Over 1,600 publicly available Docker Hub images hide malicious behavior, including cryptocurrency miners, embedded secrets that can be used as backdoors, DNS hijackers, and website redirectors. Docker Hub is a cloud-based container library allowing people to freely search and download Docker images or upload their creations to the public
Közel 500 millió WhatsApp-felhasználó – köztük 377 ezer magyar – telefonszámát árulja valaki egy hackerfórumon, amely már nem az első nagy léptékű adatszivárgás a közösségi médiaoldalak történetében. Tavaly tavasszal a Facebook, pár nappal később pedig a LinkedIn több százmillió felhasználójának adatait lopták el, majd árulták dark netes fórumokon a hackerek. A hirdetésben,
Flaws from a web server discontinued since 2005 have been used to attack organizations from the energy sector. State-backed Chinese hacking groups have used the Boa web server to target several Indian electrical grid operators (for example Tata Power Company Limited, India), compromising an Indian national emergency response system and
Paolo Passeri, cybersecurity expert has been collecting the incidents due to cloud misconfigurations and leading to the exposure of data since 2020. The statistics of this collection related to year of 2022 were published on his website, Hackmageddon. Unfortunately despite increasing risks and awareness the number of incidents this year
The European Parliament website was hit by a cyberattack shortly after lawmakers approved a resolution calling Moscow a "state sponsor of terrorism". DDoS attacks are part of the announced campaign on October 2 by Anonymous Russia (the hacker group operating under the management of KillNet). “KILLNET officially recognises
Based on our survey of over 900 ICS security leaders in the United States, Germany, and Japan, we dig deeper into each industry's challenges and present Trend Micro's recommendations. Trend Micro conducted a study on the state of industrial cybersecurity in the oil and gas, manufacturing,
Pro-Ukraine hacker group, Team OneFist reported on a strategic cyber strike against St. Petersburg's power grid SCADA system, and it's fault detection AI/ML model in Operation Neutrino.
Pro-Ukraine hacker group, Team OneFist claims they annihilated 4 russian billing/payment 1C systems (1C is a russian software developer company) in Operation Pasłęk. The largest car dealer in russia, ROLF is paralyzed as the backups are gone too. ROLF ISP (ROLF) and an auto-parts service company were also terminated,
Belarusian hacktivists, "Cyberpartisans" claim to have hacked the systems of the Main Radio Frequency Center (GRChTs), which carries out the control and regulatory functions of Roskomnadzor. The fact of the attack was confirmed by the GRChTs.
"Top10VPN analyzed malware activity from IP addresses in Ukraine and Russia since February and found the biggest spikes related to malware that helps botnets to spread. Resurgent malware included trojans that previously played a key role in propagating notorious botnets long since dismantled by major international law enforcement operations.
Cybersecurity researchers have disclosed details of a new vulnerability in a system used across oil and gas organizations that could be exploited by an attacker to inject and execute arbitrary code. The high-severity issue, tracked as CVE-2022-0902 (CVSS score: 8.1), is a path-traversal vulnerability in ABB Totalflow flow computers
Russian hacktivists have infected multiple organizations in Ukraine with a new ransomware strain called 'Somnia,' encrypting their systems and causing operational problems. The Computer Emergency Response Team of Ukraine (CERT-UA) has confirmed the outbreak via an announcement on its portal, attributing the attacks to 'From Russia with
The Russia-linked APT29 nation-state actor has been found leveraging a "lesser-known" Windows feature called Credential Roaming following a successful phishing attack against an unnamed European diplomatic entity. "The diplomatic-centric targeting is consistent with Russian strategic priorities as well as historic APT29 targeting," Mandiant researcher Thibault Van
Pro-Ukraine hacker group, Team OneFist launched a strategic cyber strike against TsARZ in Yekaterinburg, Russia in Operation Positron. TsARZ repair trucks, BTRs and light armored vehicles for the RF MoD (Ministry of Defence of the Russian Federation).
Pro-Ukraine hacker group, Team OneFist carried out its most extensive cyberattack on Russian data centers to date in Operation Switchblade.
Pro-Ukraine hacker group, Team OneFist attacked Rostelecom's infrastucture in Operation Dark Fiber 5. This was the 8th time the hackers have managed to damage Rostelecom's network infrastructure.
