Aug 23, 2024Ravie LakshmananCyber Crime / Ransomware A 33-year-old Latvian national living in Moscow, Russia, has been charged in the U.S. for allegedly stealing data, extorting victims, and laundering ransom payments since August 2021. Deniss Zolotarjovs (aka Sforza_cesarini) has been charged with conspiring to commit money laundering, wire fraud and Hobbs Act extortion. He was…
Read More
Aug 23, 2024Ravie LakshmananEndpoint Security / Data Privacy Cybersecurity researchers have uncovered a new information stealer that’s designed to target Apple macOS hosts and harvest a wide range of information, underscoring how threat actors are increasingly setting their sights on the operating system. Dubbed Cthulhu Stealer, the malware has been available under a malware-as-a-service (MaaS)…
Read More
Hackers have already started to exploit the critical severity vulnerability that affects LiteSpeed Cache, a WordPress plugin used for accelerating response times, a day after technical details become public. The security issue is tracked as CVE-2024-28000 and allows escalating privileges without authentication in all versions of the WordPress plugin up to 6.3.0.1. The vulnerability stems from…
Read More
The attacks The SEC said that in the first attack in September 2022, a threat actor hijacked an email chain between the company, then known as American Stock Transfer & Trust Company, and one of its clients, pretending to be an employee of the client company, instructed American Stock Transfer to issue millions of new…
Read MoreSurveillance Watch This is a fantastic project mapping the global surveillance industry. Tags: privacy, surveillance Posted on August 22, 2024 at 9:15 PM • 0 Comments Sidebar photo of Bruce Schneier by Joe MacInnis. Source link lol
Read More
The Qilin ransomware group has been using a new tactic and deploys a custom stealer to steal account credentials stored in Google Chrome browser. The credential-harvesting techniques has been observed by the Sophos X-Ops team during incident response engagements and marks an alarming change on the ransomware scene. Attack overview The attack that Sophos researchers analyzed…
Read More
Circana’s Mike Crosby sees several reasons for optimism when it comes to B2B spending now through the end of 2026. Below is a transcript of the above video. Jennifer Follett, vice president of U.S. content and executive editor, CRN: I am here with Mike Crosby of Circana. Mike, thank you so much for joining me.…
Read More
“‘Elemental’ was their most ambitious film to date, where each character was its own volume. It had ridiculous amounts of geometry to render each character,’” says AMD executive James Knight. “Previous to AMD and Supermicro getting together, they couldn’t have done it.” Pixar’s visually ambitious “Elemental” film required more than 150,000 EPYC CPU cores from…
Read More
Aug 22, 2024Ravie LakshmananVulnerability / Network Security SolarWinds has issued patches to address a new security flaw in its Web Help Desk (WHD) software that could allow remote unauthenticated users to gain unauthorized access to susceptible instances. “The SolarWinds Web Help Desk (WHD) software is affected by a hardcoded credential vulnerability, allowing [a] remote unauthenticated…
Read More
Aug 22, 2024Ravie LakshmananHardware Security / Supply Chain Attack Cybersecurity researchers have uncovered a hardware backdoor within a particular model of MIFARE Classic contactless cards that could allow authentication with an unknown key and open hotel rooms and office doors. The attacks have been demonstrated against FM11RF08S, a new variant of MIFARE Classic that was…
Read More