Tag: hacking news

Hackers Use NuGet Packages to Target .NET Developers
22Mar By RBNo Comments
News

Hackers Use NuGet Packages to Target .NET Developers

Threat actors have been seen creating malicious packages aimed at .NET developers using the open-source package manager NuGet. The discovery would be the first occurrence in the wild of packages with malicious code detected in NuGet, according to software package management provider JFrog. Shachar Menashe, senior director at JFrog Security Research, said: "For the first time, the NuGet repository formerly assumed to be untouched by malicious code really contains multiple hazardous software read more Hackers Use NuGet Packages to Target .NET Developers. Stay up-to-date with the latest cybersecurity news and increase your cybersecurity awareness through ReconBee.com‘s in-depth coverage of the newest threats, breaches, and solutions.
Read More
General Bytes Bitcoin ATMs Hacked to Steal Funds
22Mar By RBNo Comments
News

General Bytes Bitcoin ATMs Hacked to Steal Funds

Following the discovery that hackers stole money over the weekend by taking advantage of a zero-day vulnerability in its software, a major supplier of Bitcoin ATMs is advising customers to update their systems right away. The flaw was discovered in the master service interface used by Bitcoin ATMs to upload films to the server, according to a General Bytes notice. The General Bytes Cloud service and other GB ATM operators running their servers on Digital Ocean (our recommended cloud hosting provide...
Read More
Tick APT Group Hacked East Asian DLP Software Firm
16Mar By RBNo Comments
News

Tick APT Group Hacked East Asian DLP Software Firm

The advanced persistent threat (APT) group Tick has been blamed for a new malware campaign that targets an East Asian company that creates data-loss prevention (DLP) software for governmental and military organizations. The threat actor broke into the DLP company's internal update servers, according to an advisory released by ESET on Tuesday, to spread malware across its network. The company's use of genuine tool installers that had been tampered with led to the execution of malware on the PCs of two of its clients read more Tick APT Group Hacked East Asian DLP Software Firm. Stay informed with the best cybersecurity news and raise your cybersecurity awareness with our comprehensive coverage of the latest threats, breaches, and solutions.
Read More
Security giant Rubrik says hackers used Fortra zero-day to steal internal data
15Mar By RBNo Comments
News

Security giant Rubrik says hackers used Fortra zero-day to steal internal data

The Fortra GoAnywhere zero-day vulnerability, which has been connected to hacks against a hospital network and a bank, has claimed its newest victim: Silicon Valley-based data security business Rubrik. Michael Mestrovich, chief information security officer at Rubrik, claimed that the vulnerability in Fortra's GoAnywhere file-transfer programme, which the company employs for internal data exchange, allowed attackers access to the non-production IT testing environments used by the company. Known as CVE-2023-0669, this vulnerability originally came to light on February 2 read more Security giant Rubrik says hackers used Fortra zero-day to steal internal data. Stay informed with the best cybersecurity news and raise your cybersecurity awareness with our comprehensive coverage of the ...
Read More
Lazarus Group Targets South Korean Finance Firm Via Zero-Day Flaw
9Mar By RBNo Comments
Reputation, Resources, Risk, Security

Lazarus Group Targets South Korean Finance Firm Via Zero-Day Flaw

Lazarus Group, a North Korean threat actor, was observed twice in the past year using holes in undisclosed software to access a South Korean finance company. The information was released by security experts at Asec, who on Tuesday published an advisory about the attacks. The first attack was noted by the corporation in May 2022, while the second one happened in October of that same year. According to reports, the same zero-day vulnerability was used by both operations. The impacted company "was employing a vulnerable version of a certificate application that was commonly used by public institutions and universities during the infiltration read more Lazarus Group Targets South Korean Finance Firm Via Zero-Day Flaw. Stay informed with the best cybersecurity news and raise your cybe...
Read More
Hackers Use S1deload Stealer to Target Facebook YouTube Users
24Feb By RBNo Comments
Resources, Risk, Security

Hackers Use S1deload Stealer to Target Facebook YouTube Users

A new global operation utilizing an info stealer and targeting accounts on Facebook and YouTube has been uncovered by security researchers. The new dangerous malware, dubbed "S1ideload Stealer" by Bitdefender, uses DLL sideloading techniques to launch its malicious components. In a warning sent on Wednesday, Bitdefender security researcher Dávid CS stated that the attack "uses a legal, digitally-signed application that unintentionally loads dangerous malware if clicked." Sideloading enables S1deload Stealer to bypass system defences and successfully infect systems. To further reduce user suspicion of infection, the executable also depends on a legitimate picture folder read more Hackers Use S1deload Stealer to Target Facebook YouTube Users. With ReconBee.com Stay ahead of the ...
Read More
US hospital attacked by BlackCat denies hackers
23Feb By RBNo Comments
Resources, Risk, Security

US hospital attacked by BlackCat denies hackers

A US-based healthcare organization that manages more than a dozen hospitals have refused to pay ransom to hackers with ties to Russia. Healthcare provider Lehigh Valley Health Network (LVHN), situated in Pennsylvania, said that the BlackCat gang attacked the institution with a ransomware attack. The malware ALPHV/BlackCat was first discovered in 2021. The group, like many others in the criminal underground, runs a ransomware-as-a-service (RaaS) company that offers software subscriptions to other criminals. On February 6, LVHN discovered unauthorized activity on its IT systems read more US hospitals attacked by BlackCat denies hackers. With ReconBee.com Stay ahead of the latest threats with in-depth coverage of cyber attacks and cybersecurity trends, and the latest cybersecurit...
Read More
Frebniis Malware Exploits Microsoft IIS Feature
21Feb By RBNo Comments
Resources, Risk, Security

Frebniis Malware Exploits Microsoft IIS Feature

In order to install a backdoor in targeted systems, a new piece of malware has been identified by cybersecurity researchers that make use of an official Microsoft Internet Information Services (IIS) function. A previously unidentified threat actor allegedly employed the virus, codenamed "Frebniis," against targets in Taiwan, according to a Symantec advisory released last Thursday. The technical write-up explains that Frebniis' method entails injecting malicious code into the memory of read more Frebniis Malware Exploits Microsoft IIS Feature. With ReconBee.com Stay ahead of the latest threats with in-depth coverage of cyber attacks and cybersecurity trends, and the latest cybersecurity news.
Read More
GoDaddy Announces Source Code Stolen and Malware Installed in Breach
21Feb By RBNo Comments
Resources, Risk, Security

GoDaddy Announces Source Code Stolen and Malware Installed in Breach

GoDaddy, a web hosting firm, has disclosed that malware was planted on its servers by an unauthorized person, resulting in the sporadic redirection of client websites. The business stated in a blog post on Thursday that it began receiving a small number of customer complaints about its websites being intermittently rerouted in early December 2022. "After the intrusion was confirmed, we remedied the situation and put security measures in place to try to stop further infections." GoDaddy continued by saying that after consulting with law authorities read more GoDaddy Announces Source Code Stolen and Malware Installed in Breach. With ReconBee.com Stay ahead of the latest threats with in-depth coverage of cyber attacks and cybersecurity trends, and the latest cybersecurity news. ...
Read More
Armenia and Azerbaijan Hackers Use OxtaRAT to Monitor Conflict
20Feb By RBNo Comments
Risk, Security

Armenia and Azerbaijan Hackers Use OxtaRAT to Monitor Conflict

Security researchers at Check Point Research have discovered a malware campaign launched in November 2022 against targets in Armenia (CPR). The campaign utilised a backdoor that the security company identified as OxtaRAT, according to a warning issued on Thursday. According to the technical description, the most recent version of OxtaRAT is a polyglot file that combines an image and a compiled AutoIT script. A web shell can be installed, port scanning is performed, a web shell can be installed, the compromised system can be remotely controlled with Tight VNC, footage from the web camera and desktop can be recorded, and more are all features of the tool read more Armenia and Azerbaijan Hackers Use OxtaRAT to Monitor Conflict. With ReconBee.com Stay ahead of the latest threats with...
Read More
Follow Us on Twitter
Join our community on LinkedIn