Welcome to Cyberlobi News Hub
Top News Sources
Hacker News
- LockBit Developer Rostislav Panev Charged for Billions in Global Ransomware Damagesby [email protected] (The Hacker News) on December 21, 2024 at 9:22 am
A dual Russian and Israeli national has been charged in the United States for allegedly being the developer of the now-defunct LockBit ransomware-as-a-service (RaaS) operation since its inception in or around 2019 through at least February 2024. Rostislav Panev, 51, was arrested in Israel earlier this August and is currently awaiting extradition, the U.S. Department of Justice (DoJ) said in a
- Lazarus Group Spotted Targeting Nuclear Engineers with CookiePlus Malwareby [email protected] (The Hacker News) on December 20, 2024 at 10:44 am
The Lazarus Group, an infamous threat actor linked to the Democratic People’s Republic of Korea (DPRK), has been observed leveraging a “complex infection chain” targeting at least two employees belonging to an unnamed nuclear-related organization within the span of one month in January 2024. The attacks, which culminated in the deployment of a new modular backdoor referred to as CookiePlus, are
- Rspack npm Packages Compromised with Crypto Mining Malware in Supply Chain Attackby [email protected] (The Hacker News) on December 20, 2024 at 8:39 am
The developers of Rspack have revealed that two of their npm packages, @rspack/core and @rspack/cli, were compromised in a software supply chain attack that allowed a malicious actor to publish malicious versions to the official package registry with cryptocurrency mining malware. Following the discovery, versions 1.1.7 of both libraries have been unpublished from the npm registry. The latest
- Sophos Issues Hotfixes for Critical Firewall Flaws: Update to Prevent Exploitationby [email protected] (The Hacker News) on December 20, 2024 at 8:13 am
Sophos has released hotfixes to address three security flaws in Sophos Firewall products that could be exploited to achieve remote code execution and allow privileged system access under certain conditions. Of the three, two are rated Critical in severity. There is currently no evidence that the shortcomings have been exploited in the wild. The list of vulnerabilities is as follows –
- Hackers Exploiting Critical Fortinet EMS Vulnerability to Deploy Remote Access Toolsby [email protected] (The Hacker News) on December 20, 2024 at 6:25 am
A now-patched critical security flaw impacting Fortinet FortiClient EMS is being exploited by malicious actors as part of a cyber campaign that installed remote desktop software such as AnyDesk and ScreenConnect. The vulnerability in question is CVE-2023-48788 (CVSS score: 9.3), an SQL injection bug that allows attackers to execute unauthorized code or commands by sending specially crafted
Krebs on Security
- Web Hacking Service ‘Araneida’ Tied to Turkish IT Firmby BrianKrebs on December 19, 2024 at 5:07 pm
Cybercriminals are selling hundreds of thousands of credential sets stolen with the help of a cracked version of Acunetix, a powerful commercial web app vulnerability scanner, new research finds. The cracked software is being resold as a cloud-based attack tool by at least two different services, one of which KrebsOnSecurity traced to an information technology firm based in Turkey.
- How to Lose a Fortune with Just One Bad Clickby BrianKrebs on December 18, 2024 at 1:17 pm
Adam Griffin is still in disbelief over how quickly he was robbed of nearly $500,000 in cryptocurrencies. A scammer called using a real Google phone number to warn his Gmail account was being hacked, sent email security alerts directly from google.com, and ultimately seized control over the account by convincing him to click “yes” to a Google prompt on his mobile device.
- How Cryptocurrency Turns to Cash in Russian Banksby BrianKrebs on December 11, 2024 at 9:38 pm
A financial firm registered in Canada has emerged as the payment processor for dozens of Russian cryptocurrency exchanges and websites hawking cybercrime services aimed at Russian-speaking customers, new research finds. Meanwhile, an investigation into the Vancouver street address used by this company shows it is home to dozens of foreign currency dealers, money transfer businesses, and cryptocurrency exchanges — none of which are physically located there.
- Patch Tuesday, December 2024 Editionby BrianKrebs on December 11, 2024 at 1:53 am
Microsoft today released updates to plug at least 70 security holes in Windows and Windows software, including one vulnerability that is already being exploited in active attacks. The zero-day seeing exploitation involves CVE-2024-49138, a security weakness in the Windows Common… Read More »
- U.S. Offered $10M for Hacker Just Arrested by Russiaby BrianKrebs on December 4, 2024 at 2:08 pm
In January 2022, KrebsOnSecurity identified a Russian man named Mikhail Matveev as “Wazawaka,” a cybercriminal who was deeply involved in the formation and operation of multiple ransomware groups. The U.S. government indicted Matveev as a top ransomware purveyor a year later, offering $10 million for information leading to his arrest. Last week, the Russian government reportedly arrested Matveev and charged him with creating malware used to extort companies.
Security Week
Help Net Security
- Week in review: MUT-1244 targets both security workers and threat actors, Kali Linux 2024.4 releasedby Help Net Security on December 22, 2024 at 9:00 am
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: MUT-1244 targeting security researchers, red teamers, and threat actors A threat actor tracked as MUT-1244 by DataDog researchers has been targeting academics, pentesters, red teamers, security researchers, as well as other threat actors, in order to steal AWS access keys, WordPress account credentials and other sensitive data. Kali Linux 2024.4 released! 14 new shiny tools added Kali Linux 2024.4 includes … More → The post Week in review: MUT-1244 targets both security workers and threat actors, Kali Linux 2024.4 released appeared first on Help Net Security.
- CISA: Use Signal or other secure communications appby Zeljka Zorz on December 20, 2024 at 12:19 pm
In the wake of the widespread compromise of US telecom giants’ networks by Chinese hackers and the FBI advising Americans to use end-to-end encrypted communications, CISA is advising “highly targeted individuals” – senior government officials and politicians – to lock down and protect their smartphones as much as possible and to use “Signal or a similar app” for secure communications. Security advice for iPhone, Android users “Highly targeted individuals should assume that all communications between … More → The post CISA: Use Signal or other secure communications app appeared first on Help Net Security.
- Another NetWalker affiliate sentenced to 20 years in prisonby Zeljka Zorz on December 20, 2024 at 10:50 am
A 30-year old Romanian man was sentenced to 20 years in prison for leveraging the Netwalker ransomware to extort money from victims, the US Department of Justice announced on Thursday. Daniel Christian Hulea, of Jucu de Mijloc, Cluj, Romania, was arrested by the Romanian police in July 2023 and extradited to the US, where he was taken to charged and ultimately pleaded guilty to computer fraud conspiracy and wire fraud conspiracy earlier this year. “According … More → The post Another NetWalker affiliate sentenced to 20 years in prison appeared first on Help Net Security.
- Why cybersecurity is critical to energy modernizationby Mirko Zorz on December 20, 2024 at 5:30 am
In this Help Net Security interview, Anjos Nijk, Managing Director of the European Network for Cyber security (ENCS), discusses cybersecurity in the energy sector as it modernizes with renewable sources and smart grid technologies. Nijk also addresses the need for international collaboration, the impact of IoT on security, and the emerging technologies that can enhance the resilience and reliability of critical energy infrastructure. As the energy sector undergoes significant modernization, particularly with the integration of … More → The post Why cybersecurity is critical to energy modernization appeared first on Help Net Security.
- AI is becoming the weapon of choice for cybercriminalsby Help Net Security on December 20, 2024 at 5:00 am
This article highlights key findings from 2024 reports on AI and GenAI technologies, focusing on their potential and major challenges. Overreliance on GenAI to develop software compromises security 96% of security and software development professionals report that their companies use GenAI-based solutions for building or delivering applications. Among these respondents, 79% report that all or most of their development teams regularly use GenAI.More developers than security professionals report concern over loss of critical thinking due … More → The post AI is becoming the weapon of choice for cybercriminals appeared first on Help Net Security.