390,000 WordPress credentials compromised via phishing, GitHub repos

More than 390,000 credentials to WordPress sites were compromised in a year-long supply chain attack that leveraged a phishing campaign that targeted thousands of academic researchers and a large number of trojanized GitHub repos, mainly fake proof-of-concept (POC) exploits. Datadog Security Labs said in a Dec. 13 post that these methods were designed to deliver […]
390,000 WordPress credentials compromised via phishing, GitHub repos

More than 390,000 credentials to WordPress sites were compromised in a year-long supply chain attack that leveraged a phishing campaign that targeted thousands of academic researchers and a large number of trojanized GitHub repos, mainly fake proof-of-concept (POC) exploits. Datadog Security Labs said in a Dec. 13 post that these methods were designed to deliver […]
BADBOX malware operation sinkholed by Germany

Android devices compromised by BADBOX, which include phones, tablets, media players, and digital picture frames, could be leveraged not only for residential proxy service purposes that enable stealthy internet traffic routing but also to establish Gmail and WhatsApp accounts. Source link
Rhode Island subjected to potentially widespread data breach

Infiltration of Byte Federal’s systems exposed individuals’ full names, birthdates, physical addresses, email addresses, phone numbers, Social Security numbers, government-issued IDs, photos, and transaction activity, according to the firm’s data breach notice, which emphasized that there has been no indication suggesting misuse of such data. Source link
Over 240K affected by SRP Federal Credit Union hack

Infiltration of Byte Federal’s systems exposed individuals’ full names, birthdates, physical addresses, email addresses, phone numbers, Social Security numbers, government-issued IDs, photos, and transaction activity, according to the firm’s data breach notice, which emphasized that there has been no indication suggesting misuse of such data. Source link
Cyberattack hits LKQ’s Canadian business unit

BleepingComputer reports that LKQ Corporation, a leading U.S. automotive replacement parts provider, had operations of a Canadian business unit disrupted for weeks following a cyberattack against its IT systems last month. Immediate efforts to investigate and contain the intrusion, which has not yet been claimed by any known threat actor, have been conducted by LKQ Corporation […]
Kadokawa reportedly gives in to ransomware demand

Aside from making the cryptocurrency transaction within the month of the intrusion, Kadokawa also had its executives’ email communications with BlackSuit regarding the receipt of the ransom shared by an anonymous source to Kyodo News. Source link
More limited US-China technology deal signed

Such a new agreement, which does not cover critical and emerging tech development, “advances U.S. interests through newly established and strengthened provisions on transparency and data reciprocity,” said the State Department. Source link
Talking the language of sustainability
Interview Ahead of the recent World Communication Awards, we spoke with Sandra Klackenborn, Head of Sustainability at Arelion, to discuss the growing energy challenge and how the industry must do more to tackle the issue collaboratively The growing energy challenge With networks spanning hundreds or even thousands of miles, it is no surprise that energy […]
Novel Glutton backdoor deployed by Winnti hackers

Intrusions with the new sophisticated ELF-based PHP backdoor Glutton have been launched by Chinese state-backed hacking operation Winnti, also known as APT41, against U.S. and Chinese organizations, especially those in social security, web app development, and IT services, as well as other threat actors as part of an ongoing attack campaign that has been running for more […]
© Copyright 2024 CNB Tel. All rights reserved