TECHZONE™
رفتن به کانال در Telegram
TECHZONE CYBERNEWS && UPDATES Wᴇʟᴄᴏᴍᴇ Tᴏ TECHZONE™ ✔️Infosec Facts ✔️Cheatsheets ✔️Free Courses ✔️Open source tools ✔️Tech news
نمایش بیشتر594
مشترکین
اطلاعاتی وجود ندارد24 ساعت
اطلاعاتی وجود ندارد7 روز
-630 روز
آرشیو پست ها
594
Unmasking the True Cost of Cyberattacks: Beyond Ransom and Recovery
https://thehackernews.com/2024/04/unmasking-true-cost-of-cyberattacks.html
Cybersecurity breaches can be devastating for both individuals and businesses alike. While many people tend to focus on understanding how and why they were targeted by such breaches, there's a larger, more pressing question: What is the true financial impact of a cyberattack? According to research by Cybersecurity Ventures, the global cost of cybercrime is projected to reach
594
German Authorities Issue Arrest Warrants for Three Suspected Chinese Spies
https://thehackernews.com/2024/04/german-authorities-issue-arrest.html
German authorities said they have issued arrest warrants against three citizens on suspicion of spying for China.
The full names of the defendants were not disclosed by the Office of the Federal Prosecutor (aka Generalbundesanwalt), but it includes Herwig F., Ina F., and Thomas R.
"The suspects are strongly suspected of working for a Chinese secret service since an unspecified
594
U.S. Imposes Visa Restrictions on 13 Linked to Commercial Spyware Misuse
https://thehackernews.com/2024/04/us-imposes-visa-restrictions-on-13.html
The U.S. Department of State on Monday said it's taking steps to impose visa restrictions on 13 individuals who are allegedly involved in the development and sale of commercial spyware or who are immediately family members of those involved in such businesses.
"These individuals have facilitated or derived financial benefit from the misuse of this technology, which
594
Russia's APT28 Exploited Windows Print Spooler Flaw to Deploy 'GooseEgg' Malware
https://thehackernews.com/2024/04/russias-apt28-exploited-windows-print.html
The Russia-linked nation-state threat actor tracked as APT28 weaponized a security flaw in the Microsoft Windows Print Spooler component to deliver a previously unknown custom malware called GooseEgg.
The post-compromise tool, which is said to have been used since at least June 2020 and possibly as early as April 2019, leveraged a now-patched flaw that allowed for
594
Russian Hacker Group ToddyCat Uses Advanced Tools for Industrial-Scale Data Theft
https://thehackernews.com/2024/04/russian-hacker-group-toddycat-uses.html
The threat actor known as ToddyCat has been observed using a wide range of tools to retain access to compromised environments and steal valuable data.
Russian cybersecurity firm Kaspersky characterized the adversary as relying on various programs to harvest data on an "industrial scale" from primarily governmental organizations, some of them defense related, located in
594
Pentera's 2024 Report Reveals Hundreds of Security Events per Week, Highlighting the Criticality of Continuous Validation
https://thehackernews.com/2024/04/penteras-2024-report-reveals-hundreds.html
Over the past two years, a shocking 51% of organizations surveyed in a leading industry report have been compromised by a cyberattack. Yes, over half.
And this, in a world where enterprises deploy an average of 53 different security solutions to safeguard their digital domain.
Alarming? Absolutely.
A recent survey of CISOs and CIOs, commissioned by Pentera and
594
MITRE Corporation Breached by Nation-State Hackers Exploiting Ivanti Flaws
https://thehackernews.com/2024/04/mitre-corporation-breached-by-nation.html
The MITRE Corporation revealed that it was the target of a nation-state cyber attack that exploited two zero-day flaws in Ivanti Connect Secure appliances starting in January 2024.
The intrusion led to the compromise of its Networked Experimentation, Research, and Virtualization Environment (NERVE), an unclassified research and prototyping network.
The unknown adversary "performed reconnaissance
594
Ransomware Double-Dip: Re-Victimization in Cyber Extortion
https://thehackernews.com/2024/04/ransomware-double-dip-re-victimization.html
Between crossovers - Do threat actors play dirty or desperate?
In our dataset of over 11,000 victim organizations that have experienced a Cyber Extortion / Ransomware attack, we noticed that some victims re-occur. Consequently, the question arises why we observe a re-victimization and whether or not this is an actual second attack, an affiliate crossover (meaning an affiliate has gone to
594
Researchers Uncover Windows Flaws Granting Hackers Rootkit-Like Powers
https://thehackernews.com/2024/04/researchers-uncover-windows-flaws.html
New research has found that the DOS-to-NT path conversion process could be exploited by threat actors to achieve rootkit-like capabilities to conceal and impersonate files, directories, and processes.
"When a user executes a function that has a path argument in Windows, the DOS path at which the file or folder exists is converted to an NT path," SafeBreach security researcher Or Yair said&
594
Microsoft Warns: North Korean Hackers Turn to AI-Fueled Cyber Espionage
https://thehackernews.com/2024/04/microsoft-warns-north-korean-hackers.html
Microsoft has revealed that North Korea-linked state-sponsored cyber actors has begun to use artificial intelligence (AI) to make its operations more effective and efficient.
"They are learning to use tools powered by AI large language models (LLM) to make their operations more efficient and effective," the tech giant said in its latest report on East Asia hacking groups.
The company
594
New RedLine Stealer Variant Disguised as Game Cheats Using Lua Bytecode for Stealth
https://thehackernews.com/2024/04/new-redline-stealer-variant-disguised.html
A new information stealer has been found leveraging Lua bytecode for added stealth and sophistication, findings from McAfee Labs reveal.
The cybersecurity firm has assessed it to be a variant of a known malware called RedLine Stealer owing to the fact that the command-and-control (C2) server IP address has been previously identified as associated with the malware.
RedLine Stealer, 
594
Beyond fun and games: Exploring privacy risks in children’s apps
https://www.welivesecurity.com/en/kids-online/beyond-fun-games-privacy-risks-childrens-apps/
Should children’s apps come with ‘warning labels’? Here's how to make sure your children's digital playgrounds are safe places to play and learn.
594
eXotic Visit campaign: Tracing the footprints of Virtual Invaders
https://www.welivesecurity.com/en/eset-research/exotic-visit-campaign-tracing-footprints-virtual-invaders/
ESET researchers uncovered the eXotic Visit espionage campaign that targets users mainly in India and Pakistan with seemingly innocuous apps
594
7 reasons why cybercriminals want your personal data
https://www.welivesecurity.com/en/privacy/7-reasons-why-cybercriminals-want-your-personal-data/
Here's what drives cybercriminals to relentlessly target the personal information of other people – and why you need to guard your data like your life depends on it
594
The devil is in the fine print – Week in security with Tony Anscombe
https://www.welivesecurity.com/en/videos/devil-fine-print-week-security-tony-anscombe/
Temu's cash giveaway where people were asked to hand over vast amounts of their personal data to the platform puts the spotlight on the data-slurping practices of online services today
594
How often should you change your passwords?
https://www.welivesecurity.com/en/cybersecurity/how-often-should-change-passwords/
And is that actually the right question to ask? Here’s what else you should consider when it comes to keeping your accounts safe.
594
Malware hiding in pictures? More likely than you think
https://www.welivesecurity.com/en/malware/malware-hiding-in-pictures-more-likely-than-you-think/
There is more to some images than meets the eye – their seemingly innocent façade can mask a sinister threat.
594
Palo Alto Networks Discloses More Details on Critical PAN-OS Flaw Under Attack
https://thehackernews.com/2024/04/palo-alto-networks-discloses-more.html
Palo Alto Networks has shared more details of a critical security flaw impacting PAN-OS that has come under active exploitation in the wild by malicious actors.
The company described the vulnerability, tracked as CVE-2024-3400 (CVSS score: 10.0), as "intricate" and a combination of two bugs in versions PAN-OS 10.2, PAN-OS 11.0, and PAN-OS 11.1 of the software.
"In
594
Critical Update: CrushFTP Zero-Day Flaw Exploited in Targeted Attacks
https://thehackernews.com/2024/04/critical-update-crushftp-zero-day-flaw.html
Users of the CrushFTP enterprise file transfer software are being urged to update to the latest version following the discovery of a security flaw that has come under targeted exploitation in the wild.
"CrushFTP v11 versions below 11.1 have a vulnerability where users can escape their VFS and download system files," CrushFTP said in an advisory released Friday.
594
BlackTech Targets Tech, Research, and Gov Sectors New 'Deuterbear' Tool
https://thehackernews.com/2024/04/blacktech-targets-tech-research-and-gov.html
Technology, research, and government sectors in the Asia-Pacific region have been targeted by a threat actor called BlackTech as part of a recent cyber attack wave.
The intrusions pave the way for an updated version of modular backdoor dubbed Waterbear as well as its enhanced successor referred to as Deuterbear.
"Waterbear is known for its complexity, as it
