Google Agrees to $93 Million Settlement in California’s Location-Privacy Lawsuit
18Sep By RBNo Comments
News

Google Agrees to $93 Million Settlement in California’s Location-Privacy Lawsuit

Google has agreed to pay $93 million to resolve claims that its location-privacy practices deceived customers and broke the law, according to a lawsuit brought by the U.S. state of California. "Our investigation revealed that Google was telling its users one thing - that it would no longer track their location once they opted out - but doing the opposite and continuing to track its users' movements for its own commercial gain," said Rob Bonta, the attorney general of California. The case was brought about as a result of revelations that the business tracked users' locations even after making clear that such information wouldn't be saved if the "Location History" setting was disabled read more Google Agrees to $93 Million Settlement in California's Location-Privacy Lawsuit.
Read More
North Korea’s Lazarus Group Suspected in $31 Million CoinEx Heist
18Sep By RBNo Comments
News

North Korea’s Lazarus Group Suspected in $31 Million CoinEx Heist

Since June 2023, the Lazarus Group, which has ties to North Korea, has stolen approximately $240 million in cryptocurrencies, a huge increase in its hacking activity. The famed hacker squad is allegedly suspected of stealing $31 million in digital assets from the CoinEx exchange on September 12, 2023, according to numerous reports from Certik, Elliptic, and ZachXBT. The crypto robbery intended for CoinEx is the latest in a succession of recent attacks that also cost $100 million for Atomic Wallet, $37.3 million for CoinsPaid, $60 million for Alphapo, and 41 million for Stake.com. Some of the CoinEx money that was stolen was sent to an address that the Lazarus gang had previously used to launder money from Stake.com read more North Korea's Lazarus Group Suspected in $31 Million Co...
Read More
Fake Cisco Webex Google Ads abuse tracking templates to push malware
15Sep By RBNo Comments
News

Fake Cisco Webex Google Ads abuse tracking templates to push malware

Threat actors can construct convincing Webex software search ads that link users to websites that have the BatLoader malware by exploiting a flaw in Google Ads tracking templates. Worldwide enterprises and businesses utilize the video conferencing and contact center software package Webex, which is a component of Cisco's collaboration product line. According to Malwarebytes, the threat actors in the malvertising operation appear to be from Mexico, and it has been active in Google Search for a week. According to Malwarebytes, the top Google Search result for the phrase "webex" displays a malicious Google ad that pretends to be the genuine Webex download portal read more Fake Cisco Webex Google Ads abuse tracking templates to push malware. Stay informed with the best cybersecurity ...
Read More
Iranian hackers breach defense orgs in password spray attacks
15Sep By RBNo Comments
News

Iranian hackers breach defense orgs in password spray attacks

Since February 2023, Microsoft claims that a threat group with Iranian support has launched password spray assaults against hundreds of companies in the United States and around the world. Additionally, a small number of victims in the pharmaceutical, satellite, and defense industries had their private information stolen by state hackers. The cyberspy organization known as APT33 (also known as Peach Sandstorm, HOLMIUM, or Refined Kitten) has been active since at least 2013, attacking targets in the US, Saudi Arabia, and South Korea. These targets include government, defense, research, finance, and engineering organizations. The Microsoft Threat Intelligence team reported that Peach Sandstorm carried out a wave of password spray assaults between February and July 2023 in an effort...
Read More
Russian Journalist’s iPhone Compromised by NSO Group’s Zero-Click Spyware
15Sep By RBNo Comments
News

Russian Journalist’s iPhone Compromised by NSO Group’s Zero-Click Spyware

According to a recent joint study by Access Now and the Citizen Lab, Galina Timchenko's iPhone was infected with NSO Group's Pegasus spyware. Timchenko is a well-known Russian journalist and government critic. According to reports, the intrusion took place on or about February 10, 2023. Timchenko is the publisher, executive editor, and proprietor of the independent Latvian news outlet Meduza. Right now, it's unclear who installed the spyware on the gadget. According to an unnamed individual familiar with the business affairs of NSO Group, the Russian government is not one of the company's clients read more Russian Journalist's iPhone Compromised by NSO Group's Zero-Click Spyware. Stay informed with the best cybersecurity news and raise your cybersecurity awareness with our compre...
Read More
Microsoft Uncovers Flaws in ncurses Library Affecting Linux and macOS Systems
15Sep By RBNo Comments
News

Microsoft Uncovers Flaws in ncurses Library Affecting Linux and macOS Systems

Ncurses, short for "new curses," is a programming library that contains a number of memory corruption problems that could be used by threat actors to execute malicious code on Linux and macOS systems. Researchers from Microsoft Threat Intelligence Jonathan Bar Or, Emanuele Cozzi, and Michael Pearse wrote in a technical report released today: "Using environment variable poisoning, attackers could chain these vulnerabilities to elevate privileges and run code in the context of the targeted program or perform other malicious actions." As of April 2023, the vulnerabilities, collectively tracked as CVE-2023-29491 (CVSS score of 7.8), have been fixed. Microsoft claimed that it also collaborated with Apple to fix the macOS-specific problems caused by these weaknesses read more Microsoft Un...
Read More
Hackers steal $53 million worth of cryptocurrency from CoinEx
14Sep By RBNo Comments
News

Hackers steal $53 million worth of cryptocurrency from CoinEx

A substantial quantity of digital assets that were used to fund the platform's operations were stolen from vast amounts of hot wallets at the major cryptocurrency exchange CoinEX, according to an announcement. The issue happened on September 12 and preliminary investigation findings indicate that cryptocurrencies from Tron, Polygon, and Ethereum were used in the illicit transactions. Since the inquiry has not yet determined the full extent of the losses, CoinEx has not disclosed any information regarding the financial effect sustained. According to a report by the blockchain security company PeckShield, CoinEx lost over $19 million in ETH, $11 million in TRON, $6.4 million in Smart Chain Coin ($BSC), $6 million in Bitcoin (BTC), and roughly $295,000 in (MATIC) as a result of the ...
Read More
New Windows 11 feature blocks NTLM-based attacks over SMB
14Sep By RBNo Comments
News

New Windows 11 feature blocks NTLM-based attacks over SMB

To stop pass-the-hash, NTLM relay, or password-cracking threats, Microsoft implemented a new security feature to Windows 11 that allows administrators to restrict NTLM over SMB. This will alter the conventional method in which Windows SPNEGO would power Kerberos and NTLM (i.e., LM, NTLM, and NTLMv2) authentication discussions with destination servers. Windows will attempt to negotiate authentication with the remote computer by executing an NTLM challenge response when connecting to a remote SMB share. However, the logged-in user's hashed password will be included in the NTLM challenge answer and can be obtained by the server hosting the SMB share read more New Windows 11 feature blocks NTLM-based attacks over SMB. Stay informed with the best cybersecurity news and raise your cybe...
Read More
Researchers Detail 8 Vulnerabilities in Azure HDInsight Analytics Service
14Sep By RBNo Comments
News

Researchers Detail 8 Vulnerabilities in Azure HDInsight Analytics Service

The Microsoft Azure HDInsight open-source analytics service has a number of cross-site scripting (XSS) vulnerabilities that have been addressed but might still be used by threat actors for harmful purposes. According to a report given to The Hacker News by Orca security researcher Lidor Ben Shitrit, "the identified vulnerabilities consisted of six stored XSS and two reflected XSS vulnerabilities, each of which could be exploited to perform unauthorized actions, ranging from data access to session hijacking and delivering malicious payloads."Microsoft fixed the problems as part of their August 2023 Patch Tuesday upgrades. The information was made public three months after reports of similar flaws in the Azure Bastion and Azure Container Registry that might have been used to get unaut...
Read More
Alert: New Kubernetes Vulnerabilities Enable Remote Attacks on Windows Endpoints
14Sep By RBNo Comments
News

Alert: New Kubernetes Vulnerabilities Enable Remote Attacks on Windows Endpoints

Kubernetes was found to have three interconnected, high-severity security issues that may be used to remotely execute code with root rights on Windows endpoints in a cluster. All Kubernetes setups with Windows nodes are affected by the three vulnerabilities, CVE-2023-3676, CVE-2023-3893, and CVE-2023-3955, which have CVSS scores of 8.8. After Akamai made a responsible disclosure on July 13, 2023, fixes for the vulnerabilities were made available on August 23. All Windows endpoints in a Kubernetes cluster are vulnerable to remote code execution with SYSTEM rights, according to a technical report provided with The Hacker News by Akamai security researcher Tomer Peled. "The attacker will need to apply a malicious YAML file to the cluster in order to exploit this issue read more New Kub...
Read More
Follow Us on Twitter
Follow Us on LinkedIn
Follow Us on YouTube
Follow Us on Facebook