Hackers Exploit Misconfigured Jupyter Notebooks with Repurposed Minecraft DDoS Tool https://firewall.firm.in/wp-content/uploads/2024/08/ddos.png Aug 03, 2024Ravie LakshmananDDoS Attack / Server Security Cybersecurity researchers have disclosed details of a new distributed denial-of-service (DDoS) attack campaign targeting misconfigured Jupyter Notebooks. The activity, codenamed Panamorfi by cloud security firm Aqua, utilizes a Java-based tool called mineping to launch a TCP flood DDoS attack. Mineping is ...
Read More »Vulnerabilities & Exploits
Webinar: Discover the All-in-One Cybersecurity Solution for SMBs
Webinar: Discover the All-in-One Cybersecurity Solution for SMBs https://firewall.firm.in/wp-content/uploads/2024/08/cynet.png Aug 02, 2024The Hacker News In today’s digital battlefield, small and medium businesses (SMBs) face the same cyber threats as large corporations, but with fewer resources. Managed service providers (MSPs) are struggling to keep up with the demand for protection. If your current cybersecurity strategy feels like a house of cards ...
Read More »APT28 Targets Diplomats with HeadLace Malware via Car Sale Phishing Lure
APT28 Targets Diplomats with HeadLace Malware via Car Sale Phishing Lure https://firewall.firm.in/wp-content/uploads/2024/08/malware (2).jpg Aug 02, 2024Ravie LakshmananCyber Espionage / Malware A Russia-linked threat actor has been linked to a new campaign that employed a car for sale as a phishing lure to deliver a modular Windows backdoor called HeadLace. “The campaign likely targeted diplomats and began as early as March ...
Read More »APT41 Hackers Use ShadowPad, Cobalt Strike in Taiwanese Institute Cyber Attack
APT41 Hackers Use ShadowPad, Cobalt Strike in Taiwanese Institute Cyber Attack https://firewall.firm.in/wp-content/uploads/2024/08/china.jpg Aug 02, 2024Ravie LakshmananCyber Espionage / Malware A Taiwanese government-affiliated research institute that specializes in computing and associated technologies was breached by nation-state threat actors with ties to China, according to new findings from Cisco Talos. The unnamed organization was targeted as early as mid-July 2023 to deliver ...
Read More »Over 1 Million Domains at Risk of ‘Sitting Ducks’ Domain Hijacking Technique
Over 1 Million Domains at Risk of ‘Sitting Ducks’ Domain Hijacking Technique https://firewall.firm.in/wp-content/uploads/2024/08/domain.png Aug 01, 2024Ravie LakshmananVulnerability / Threat Intelligence Over a million domains are susceptible to takeover by malicious actors by means of what has been called a Sitting Ducks attack. The powerful attack vector, which exploits weaknesses in the domain name system (DNS), is being exploited by over ...
Read More »DigiCert to Revoke 83,000+ SSL Certificates Due to Domain Validation Oversight
DigiCert to Revoke 83,000+ SSL Certificates Due to Domain Validation Oversight https://firewall.firm.in/wp-content/uploads/2024/07/ssl.png Jul 31, 2024Ravie LakshmananWeb Security / Compliance Certificate authority (CA) DigiCert has warned that it will be revoking a subset of SSL/TLS certificates within 24 hours due to an oversight with how it verified if a digital certificate is issued to the rightful owner of a domain. The ...
Read More »Cybercriminals Target Polish Businesses with Agent Tesla and Formbook Malware
Cybercriminals Target Polish Businesses with Agent Tesla and Formbook Malware https://firewall.firm.in/wp-content/uploads/2024/07/malware.png Jul 30, 2024Ravie LakshmananMalware / Cyber Threat Cybersecurity researchers have detailed widespread phishing campaigns targeting small and medium-sized businesses (SMBs) in Poland during May 2024 that led to the deployment of several malware families like Agent Tesla, Formbook, and Remcos RAT. Some of the other regions targeted by the ...
Read More »French Authorities Launch Operation to Remove PlugX Malware from Infected Systems
French Authorities Launch Operation to Remove PlugX Malware from Infected Systems https://firewall.firm.in/wp-content/uploads/2024/07/france.png Jul 27, 2024NewsroomMalware / Cyber Intelligence French judicial authorities, in collaboration with Europol, have launched a so-called “disinfection operation” to rid compromised hosts of a known malware called PlugX. The Paris Prosecutor’s Office, Parquet de Paris, said the initiative was launched on July 18 and that it’s expected ...
Read More »Bharath Data Protection Officer program launched at Rashtriya Raksha University Puducherry – ET CISO
Bharath Data Protection Officer program launched at Rashtriya Raksha University Puducherry – ET CISO https://etimg.etb2bimg.com/thumb/msid-111841713,imgsize-33986,width-1200,height=765,overlay-etciso/ot-security/bharath-data-protection-officer-program-launched-at-rashtriya-raksha-university-puducherry.jpg Puducherry Speaker Embalam Selvam during the launch of Bharath Data Protection Officer Certificate and Training Program at Rashtriya Raksha University Puducherry campus The Bharath Data Protection Officer (DPO) training and certification program has been inaugurated by the Speaker of Puducherry, Embalam Selvam, at the Rashtriya ...
Read More »Alert: HotPage Adware Disguised as Ad Blocker Installs Malicious Kernel Driver
Alert: HotPage Adware Disguised as Ad Blocker Installs Malicious Kernel Driver https://firewall.firm.in/wp-content/uploads/2024/07/shell.png Jul 18, 2024NewsroomMalware / Windows Security Cybersecurity researchers have shed light on an adware module that purports to block ads and malicious websites, while stealthily offloading a kernel driver component that grants attackers the ability to run arbitrary code with elevated permissions on Windows hosts. The malware, dubbed ...
Read More »