Browsing Category
Incident Response
64 posts
New Linux Variant of FASTCash Malware Targets Payment Switches in ATM Heists
North Korean threat actors have been observed using a Linux variant of a known malware family called FASTCash to steal funds as part of a financially-motivated campaign.
The malware is "installed on payment switches within compromised networks that handle card transactions for the means of facilitating the unauthorized withdrawal of cash from ATMs," a security researcher who goes by HaxRob said.
MoneyGram says customer information stolen during September attack
MoneyGram confirmed on Monday night that customer information was stolen during a cyberattack last month that caused international outrage after customers could not send funds.
ADT says hacker stole encrypted internal employee data after compromising business partner
Home security giant ADT said in a regulatory filing on Monday that a hacker compromised the systems of a third-party business partner and used it to steal encrypted internal employee data.
Southeast Asian cyber-fraud industry ‘outpacing’ law enforcement with new tools: UN
Transnational criminal groups in Southeast Asia are incorporating new tools like artificial intelligence and deepfake technology to expand their cyber fraud capabilities, the United Nations Office on Drugs and Crime said Monday.
Ukraine bans Telegram on state and military devices
Ukraine has banned the Telegram messaging app on official devices used by state and security officials, military personnel and employees of critical infrastructure facilities. The decision came amid concerns that the Russia-founded app poses a threat to Ukraine’s national security.
DOJ indicts Chinese national for spear phishing campaign against NASA, FAA, Air Force
The Justice Department indicted a Chinese national for attempting to hack several aviation agencies across the U.S. government in order to steal software and code created by the National Aeronautics and Space Administration (NASA) and others.
Feds sentence 12 crypto thieves behind SIM swaps, home invasions
A dozen people involved in a string of armed cryptocurrency robberies have been sentenced this month — including a Florida man handed a 47-year jail term in relation to the brutal home invasions.
Google Fixes GCP Composer Flaw That Could’ve Led to Remote Code Execution
A now-patched critical security flaw impacting Google Cloud Platform (GCP) Composer could have been exploited to achieve remote code execution on cloud servers by means of a supply chain attack technique called dependency confusion.
The vulnerability has been codenamed CloudImposer by Tenable Research.
"The vulnerability could have allowed an attacker to hijack an internal software dependency
Ivanti Warns of Active Exploitation of Newly Patched Cloud Appliance Vulnerability
Ivanti has revealed that a newly patched security flaw in its Cloud Service Appliance (CSA) has come under active exploitation in the wild.
The high-severity vulnerability in question is CVE-2024-8190 (CVSS score: 7.2), which allows remote code execution under certain circumstances.
"An OS command injection vulnerability in Ivanti Cloud Services Appliance versions 4.6 Patch 518 and before allows
Largest crypto exchange in Indonesia pledges to reimburse users after $22 million theft
A major cryptocurrency exchange in Southeast Asia has paused operations after $22 million in coins was stolen this week.