percepticon, 2 days ago to Cybersecurity

FlyingYeti APT Serves Up Cookbox Malware Using WinRAR https://www.darkreading.com/cyberattacks-data-breaches/flyingyeti-apt-cookbox-malware-winrar?utm_source=dlvr.it&utm_medium=mastodon #cybersecurity #infosec

percepticon, 2 days ago to Cybersecurity

Pegasus: Putin-kritische Journalisten in der EU mit Spyware angegriffen https://www.heise.de/news/Pegasus-Putin-kritische-Journalisten-in-der-EU-mit-Spyware-angegriffen-9742220.html?wt_mc=rss.red.ho.top-news.atom.beitrag.beitrag&utm_source=dlvr.it&utm_medium=mastodon #cybersecurity #infosec

campuscodi, 2 days ago to infosec

David Ross, one of the early pioneers of browser security research, has passed away, his family announced on Twitter.

In 1999, together with Georgi Guninski, he authored the first paper on XSS attacks named "Script Injection".

He also worked on implementing X-Frame-Options in Internet Explorer.

https://x.com/randomdross/status/1799284146231185584

#infosec #cybersecurity #security

percepticon, 2 days ago to Cybersecurity

Malware botnet bricked 600,000 routers in mysterious 2023 event https://www.bleepingcomputer.com/news/security/malware-botnet-bricked-600-000-routers-in-mysterious-2023-event/?utm_source=dlvr.it&utm_medium=mastodon #cybersecurity #infosec

campuscodi, 2 days ago to infosec

Last year, CrowdStrike published a report on a new crypto-mining operation that was targeting exposed Kubernetes systems with a miner for the Dero cryptocurrency token.

https://www.crowdstrike.com/blog/crowdstrike-discovers-first-ever-dero-cryptojacking-campaign-targeting-kubernetes/

This threat actor—no official name yet—is still active today, according to a new report from cloud security firm Wiz.

https://www.wiz.io/blog/dero-cryptojacking-campaign-adapts-to-evade-detection

#infosec #cybersecurity #security

campuscodi, 2 days ago to infosec

The Cyber Partisans say they hacked the Belarusian State University.

The group claims it obtained documents and audio records from the university's internal network showing how its leadership dismissed staff and students who participated in anti-government protests.

The files show that the university declined to admit new students who participated in protests and left comments online against the dictatorship.

https://www.by.cpartisans.org/en/post/bsu-uncut-2020-2024-part-1 #infosec #cybersecurity #security

percepticon, 3 days ago to Cybersecurity

Law enforcement operation takes aim at an often-overlooked cybercrime linchpin https://arstechnica.com/?p=2027800&utm_source=dlvr.it&utm_medium=mastodon #cybersecurity #infosec

campuscodi, 3 days ago to infosec

Analyst1 has published a report that looks at the history of a ransomware operation named RansomHouse.

Researchers say the platform has been used by threat actors with links to ransomware gangs such as White Rabbit, Mario ESXi, RagnarLocker, and Dark Angels (Dunghill Leak).

https://analyst1.com/ransomhouse-stolen-data-market-influence-operations-amp-other-tricks-up-the-sleeve/

Not to be confused with RansomHub, which is a different ransomware group.

#infosec #cybersecurity #security

campuscodi, 3 days ago to infosec

The threat actor behind the Kuiper ransomware tried to sell its source code on the XSS hacking forums only to get immediately banned back in April

https://x.com/Libranalysis/status/1778036668236222483

#infosec #cybersecurity #security

campuscodi, 3 days ago (edited 1 day ago) to random

The EU Agency for Law Enforcement Training (CEPOL) says it was the victim of a cyberattack:

https://www.cepol.europa.eu/newsroom/news/cyber-incident-eu-agency-law-enforcement-training-cepol #infosec #cybersecurity #security

campuscodi, 3 days ago (edited 1 day ago) to random

Security firm watchTowr has published its own analysis of CVE-2024-4577, a PHP-CGI vulnerability impacting Windows systems: https://labs.watchtowr.com/no-way-php-strikes-again-cve-2024-4577/

The bug was initially discovered by DEVCORE: https://devco.re/blog/2024/06/06/security-alert-cve-2024-4577-php-cgi-argument-injection-vulnerability-en/

watchTowr has also released proof-of-concept code: https://github.com/watchtowrlabs/CVE-2024-4577 #infosec #cybersecurity #security

metin, 3 days ago to infosec

From the ar(t)chive…

Stylized 3D illustration for an early-2000s article in the Dutch PC-Active magazine, about a mobile phone virus. This was before smartphones were introduced. 🙂

#infosec #cybersecurity #security #safety #virus #malware #cartoon #design #artwork #sculpture #3DModeling #illustration #illustrator #art #arte #artist #DigitalArt #ArtMatters #GraphicDesign #3D #B3D #CreativeToots #FediArt #MastoArt #ArtistsOnMastodon

percepticon, 3 days ago to Cybersecurity

macOS version of elusive 'LightSpy' spyware tool discovered https://www.bleepingcomputer.com/news/security/macos-version-of-elusive-lightspy-spyware-tool-discovered/?utm_source=dlvr.it&utm_medium=mastodon #cybersecurity #infosec

chiefgyk3d, 3 days ago to infosec

Exploring Windows 11 Enterprise Testing | Yubikey Firmware Update | Homelab Upgrade Plans and Progress | Cybersecurity and Chill | Gaming on Linux on Twitch. Dive in with me: https://twitch.tv/chiefgyk3d #Homelabbing #Infosec #Cybersecurity #Tech #Streamer

TehPenguin, 3 days ago to windows

Making Recall opt-in has, effectively, killed it.

Oh, it will still ship.

Folks who worked on it will move on to new features and the ownership will be transferred to the servicing devision (WSD).

After a while WSD will get fed up with the cost of maintaining yet another rarely used shell feature and will deprecate it. Either that or the shell team will rewrite everything again and drop it.

See: Cortana, Timeline, People on the Taskbar, Chat, Live tiles.

#windows #infosec #recall