DPRK hackers dupe targets into typing PowerShell commands as admin
North Korean state actor 'Kimsuky' (aka 'Emerald Sleet' or 'Velvet Chollima') has been observed using a new tactic inspired from the now widespread ClickFix campaigns. [...]
Bleeping Computer.
Ivanti fixes three critical flaws in Connect Secure & Policy Secure
2 months ago
Ivanti has released security updates for Ivanti Connect Secure (ICS), Ivanti Policy Secure (IPS), and Ivanti Secure Access Client (ISAC) to address multiple vulnerabilities, including three critical severity problems. [...]
Bill Toulas
BadPilot network hacking campaign fuels Russian SandWorm attacks
2 months ago
A subgroup of the Russian state-sponsored hacking group APT44, also known as 'Seashell Blizzard' and 'Sandworm', has been targeting critical organizations and governments in a multi-year campaign dubbed 'BadPilot.' [...]
Bill Toulas
Beyond VPN: How TruGrid Simplifies RDP Deployment, Security, and Compliance
2 months ago
Cloud-based RDP Remote Desktop Protocol solutions offer a centralized dashboard to manage user access, security policies, and monitor usage from one location. Learn more from TruGrid about how their SecureRDP platform provides a secure, scalable, and cost-efficient alternative to VPN-based RDP implementations. [...]
Sponsored by TruGrid
Google fixes flaw that could unmask YouTube users' email addresses
2 months ago
Google has fixed two vulnerabilities that, when chained together, could expose the email addresses of YouTube accounts, causing a massive privacy breach for those using the site anonymously. [...]
Lawrence Abrams
Windows 10 KB5051974 update force installs new Microsoft Outlook app
2 months ago
Microsoft has released the KB5051974 cumulative update for Windows 10 22H2 and Windows 10 21H2, which automatically installs the new Outlook for Windows app and fixes a memory leak bug. [...]
Lawrence Abrams
Microsoft February 2025 Patch Tuesday fixes 4 zero-days, 55 flaws
2 months ago
Today is Microsoft's February 2025 Patch Tuesday, which includes security updates for 55 flaws, including four zero-day vulnerabilities, with two actively exploited in attacks. [...]
Lawrence Abrams
Fortinet discloses second firewall auth bypass patched in January
2 months ago
Fortinet has disclosed a second authentication bypass vulnerability that was fixed as part of a January 2025 update for FortiOS and FortiProxy devices. [...]
Sergiu Gatlan
Windows 11 KB5051987 & KB5051989 cumulative updates released
2 months ago
Microsoft has released Windows 11 KB5051987 and KB5051989 cumulative updates for versions 24H2 and 23H2 to fix security vulnerabilities and issues. [...]
Mayank Parmar
Russian military hackers deploy malicious Windows activators in Ukraine
2 months ago
The Sandworm Russian military cyber-espionage group is targeting Windows users in Ukraine with trojanized Microsoft Key Management Service (KMS) activators and fake Windows updates. [...]
Sergiu Gatlan
SonicWall firewall exploit lets hackers hijack VPN sessions, patch now
2 months ago
Security researchers at Bishop Fox have published complete exploitation details for the CVE-2024-53704 vulnerability that allows bypassing the authentication mechanism in certain versions of the SonicOS SSLVPN application. [...]
Bill Toulas
US indicts 8Base ransomware operators for Phobos encryption attacks
2 months ago
The U.S. Justice Department announced the names of two Phobos ransomware affiliates arrested yesterday in Thailand, charging them on 11 counts due to their involvement in more than a thousand cyberattacks. [...]
Bill Toulas
US sanctions LockBit ransomware’s bulletproof hosting provider
2 months ago
The United States, Australia, and the United Kingdom have sanctioned Zservers, a Russia-based bulletproof hosting (BPH) services provider, for supplying essential attack infrastructure for the LockBit ransomware gang. [...]
Sergiu Gatlan
Over 12,000 KerioControl firewalls exposed to exploited RCE flaw
2 months ago
Over twelve thousand GFI KerioControl firewall instances are exposed to a critical remote code execution vulnerability tracked as CVE-2024-52875. [...]
Bill Toulas
Sky ECC encrypted service distributors arrested in Spain, Netherlands
2 months ago
Four distributors of the encrypted communications service Sky ECC, used extensively by criminals, were arrested in Spain and the Netherlands. [...]
Bill Toulas
Apple fixes zero-day exploited in 'extremely sophisticated' attacks
2 months ago
Apple has released emergency security updates to patch a zero-day vulnerability that the company says was exploited in targeted and "extremely sophisticated" attacks. [...]
Sergiu Gatlan
Hacker pleads guilty to SIM swap attack on US SEC X account
2 months ago
Today, an Alabama man pleaded guilty to hijacking the U.S. Securities and Exchange Commission (SEC) account on X in a January 2024 SIM swapping attack. [...]
Sergiu Gatlan
Police arrests 2 Phobos ransomware suspects, seizes 8Base sites
2 months ago
A global law enforcement operation targeting the Phobos ransomware gang has led to the arrest of two suspected hackers in Phuket, Thailand, and the seizure of 8Base's dark web sites. The suspects are accused of conducting cyberattacks on over 1,000 victims worldwide. [...]
Bill Toulas
Police arrests 4 Phobos ransomware suspects, seizes 8Base sites
2 months ago
A global law enforcement operation targeting the Phobos ransomware gang has led to the arrest of four suspected hackers in Phuket, Thailand, and the seizure of 8Base's dark web sites. The suspects are accused of conducting cyberattacks on over 1,000 victims worldwide. [...]
Bill Toulas
Cyberattack disrupts Lee newspapers' operations across the US
2 months ago
Lee Enterprises, one of the largest newspaper groups in the United States, says a cyberattack that hit its systems caused an outage last week and impacted its operations. [...]
Sergiu Gatlan
Checked
2 hours 6 minutes ago
BleepingComputer - All Stories
Bleeping Computer. feed