Tag: risk

North Korea’s Lazarus Group Launders $900 Million in Cryptocurrency
News

North Korea’s Lazarus Group Launders $900 Million in Cryptocurrency

The Lazarus Group, which has ties to North Korea, has been implicated in the theft of almost $900 million of those revenues between July 2022 and July of this year. As much as $7 billion in bitcoin has been illegally laundered through cross-chain crime. Blockchain analytics company Elliptic stated in a new research released this week that "chain- or asset-hopping typologies are also on the rise" as traditional institutions like mixers continue to be the target of seizures and sanctions scrutiny. Cross-chain crime is the act of moving crypto assets quickly across tokens or blockchains in an effort to conceal their origin. It is a profitable way to cover up crypto thefts read more North Korea's Lazarus Group Launders $900 Million in Cryptocurrency. Stay informed with the best cyber...
NSA and CISA reveal top 10 cybersecurity misconfigurations
News

NSA and CISA reveal top 10 cybersecurity misconfigurations

The top ten most prevalent cybersecurity errors found by the red and blue teams of the National Security Agency (NSA) and the Cybersecurity and Infrastructure Security Agency (CISA) in the networks of big businesses were made public today. The current warning also describes the methods, techniques, and procedures (TTPs) threat actors employ to successfully exploit these misconfigurations in order to achieve a variety of objectives, such as gaining access to, lateral movement, and targeting sensitive information or systems. The Red and Blue teams from the two agencies gathered the data for the report during evaluations and incident response activities read more NSA and CISA reveal top 10 cybersecurity misconfigurations. Stay informed with the best cybersecurity news and raise your...
Apple Rolls Out Security Patches for Actively Exploited iOS Zero-Day Flaw
News

Apple Rolls Out Security Patches for Actively Exploited iOS Zero-Day Flaw

On Wednesday, Apple released security updates to fix a fresh zero-day vulnerability in iOS and iPadOS that the company claimed was already being actively exploited in the wild. The kernel vulnerability, identified as CVE-2023-42824, could be exploited by a local attacker to gain elevated privileges. The iPhone manufacturer claimed that better checks were used to address the issue. Apple stated in a succinct advisory that it was "aware of a report that this issue may have been actively exploited against versions of iOS before iOS 16.6." Even while more information about the attacks' nature and the threat actors who carried them out is still unclear, successful exploitation most certainly requires an attacker to have already established a foothold through some other method read mor...
China-Linked Budworm Targeting Middle Eastern Telco and Asian Government Agencies
News

China-Linked Budworm Targeting Middle Eastern Telco and Asian Government Agencies

A threat actor with ties to China known as Budworm has launched a new wave of attacks against telecom and governmental organizations. The Symantec Threat Hunter Team, a division of Broadcom, claimed that the attacks, which were launched in August 2023 and targeted a Middle Eastern telecom company and an Asian government, involved the adversary using an upgraded version of its SysUpdate toolset. In order to further its information collecting objectives, Budworm, also known as APT27, Bronze Union, Emissary Panda, Iron Tiger, Lucky Mouse, and Red Phoenix, has been known to be operating since at least 2013. The nation-state group uses a variety of tools, including the China Chopper web shell read more China Linked Budworm Targeting Middle Eastern Telco and Asian Government Agencies. ...
Google assigns new maximum rated CVE to libwebp bug exploited in attacks
News

Google assigns new maximum rated CVE to libwebp bug exploited in attacks

A security flaw in libwebp that was patched two weeks ago and exploited as a zero-day in attacks has received a new CVE ID from Google (CVE-2023-5129). Instead of attributing the vulnerability to the free and open-source libwebp library, which is used to encode and decode images in the WebP format, the business initially identified the problem as a Chrome weakness, listed as CVE-2023-4863. The Citizen Lab at The University of Toronto's Munk School and Apple Security Engineering and Architecture (SEAR) jointly disclosed this zero-day problem on Wednesday, September 6, and Google rectified it less than a week later. Citizen Lab's security researchers have a proven track record of finding and disclosing zero-day vulnerabilities that have been used in specialized spyware campaigns re...
Microsoft is Rolling out Support for Passkeys in Windows 11
News

Microsoft is Rolling out Support for Passkeys in Windows 11

As part of a significant update to the desktop operating system, Windows 11 now formally introduces support for passkeys. Through the use of their device PIN or biometric data, users are able to log into websites and applications without having to enter their username and password. Passkeys was initially introduced in May 2022 as a password replacement that is both secure and resistant to phishing attacks based on FIDO standards. Since then, Apple, Google, and a number of other services have all adopted it. Passkey management was already a function in the tech giant's Windows Insider program as of June 2023 read more Microsoft is Rolling out Support for Passkeys in Windows 11. Stay informed with the best cybersecurity news and raise your cybersecurity awareness with our compre...
Xenomorph Banking Trojan Targeting 35+ U.S. Financial Institutions
News

Xenomorph Banking Trojan Targeting 35+ U.S. Financial Institutions

Over 35 financial institutions in the United States have been targeted by the Xenomorph banking virus, an enhanced variant of the Android banking trojan. According to Dutch security company ThreatFabric, the operation makes use of phishing websites that are intended to get users to download malicious Android apps that target a wider range of apps than its forerunners. Spain, Canada, Italy, and Belgium are a few of the other well-known nations targeted. The business stated in an analysis released on Monday that the latest list "adds dozens of new overlays for institutions from the United States, Portugal, and multiple crypto wallets, continuing a trend that has been consistent amongst all banking malware families in the last year read more Xenomorph Banking Trojan Targeting 35+ U.S. ...
National Student Clearinghouse data breach impacts 890 schools
News

National Student Clearinghouse data breach impacts 890 schools

890 schools around the country that use National Student Clearinghouse's services have been affected by a data hack, according to the nonprofit educational organization. Attackers got access to Clearinghouse's MOVEit managed file transfer (MFT) server on May 30 and stole files containing a variety of personal information, according to a breach notification letter submitted to the Office of the California Attorney General. The Clearinghouse was warned of a cybersecurity problem with Progress Software's MOVEit Transfer solution on May 31, 2023, according to a statement from the Clearinghouse. We immediately launched an inquiry after becoming aware of the problem, assisted by top cybersecurity authorities read more National Student Clearinghouse data breach impacts 890 schools. S...
North Korea’s Lazarus Group Suspected in $31 Million CoinEx Heist
News

North Korea’s Lazarus Group Suspected in $31 Million CoinEx Heist

Since June 2023, the Lazarus Group, which has ties to North Korea, has stolen approximately $240 million in cryptocurrencies, a huge increase in its hacking activity. The famed hacker squad is allegedly suspected of stealing $31 million in digital assets from the CoinEx exchange on September 12, 2023, according to numerous reports from Certik, Elliptic, and ZachXBT. The crypto robbery intended for CoinEx is the latest in a succession of recent attacks that also cost $100 million for Atomic Wallet, $37.3 million for CoinsPaid, $60 million for Alphapo, and 41 million for Stake.com. Some of the CoinEx money that was stolen was sent to an address that the Lazarus gang had previously used to launder money from Stake.com read more North Korea's Lazarus Group Suspected in $31 Million Co...
Iranian hackers breach defense orgs in password spray attacks
News

Iranian hackers breach defense orgs in password spray attacks

Since February 2023, Microsoft claims that a threat group with Iranian support has launched password spray assaults against hundreds of companies in the United States and around the world. Additionally, a small number of victims in the pharmaceutical, satellite, and defense industries had their private information stolen by state hackers. The cyberspy organization known as APT33 (also known as Peach Sandstorm, HOLMIUM, or Refined Kitten) has been active since at least 2013, attacking targets in the US, Saudi Arabia, and South Korea. These targets include government, defense, research, finance, and engineering organizations. The Microsoft Threat Intelligence team reported that Peach Sandstorm carried out a wave of password spray assaults between February and July 2023 in an effort...