The Information Highway

The Information Highway

Amazon seizes domains used in rogue Remote Desktop campaign to steal data

Microsoft-Russia

Amazon has seized domains used by the Russian APT29 hacking group in targeted attacks against government and military organizations to steal Windows credentials and data using malicious Remote Desktop Protocol connection files.

Continue reading
  162 Hits

Over 4,000 Adobe Commerce, Magento shops hacked in CosmicSting attacks

Wasp-sting

Adobe Commerce and Magento online stores are being targeted in "CosmicSting" attacks at an alarming rate, with threat actors hacking approximately 5% of all stores.

Continue reading
  276 Hits

New Linux malware is controlled through emojis sent from Discord

emoji-hacker

A newly discovered Linux malware dubbed 'DISGOMOJI' uses the novel approach of utilizing emojis to execute commands on infected devices in attacks on government agencies in India.

Continue reading
  439 Hits

Apple backports fix for RTKit iOS zero-day to older iPhones

Appl_20240514-030518_1

Apple has backported security patches released in March to older iPhones and iPads, fixing an iOS Kernel zero-day tagged as exploited in attacks.

Continue reading
  495 Hits

Okta warns of "unprecedented" credential stuffing attacks on customers

Okta

Okta warns of an "unprecedented" spike in credential stuffing attacks targeting its identity and access management solutions, with some customer accounts breached in the attacks.

Continue reading
  609 Hits

Roku warns 576,000 accounts hacked in new credential stuffing attacks

Roku

Roku warns that 576,000 accounts were hacked in new credential stuffing attacks after disclosing another incident that compromised 15,000 accounts in early March.

Continue reading
  672 Hits

Palo Alto Networks warns of PAN-OS firewall zero-day used in attacks

Palo_Alto_Networks

Today, Palo Alto Networks warns that an unpatched critical command injection vulnerability in its PAN-OS firewall is being actively exploited in attacks.

Continue reading
  874 Hits

Retail chain Hot Topic hit by new credential stuffing attacks

HOT-TOPIC

American retailer Hot Topic disclosed that two waves of credential stuffing attacks in November exposed affected customers' personal information and partial payment data.

Continue reading
  716 Hits

New ScreenConnect RCE flaw exploited in ransomware attacks

LockBit_logo

The samples seen by Sophos in this week's attacks were a buhtiRansom LockBit variant dropped on 30 different customer networks and a second payload created using the leaked Lockbit builder (and dropped by a different threat actor).


Continue reading
  799 Hits

New Fortinet RCE flaw in SSL VPN likely exploited in attacks

Fortine_20240210-192609_1

Fortinet is warning that a new critical remote code execution vulnerability in FortiOS SSL VPN is potentially being exploited in attacks.


Continue reading
  861 Hits

US Health Dept urges hospitals to patch critical Citrix Bleed bug

Citrix_Bleed

The U.S. Department of Health and Human Services (HHS) warned hospitals this week to patch the critical 'Citrix Bleed' Netscaler vulnerability actively exploited in attacks. 

Continue reading
  859 Hits

New BLUFFS attack lets attackers hijack Bluetooth connections

Bluetooth_bluescreen_BSOD

 Researchers at Eurecom have developed six new attacks collectively named 'BLUFFS' that can break the secrecy of Bluetooth sessions, allowing for device impersonation and man-in-the-middle (MitM) attacks.

Continue reading
  800 Hits

Cloudflare sees surge in hyper-volumetric HTTP DDoS attacks

ddos-bright

Cloudflare says the number of hyper-volumetric HTTP DDoS (distributed denial of service) attacks recorded in the third quarter of 2023 surpasses every previous year, indicating that the threat landscape has entered a new chapter. 

Continue reading
  883 Hits

MATA malware framework exploits EDR in attacks on defense firms

hacker-looking-at-screens

An updated version of the MATA backdoor framework was spotted in attacks between August 2022 and May 2023, targeting oil and gas firms and the defense industry in Eastern Europe. 

Continue reading
  1049 Hits

Apple emergency update fixes new zero-day used to hack iPhones

Apple

Apple released new emergency security updates on Wednesday to patch two new zero-day vulnerabilities known to be exploited in attacks. 

Continue reading
  906 Hits

Google fixes fifth actively exploited Chrome zero-day of 2023

Google_Chrome

Google has patched the fifth Chrome zero-day vulnerability exploited in attacks since the start of the year in emergency security updates released today. 

Continue reading
  923 Hits

CISA: New Whirlpool backdoor used in Barracuda ESG hacks

Barracuda-Whirlpool

The U.S. Cybersecurity & Infrastructure Security Agency (CISA) has discovered that the backdoor malware named 'Whirlpool' used in attacks on compromised Barracuda Email Security Gateway (ESG) devices. 

Continue reading
  960 Hits

Over 640 Citrix servers backdoored with web shells in ongoing attacks

citrix

Hundreds of Citrix Netscaler ADC and Gateway servers have already been breached and backdoored in a series of attacks targeting a critical remote code execution (RCE) vulnerability tracked as CVE-2023-3519. 

Continue reading
  1481 Hits

Top Breaches Of 2023

Customers Affected In T-Mobile Breach
Accounts Affected In MOVEit Breach
Customers Affected In MCNA Insurance Data Breach
Individuals Affected In PharMerica Data Breach
Users Affected In ChatGPT Major Data Breach
*Founder Shield End of Year 2023