02 Jun Critical Atlassian Confluence zero-day actively used in attacks Hackers are actively exploiting a new Atlassian Confluence zero-day vulnerability tracked as CVE-2022-26134 to install web shells, with no fix available at this time. […]
02 Jun Windows 10 KB5014023 update fixes slow copying, app crashes Microsoft has released optional cumulative update previews for Windows 10 versions 20H2, 21H1, and 21H2, with fixes for slow file copying and applications crashing due to Direct3D issues. […]
02 Jun Top 10 Android banking trojans target apps with 1 billion downloads The ten most prolific Android mobile banking trojans target 639 financial applications that collectively have over one billion downloads on the Google Play Store. […]
02 Jun Evil Corp switches to LockBit ransomware to evade sanctions The Evil Corp cybercrime group has now switched to deploying LockBit ransomware on targets’ networks to evade sanctions imposed by the U.S. Treasury Department’s Office of Foreign Assets Control (OFAC). […]
02 Jun Ransomware gang now hacks corporate websites to show ransom notes A ransomware gang is taking extortion to a new level by publicly hacking corporate websites to publicly display ransom notes. […]
02 Jun Clipminer malware gang stole $1.7M by hijacking crypto payments Threat analysts have discovered a large operation of a new cryptocurrency mining malware called Clipminer that brought its operators at least $1.7 million from transaction hijacking. […]
02 Jun Foxconn confirms ransomware attack disrupted production in Mexico Foxconn electronics manufacturer has confirmed that one of its Mexico-based production plants has been impacted by a ransomware attack in late May. […]
01 Jun New Windows Search zero-day added to Microsoft protocol nightmare A new Windows Search zero-day vulnerability can be used to automatically open a search window containing remotely-hosted malware executables simply by launching a Word document. […]
01 Jun Former OpenSea head of product charged with NFT insider trading Nathaniel Chastain, a former product manager at OpenSea, the largest online non-fungible token (NFT) marketplace, has been arrested and charged by the U.S. Department of Justice (DOJ) with NFT insider trading. […]
01 Jun Hundreds of Elasticsearch databases targeted in ransom attacks A campaign targeting poorly secured Elasticsearch databases has deleted their contents and dropped ransom notes on 450 instances, demanding a payment of $620 to give them back their indexes, totaling a demand of $279,000. […]