BlackLotus bootkit bypasses UEFI Secure Boot on patched Windows 11
The developers of the BlackLotus UEFI bootkit have improved the malware with Secure Boot bypass capabilities that allow it to...
cybersecurity
Australian woman arrested for email bombing a government office
The Australian Federal Police arrested a woman in Werrington, Sydney, for allegedly email bombing the office of a Federal Member...
Chick-fil-A confirms accounts hacked in months-long “automated” attack
American fast food chain Chick-fil-A has confirmed that over 71,000 customers' accounts were breached in a months-long credential stuffing attack, allowing...
Chinese hackers use new custom backdoor to evade detection
The Chinese cyber espionage hacking group Mustang Panda was seen deploying a new custom backdoor named 'MQsTTang' in attacks starting...
Hatch Bank discloses data breach after GoAnywhere MFT hack
Fintech banking platform Hatch Bank has reported a data breach after hackers stole the personal information of almost 140,000 customers...
FBI and CISA warn of increasing Royal ransomware attack risks
CISA and the FBI have issued a joint advisory highlighting the increasing threat behind ongoing Royal ransomware attacks targeting many...
Brave Search launches AI-powered summarizer in search results
Brave Search has incorporated a new AI-powered tool named Summarizer, which gives a summarized answer to an inputted question before...
The Week in Ransomware – March 3rd 2023 – Wide impact attacks
This week was highlighted by a massive BlackBasta ransomware attack targeting DISH Network and taking down numerous subsidiaries, including SlingTV...
BidenCash market leaks over 2 million stolen credit cards for free
A carding marketplace known as BidenCash has leaked online a free database of 2,165,700 debit and credit cards in celebration...
Play ransomware claims disruptive attack on City of Oakland
The Play ransomware gang has taken responsibility for a cyberattack on the City of Oakland that has disrupted IT systems...
NSA shares guidance on how to secure your home network
The U.S. National Security Agency (NSA) has issued guidance to help remote workers secure their home networks and defend their...
VMware warns admins of critical Carbon Black App Control flaw
VMware has released a critical security upgrade to address a critical injection vulnerability that impacts several versions of Carbon Black...
New S1deload Stealer malware hijacks Youtube, Facebook accounts
An ongoing malware campaign targets YouTube and Facebook users, infecting their computers with a new information stealer that will hijack...
Google paid $12 million in bug bounties to security researchers
Google last year paid its highest bug bounty ever through the Vulnerability Reward Program for a critical exploit chain report...
Hackers now exploit critical Fortinet bug to backdoor servers
Threat actors are targeting Internet-exposed Fortinet appliances with exploits targeting CVE-2022-39952, an unauthenticated file path manipulation vulnerability in the FortiNAC...
Hackers use fake ChatGPT apps to push Windows, Android malware
Threat actors are exploiting the popularity of OpenAI's ChatGPT chatbot to distribute malware for Windows and Android, or direct unsuspecting...
Russian malware dev behind NLBrute hacking tool extradited to US
A Russian malware developer accused of creating and selling the NLBrute password-cracking tool was extradited to the United States after...
Clasiopa hackers use new Atharvan malware in targeted attacks
Security researchers have observed a hacking group targeting companies in the materials research sector with a unique toolset that includes a...
Pirated Final Cut Pro infects your Mac with cryptomining malware
Security researchers discovered a cryptomining operation targeting macOS with a malicious version of Final Cut Pro that remains largely undetected by...
Fruit giant Dole suffers ransomware attack impacting operations
Dole Food Company, one of the world’s largest producers and distributors of fresh fruit and vegetables, has announced that it is...
Valve “honeypot” used to ban 40,000 Dota 2 players using cheat
Game developer Valve has announced that it permanently banned more than 40,000 accounts for using cheating software to gain an unfair...
Microsoft urges Exchange admins to remove some antivirus exclusions
Microsoft says admins should remove some previously recommended antivirus exclusions for Exchange servers to boost the servers' security. As the company explained,...
Forsage DeFi platform founders indicted for $340 million scam
A Federal grand jury in the District of Oregon has indicted four Russian nationals founders of Forsage decentralized finance (DeFi) cryptocurrency...
Ukraine says Russian hackers backdoored govt websites in 2021
The Computer Emergency Response Team of Ukraine (CERT-UA) says Russian state hackers have breached multiple government websites this week using...
