Tag: latest hacking news

This WordPress Plugin For Elementor Leaves Websites Vulnerable To Hackers
News

This WordPress Plugin For Elementor Leaves Websites Vulnerable To Hackers

Make sure you're utilising this well-known plugin if the WordPress page-builder Elementor powers your website. Because if you are, a recently found security hole makes it simple for hackers to take over your website completely. The WordPress plugin Essential Addons for Elementor is connected to a worrisome cybersecurity problem, according to a recent study from security researchers at Patchstack. Users can create or update their website using a variety of pre-built WordPress blocks and templates provided by the plugin. According to Patchstack's research, "This plugin has an unauthenticated privilege escalation vulnerability that allows any unauthenticated user to escalate their privilege to that of any user on the WordPress site read more This WordPress Plugin For Elementor Leaves W...
Threat Actors Use Babuk Code to Build Hypervisor Ransomware
News

Threat Actors Use Babuk Code to Build Hypervisor Ransomware

A growing number of threat actors have been seen developing a new type of ransomware that targets VMware ESXi hypervisor environments utilizing the Babuk code that was stolen in 2021. These novel versions appeared between 2022 and 2023, demonstrating a rising trend of Babuk source code adoption, according to a SentinelOne advisory released earlier today. The researchers also claimed that malware tools developed using the stolen source code allowed users to attack Linux computers even if they had the necessary programming expertise to build a working program from scratch read more Threat Actors Use Babuk Code to Build Hypervisor Ransomware.
Texas bank breach exposed thousands of Social Security numbers
News

Texas bank breach exposed thousands of Social Security numbers

Over 17,000 US citizens' Social Security numbers (SSNs) were made public after a Happy State Bank (HSB) employee's email account was allegedly breached by a cyberattack. A Texas-based financial company called HSB alerted customers to a business email compromise (BEC) that put the personal information of thousands of customers at danger. The business reported that threat actors might have gained access to customer names or other personal identifiers associated with SSNs in a notification to the Maine Attorney General's Office. It's possible that more than 17,000 clients were exposed. Losing SSNs entails serious dangers because identity thieves read more Texas bank breach exposed thousands of Social Security numbers. With ReconBee.com Stay ahead of the latest threats with in-dep...
Hackers used spyware made in Spain to target users in the UAE, Google says
News

Hackers used spyware made in Spain to target users in the UAE, Google says

Google announced the existence of Variston, a malware distributor that was previously unknown, in November 2022. The United Arab Emirates is where Google researchers claim they have observed hackers using Variston's tools. According to a report released on Wednesday by Google's Threat Analysis Group (TAG), hackers were found to be targeting users of Samsung's native Android browser, which is a modified version of Chromium, who were located in the United Arab Emirates. In order to access the targets, the hackers sent text messages containing one-time web URLs that were chained together and used as vulnerabilities. According to a recent blog post by TAG read more Hackers used spyware made in Spain to target users in the UAE, Google says. With ReconBee.com Stay ahead of the latest ...
Attacks Targeting APIs Increased By 400% in Last Six Months
News

Attacks Targeting APIs Increased By 400% in Last Six Months

In the past six months, attacks on application programming interfaces (APIs) have surged by 400%. These results are from a recent Salt Security research, which also demonstrates that 80% of all attacks took place through authenticated APIs. The State of API Security Q1 Report 2023, built from survey responses of 400 security professionals and API developers, also reveals that 17% of respondents had encountered an API-related breach and that 94% of respondents have experienced security issues in production APIs over the previous year. About half (48%) of respondents stated that API security read more Attacks Targeting APIs Increased By 400% in the Last Six Months. With ReconBee.com Stay ahead of the latest threats with in-depth coverage of cyber attacks and cybersecurity trends, a...
Hackers Use NuGet Packages to Target .NET Developers
News

Hackers Use NuGet Packages to Target .NET Developers

Threat actors have been seen creating malicious packages aimed at .NET developers using the open-source package manager NuGet. The discovery would be the first occurrence in the wild of packages with malicious code detected in NuGet, according to software package management provider JFrog. Shachar Menashe, senior director at JFrog Security Research, said: "For the first time, the NuGet repository formerly assumed to be untouched by malicious code really contains multiple hazardous software read more Hackers Use NuGet Packages to Target .NET Developers. Stay up-to-date with the latest cybersecurity news and increase your cybersecurity awareness through ReconBee.com‘s in-depth coverage of the newest threats, breaches, and solutions.
Tick APT Group Hacked East Asian DLP Software Firm
News

Tick APT Group Hacked East Asian DLP Software Firm

The advanced persistent threat (APT) group Tick has been blamed for a new malware campaign that targets an East Asian company that creates data-loss prevention (DLP) software for governmental and military organizations. The threat actor broke into the DLP company's internal update servers, according to an advisory released by ESET on Tuesday, to spread malware across its network. The company's use of genuine tool installers that had been tampered with led to the execution of malware on the PCs of two of its clients read more Tick APT Group Hacked East Asian DLP Software Firm. Stay informed with the best cybersecurity news and raise your cybersecurity awareness with our comprehensive coverage of the latest threats, breaches, and solutions.
Security giant Rubrik says hackers used Fortra zero-day to steal internal data
News

Security giant Rubrik says hackers used Fortra zero-day to steal internal data

The Fortra GoAnywhere zero-day vulnerability, which has been connected to hacks against a hospital network and a bank, has claimed its newest victim: Silicon Valley-based data security business Rubrik. Michael Mestrovich, chief information security officer at Rubrik, claimed that the vulnerability in Fortra's GoAnywhere file-transfer programme, which the company employs for internal data exchange, allowed attackers access to the non-production IT testing environments used by the company. Known as CVE-2023-0669, this vulnerability originally came to light on February 2 read more Security giant Rubrik says hackers used Fortra zero-day to steal internal data. Stay informed with the best cybersecurity news and raise your cybersecurity awareness with our comprehensive coverage of the ...
Lazarus Group Targets South Korean Finance Firm Via Zero-Day Flaw
Reputation, Resources, Risk, Security

Lazarus Group Targets South Korean Finance Firm Via Zero-Day Flaw

Lazarus Group, a North Korean threat actor, was observed twice in the past year using holes in undisclosed software to access a South Korean finance company. The information was released by security experts at Asec, who on Tuesday published an advisory about the attacks. The first attack was noted by the corporation in May 2022, while the second one happened in October of that same year. According to reports, the same zero-day vulnerability was used by both operations. The impacted company "was employing a vulnerable version of a certificate application that was commonly used by public institutions and universities during the infiltration read more Lazarus Group Targets South Korean Finance Firm Via Zero-Day Flaw. Stay informed with the best cybersecurity news and raise your cybe...
Ransomware Attack Hits US Marshals Service
Risk, Security

Ransomware Attack Hits US Marshals Service

A computer system containing "law enforcement sensitive information" has apparently been impacted by a ransomware attack directed at the US Marshals Service (USMS). The intrusion also compromised the personal information of the targets of the inquiry, according to Drew Wade, chief of the Marshals Service public affairs office, who made the statement Monday night. Wade explained, "The impacted system contains law enforcement sensitive material, including returns from legal process, administrative information, and personally identifiable information belonging to subjects of USMS investigations, third parties, and some USMS personnel." The officer stated that the breach was found on February 17 by the US Marshals Service read more Ransomware Attack Hits US Marshals Service. Stay ...