Courtroom Digital Forensics

TheMoon bot infected 40,000 devices in January and February

[ad_1] TheMoon bot infected 40,000 devices in January and February Pierluigi Paganini March 26, 2024 A new variant of TheMoon malware infected thousands of outdated small office and home office (SOHO) routers and IoT devices worldwide. The Black Lotus Labs team at Lumen Technologies uncovered an updated version of “TheMoon” bot targeting end-of-life (EoL) small …

TheMoon bot infected 40,000 devices in January and February Read More »

US Treasury Dep announced sanctions against members of China-linked APT31

[ad_1] US Treasury Dep announced sanctions against members of China-linked APT31 Pierluigi Paganini March 26, 2024 The US Treasury Department announced sanctions on two APT31 Chinese hackers linked to attacks against organizations in the US critical infrastructure sector. The US government announced sanctions against a pair of Chinese hackers (Zhao Guangzong and Ni Gaobin), alleged members of …

US Treasury Dep announced sanctions against members of China-linked APT31 Read More »

UK, New Zealand against China-linked cyber operations

[ad_1] UK, New Zealand against China-linked cyber operations Pierluigi Paganini March 26, 2024 UK, Australia and New Zealand are accusing China-linked threat actors of cyber operations against UK institutions and parliamentarians. GCHQ’s National Cyber Security Centre believes that China-linked cyberespionage group APT31 was responsible for cyber attacks against UK parliamentarians’ emails in 2021. The UK …

UK, New Zealand against China-linked cyber operations Read More »

CISA adds FortiClient EMS, Ivanti EPM CSA, Nice Linear eMerge E3-Series bugs to its Known Exploited Vulnerabilities catalog

[ad_1] CISA adds FortiClient EMS, Ivanti EPM CSA, Nice Linear eMerge E3-Series bugs to its Known Exploited Vulnerabilities catalog Pierluigi Paganini March 25, 2024 U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds FortiClient EMS, Ivanti EPM CSA, Nice Linear eMerge E3-Series bugs to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency …

CISA adds FortiClient EMS, Ivanti EPM CSA, Nice Linear eMerge E3-Series bugs to its Known Exploited Vulnerabilities catalog Read More »

Iran-Linked APT TA450 embeds malicious links in PDF attachments

[ad_1] Iran-Linked APT TA450 embeds malicious links in PDF attachments Pierluigi Paganini March 25, 2024 In recent campaigns, Iran-linked APT group MuddyWater used a legitimate Remote Monitoring and Management (RMM) solution called Atera. Proofpoint researchers observed the Iran-linked APT group MuddyWater (aka SeedWorm, TEMP.Zagros, TA450, and Static Kitten) was behind a new phishing campaign in March 2024 that attempted to …

Iran-Linked APT TA450 embeds malicious links in PDF attachments Read More »

StrelaStealer targeted 100+ organizations across the EU and US

[ad_1] StrelaStealer targeted over 100 organizations across the EU and US Pierluigi Paganini March 25, 2024 Researchers reported that over 100 organizations in Europe and US were targeted by a wave of large-scale StrelaStealer campaigns Palo Alto Networks’ Unit42 spotted a wave of large-scale StrelaStealer campaigns impacting over 100 organizations across the EU and US. …

StrelaStealer targeted 100+ organizations across the EU and US Read More »

GoFetch side-channel attack against Apple systems allows secret keys extraction

[ad_1] GoFetch side-channel attack against Apple systems allows secret keys extraction Pierluigi Paganini March 25, 2024 Researchers demonstrated a new side-channel attack, named GoFetch, against Apple CPUs that could allow an attacker to obtain secret keys. A team of researchers from several US universities demonstrated a new microarchitectural side-channel attack named GoFetch that could allow …

GoFetch side-channel attack against Apple systems allows secret keys extraction Read More »

Security Affairs newsletter Round 464 by Pierluigi Paganini

[ad_1] Security Affairs newsletter Round 464 by Pierluigi Paganini – INTERNATIONAL EDITION Pierluigi Paganini March 24, 2024 A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free for you in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international …

Security Affairs newsletter Round 464 by Pierluigi Paganini Read More »

Cybercriminals Accelerate Online Scams During Ramadan and Eid Fitr

[ad_1] Cybercriminals Accelerate Online Scams During Ramadan and Eid Fitr Pierluigi Paganini March 24, 2024 During the month of Ramadan, Resecurity observed a significant increase in fraudulent activities and scams. During the month of Ramadan, Resecurity observed a significant increase in fraudulent activities and scams, coinciding with a surge in retail and online transactions. Middle …

Cybercriminals Accelerate Online Scams During Ramadan and Eid Fitr Read More »

Sign1 malware campaign already infected 39,000 WordPress sites

[ad_1] Large-scale Sign1 malware campaign already infected 39,000+ WordPress sites Pierluigi Paganini March 23, 2024 A large-scale malware campaign, tracked as Sign1, has already compromised 39,000 WordPress sites in the last six months. Sucurity researchers at Sucuri spotted a malware campaign, tracked as Sign1, which has already compromised 39,000 WordPress sites in the last six …

Sign1 malware campaign already infected 39,000 WordPress sites Read More »

Scroll to Top