A OneFist ukránbarát hackercsoport azt állítja, hogy az általuk "Operation Smoked"-nak elnevezett művelet keretében feltörték a Rosseti Lenenergo 110 kV-os PS-249 "Dymi" alállomás SCADA rendszerét. Állításuk szerint a rendszer szünetmentes tápegységének (UPS) sebezhetőségét használták ki, amely teljes hozzáférést biztosított számukra az akkumulátorokhoz, így sikeresen tönkretették
Pro-Ukraine hacker group OneFist claims hacked SCADA system for Rosseti Lenenergo's 110 kV substation PS-249 "Dymi" as part of their special cyberwarfare operation, Operation "Smoked". Using a vulnerability in it's uninterruptible power supply (UPS), which gave them total access to the batteries,
The Anonymous Hacker group has claimed to have taken down two Russian video conferencing apps, Webnir.ru and videomost.com station. Webinar Group is a Russian ecosystem of services for meetings, online events, training and webinars. One of the clients as stated on their website is Huwaei. While webinar.ru
A group of 18 tech and cyber companies said Wednesday they are building a common data standard for sharing cybersecurity information. They aim to fix a problem for corporate security chiefs who say that cyber products often don’t integrate, making it hard to fully assess hacking threats. Amazon. com
CTI (Cyber Threat Intelligence) analysis by Trend Micro of a cyber espionage campaign of Iron Tiger APT (Advanced Persistent Threat) group. Iron Tiger (also known as Emissary Panda, APT27, Bronze Union, and Luckymouse) compromising chat application Mimi’s servers in a supply chain attack by HyperBro malware. MiMi is an
Pro-Ukraine hacker group Bluehornet who was AgainstTheWest and has continued to operate in some capacity under spot has now allegedly returned to operations.
The pro-Russian hacker gang known as Killnet took down the website of Latvia’s parliament on Thursday after lawmakers there designated Russia as a “state sponsor of terrorism.” The parliament’s website went down for several hours after being hit by a distributed denial-of-service (DDoS) attack, which floods websites with
On May 24, 2022, Cisco became aware of a potential compromise. Since that point, Cisco Security Incident Response (CSIRT) and Cisco Talos have been working to remediate. Cisco has updated its security products with intelligence gained from observing the bad actor’s techniques, shared Indicators of Compromise (IOCs) with other
CTI analysis by Cyble of the escalation of the China-Taiwan conflict in the wake of Nancy Pelosi's visit to Taiwan, which was followed by widespread cyberattacks on Taiwanese institutions. Pelosi’s Taiwan Visit Widens Taipei-Beijing RiftCyble analyzes the escalation of the China-Taiwan conflict in the wake of Nancy
Finland’s parliament said Tuesday its website came under cyber-attack, as the Nordic country applies for NATO membership following Moscow’s invasion of Ukraine. “A denial-of-service attack is taking place against the parliament’s external website,” parliament said in a statement. Finland parliament website targeted in cyber attackFinland’s parliament
A new analysis by Kaspersky unveiled a wave of targeted attacks on military-industrial complex enterprises and public institutions in Belarus, Russia, Ukraine and Afghanistan. Microsoft Word documents attached to the phishing emails contain malicious code that exploits the CVE-2017-11882 vulnerability. The vulnerability enables an attacker to execute arbitrary code (in
The Ministry of Digital Development of Russia proposed to abandon the need to obtain the consent of a citizen to transfer his biometric data to the “Unified Biometric System” (UBS) from various sources, writes “Kommersant with reference to the draft order of the Ministry of Digital Transformation on the procedure
VMware’s 2022 Global Incident Response Threat Report takes a deep dive into the headwinds faced by defenders and how security teams attempt to stay the course. Additional key findings from the report include: Lateral movement is the new battleground. Deepfake attacks shot up 13 percent, with 66 percent of
Egyre több magyar felhasználó kap olyan Facebook üzenetet, miszerint az általa üzemeltetett oldal sérti a platform házirendjét és ahhoz, hogy az oldalt ne zárolják, adategyeztetést kérnek. Csakhogy, nem a Facebook küldi az üzeneteket.
The Forum of Incident Response and Security Teams (FIRST) has published version 2 of the TLP (Traffic Light Protocol) standard, five years after the first version was published. The Traffic Light Protocol (TLP) was created to facilitate greater sharing of potentially sensitive information and more effective collaboration. Traffic Light Protocol
An anonymous source has leaked around 4TB of proprietary data from Israel-based digital intelligence company, Cellebrite, after it allegedly carried out a successful cyber attack. The leaked data are available via DDoSecrets's website (it is a a non-profit whistleblower organization), for now only on special request, for researchers
