HackDig : Dig high-quality web security articles

New MacStealer macOS malware appears in the cybercrime underground

A new MacStealer macOS malware allows operators to steal iCloud Keychain data and passwords from infected systems. Uptycs researchers team discovered a new macOS information stealer, called MacStealer, which allows operators to steal iCloud Keychain data and passwords from infected systems. The macOS malware can steal documents, credit card data, cook
Publish At:2023-03-27 19:00 | Read:14329 | Comments:0 | Tags:Breaking News Malware Cybercrime Hacking hacking news inform

Updates from the MaaS: new threats delivered through NullMixer

A technical analysis of NullMixer malware operation revealed Italy and France are the favorite European countries from the attackers’ perspective. Executive Summary Our insights into a recent NullMixer malware operation revealed Italy and France are the favorite European countries from the opportunistic attackers’ perspective. In thirty days, the o
Publish At:2023-03-27 12:18 | Read:18537 | Comments:0 | Tags:Breaking News Cyber Crime Malware Cybercrime Hacking hacking

Technical analysis of China-linked Earth Preta APT’s infection chain

China-linked Earth Preta cyberespionage group has been observed adopting new techniques to bypass security solutions. Trend Micro researchers reported that the China-linked Earth Preta group (aka Mustang Panda) is actively changing its tools, tactics, and procedures (TTPs) to bypass security solutions. Earth Preta, also known as “RedDelta” or “Bronze
Publish At:2023-03-27 08:56 | Read:23084 | Comments:0 | Tags:APT Breaking News Hacking Malware Earth Preta hacking news i

Malicious Python Package uses Unicode support to evade detection 

Researchers discovered a malicious package on PyPI that uses Unicode to evade detection while stealing sensitive data. Supply chain security firm Phylum discovered a malicious Python package on the Python Package Index (PyPI) repository that uses Unicode to evade detection and deliver information-stealing malware. The package, named onyxproxy, was uplo
Publish At:2023-03-27 04:22 | Read:28358 | Comments:0 | Tags:Breaking News Malware Hacking hacking news information secur

Vice Society claims attack on Puerto Rico Aqueduct and Sewer Authority

Puerto Rico Aqueduct and Sewer Authority (PRASA) is investigating a cyber attack with the help of the FBI and US CISA. The Puerto Rico Aqueduct and Sewer Authority (PRASA) is investigating a cyberattack that last week hit the agency. The agency quickly activated the incident response procedure after the attack. The attack was disclosed on March 19, and
Publish At:2023-03-26 03:20 | Read:53577 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Malware Cybercrime data br

CISA announced the Pre-Ransomware Notifications initiative

The US Cybersecurity and Infrastructure Security Agency (CISA) announced the Pre-Ransomware Notifications service to help organizations stop ransomware attacks before damage occurs. The US Cybersecurity and Infrastructure Security Agency announced a new Pre-Ransomware Notification initiative that aims at alerting organizations of early-stage ransomware at
Publish At:2023-03-24 20:50 | Read:52772 | Comments:0 | Tags:Breaking News Malware Security CISA Cybercrime Hacking hacki

China-linked hackers target telecommunication providers in the Middle East

Researchers reported that China-linked hackers targeted telecommunication providers in the Middle East in the first quarter of 2023. In the first quarter of 2023, SentinelLabs researchers spotted the initial phases of attacks against telecommunication providers in the Middle East. According to the researchers, the activity is part of the Operation Soft
Publish At:2023-03-24 17:28 | Read:46066 | Comments:0 | Tags:APT Breaking News Hacking Intelligence Malware China hacking

City of Toronto is one of the victims hacked by Clop gang using GoAnywhere zero-day

Clop ransomware gang added the City of Toronto to the list of its victims, it is another organization compromised by exploiting GoAnywhere zero-day. Clop ransomware gang added the City of Toronto to the list of victims published on its Tor leak site. The City was targeted as part of a campaign exploiting the recently disclosed zero-day vulnerability
Publish At:2023-03-24 16:52 | Read:62039 | Comments:0 | Tags:Breaking News Cyber Crime Data Breach Hacking Malware City o

New Attack Targets Online Customer Service Channels

An unknown attacker group is targeting customer service agents at gambling and gaming companies with a new malware effort. Known as IceBreaker, the code is capable of stealing passwords and cookies, exfiltrating files, taking screenshots and running custom VBS scripts. While these are fairly standard functions, what sets IceBreaker apart is its infection ve
Publish At:2023-03-24 10:35 | Read:46130 | Comments:0 | Tags:Risk Management customer service gambling gaming IceBreaker

Nexus, an emerging Android banking Trojan targets 450 financial apps

Experts warn of an emerging Android banking trojan dubbed Nexus that was employed in attacks against 450 financial applications. Cybersecurity firm experts from Cleafy warn of an emerging Android banking trojan, named Nexus, that was employed by multiple groups in attacks against 450 financial applications. The Nexus ransomware was first
Publish At:2023-03-23 13:06 | Read:60270 | Comments:0 | Tags:Breaking News Cyber Crime Malware Mobile Cybercrime Hacking

Dole discloses data breach after February ransomware attack

Dole Food Company confirmed that threat actors behind the recent ransomware attack had access to employees’ data. Dole Food Company is an Irish agricultural multinational corporation, it is one of the world’s largest producers of fruit and vegetables, operating with 38,500 full-time and seasonal employees who supply some 300 prod
Publish At:2023-03-23 09:08 | Read:52087 | Comments:0 | Tags:Breaking News Cyber Crime Data Breach Hacking Malware Cyberc

Rogue ChatGPT extension FakeGPT hijacked Facebook accounts

A tainted version of the legitimate ChatGPT extension for Chrome, designed to steal Facebook accounts, has thousands of downloads. Guardio’s security team uncovered a new variant of a malicious Chat-GPT Chrome Extension that was already downloaded by thousands a day. The version employed in a recent campaign is based on a legitimate open-source project
Publish At:2023-03-22 20:00 | Read:95238 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Malware Social Networks Ch

ENISA: Ransomware became a prominent threat against the transport sector in 2022

The European Union Agency for Cybersecurity (ENISA) published its first cyber threat landscape report for the transport sector. A new report published by the European Union Agency for Cybersecurity (ENISA) analyzes threats and incidents in the transport sector. The report covers incidents in aviation, maritime, railway, and road transport industries betwe
Publish At:2023-03-22 13:18 | Read:134254 | Comments:0 | Tags:Breaking News Reports Security Cybercrime ENISA Hacking hack

New Bad Magic APT used CommonMagic framework in the area of Russo-Ukrainian conflict

Threat actors are targeting organizations located in Donetsk, Lugansk, and Crimea with a previously undetected framework dubbed CommonMagic. In October 2022, Kaspersky researchers uncovered a malware campaign aimed at infecting government, agriculture and transportation organizations located in the Donetsk, Lugansk, and Crimea regions with a previously un
Publish At:2023-03-21 21:26 | Read:100453 | Comments:0 | Tags:APT Breaking News Hacking Intelligence Malware backdoor Comm

New ShellBot bot targets poorly managed Linux SSH Servers

New ShellBot DDoS bot malware, aka PerlBot, is targeting poorly managed Linux SSH servers, ASEC researchers warn. AhnLab Security Emergency response Center (ASEC) discovered a new variant of the ShellBot malware that was employed in a campaign that targets poorly managed Linux SSH servers. The ShellBot, also known as PerlBot, is a Perl-based DDoS bot t
Publish At:2023-03-21 17:28 | Read:90163 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Malware Cybercrime DDoS in

Announce

Share high-quality web security related articles with you:)
Tell me why you support me <3

Tag Cloud

Keywords