacturing Company (TSMC) — one of Apple’s biggest semiconductor suppliers — on Friday blamed a third-party IT hardware supplier for a data breach that has exposed the company to a $70 million ransom demand from the LockBit ransomware group. In an emailed statement to Dark Reading, TSMC confirmed multiple reports about the security…

Malware & Threats

Iran-Linked APT35 Targets Israeli Media With Upgraded Spear-Phishing Tools

Issued by: Dark Reading

The Iran-linked threat group known as APT35 (aka Charming Kitten, Imperial Kitten, or Tortoiseshell) has updated its cyberattack arsenal with improved abilities to hide its actions, as well as an upgraded custom backdoor that it’s distributing via a spear-phishing campaign. The advanced persistent threat (APT) has been alleged to be operating out of Iran and…

Malware & Threats

Iran-linked Charming Kitten APT enhanced its POWERSTAR Backdoor

Issued by: Security Affairs

Iran-linked Charming Kitten group, (aka APT35, Phosphorus, Newscaster, and Ajax Security Team) made the headlines in 2014 when experts at iSight issued a report describing the most elaborate net-based spying campaign organized by Iranian hackers using social media. Microsoft has been tracking the threat actors at least since 2013, but experts believe that the cyberespionage…

Malware & Threats

Interested in $10,000,000? Ready to turn in the Clop ransomware crew?

Issued by: Naked Security

The latest high-profile cybercrime exploits attributed to the Clop ransomware crew aren’t your traditional sort of ransomware attacks (if “traditional” is the right word for an extortion mechanism that goes back only to 1989). Conventional ransomware attacks are where your files get scrambled, your business gets totally derailed, and a message appears telling you that…

Malware & Threats

Experts found components of a complex toolkit employed in macOS attacks

Issued by: Security Affairs

Bitdefender researchers discovered a set of malicious files with backdoor capabilities that are suspected to be part of a sophisticated toolkit designed to target Apple macOS systems. The investigation is still ongoing, the experts pointed out that the samples are still largely undetected. The researchers analyzed a total of four samples that were uploaded to…