Category Security

Nov 20, 2024Ravie LakshmananLinux / Vulnerability Multiple decade-old security vulnerabilities have been disclosed in the needrestart package installed by default in Ubuntu Server (since version 21.04) that could allow a local attacker to gain root privileges without requiring user interaction.…

Ransomware gangs are increasingly targeting weekends and holidays, when cybersecurity teams are typically less staffed, according to a new report from Semperis. The cybersecurity firm said that 86% of study participants who experienced a ransomware attack were targeted on a…

Nov 20, 2024Ravie LakshmananCyber Espionage / Telecom Security A new China-linked cyber espionage group has been attributed as behind a series of targeted cyber attacks targeting telecommunications entities in South Asia and Africa since at least 2020 with the goal…

Nov 20, 2024Ravie LakshmananZero Day / Vulnerability Apple has released security updates for iOS, iPadOS, macOS, visionOS, and its Safari web browser to address two zero-day flaws that have come under active exploitation in the wild. The flaws are listed…

Threat actors are actively seeing pen testers to join various ransomware affiliate programs, including Apos, Lynx and Rabbit Hole. This according to the findings from Cato Network’s Cato Cyber Threats Research Lab (CTRL) in its new Q3 2024 Cato CTRL…

A Linux variant of the Helldown ransomware has been uncovered. Previously known for targeting Windows systems, the Helldown group now extends its reach to VMware ESX servers and Linux environments. According to a new report by Sekoia’s Threat Detection &…

T-Mobile’s network has been breached as part of a large-scale cyber-espionage campaign by Salt Typhoon, a Chinese state-sponsored hacking group. The attack targeted major telecommunications providers in the US, that also includied AT&T, Verizon and Lumen Technologies, and extended to international…

Nov 19, 2024Ravie LakshmananCloud Security / Piracy Malicious actors are exploiting misconfigured JupyterLab and Jupyter Notebooks to conduct stream ripping and enable sports piracy using live streaming capture tools. The attacks involve the hijack of unauthenticated Jupyter Notebooks to establish…

Jen Easterly, the current US Cybersecurity and Infrastructure Security Agency (CISA) Director, is expected to leave her position on January 20, 2025, as the new Trump administration takes office. Nitin Natarajan, CISA’s Deputy Director will also step down. This was…

The malware known as Ngioweb has been used to fuel a notorious residential proxy service called NSOCKS, as well as by other services such as VN5Socks and Shopsocks5, new findings from Lumen Technologies reveal. “At least 80% of NSOCKS bots…