Security News > 2022 > June

The WatchDog hacking group is conducting a new cryptojacking campaign with advanced techniques for intrusion, worm-like propagation, and evasion of security software. The hacking group targets exposed Docker Engine API endpoints and Redis servers and can quickly pivot from one compromised machine to the entire network.

Atlassian has released security updates to address a critical zero-day vulnerability in Confluence Server and Data Center actively exploited in the wild to backdoor Internet-exposed servers. The zero-day affects all supported versions of Confluence Server and Data Center and allows unauthenticated attackers to gain remote code execution on unpatched servers.

"Our research reveals that digital twin deployments are being driven by both top and bottom lines, as well as safety, sustainability and brand reputation," the Reflecting Reality - Digital Twins: Adding Intelligence to the Real World study said. Operators can input changes into the digital twin and have those changes reflected in the real world or real-world inputs can be represented in the digital twin alerting operations teams to potential problems with shipments, machines, production, business processes and the like.

The U.S. Federal Trade Commission says Americans have reported losing more than $1 billion worth of cryptocurrency to scams between January 2021 and March 2022. The U.S. law enforcement agency said that tens of thousands of reports pointed to over $1.6 billion in cryptocurrency losses.

A new joint Cybersecurity Advisory has been issued by the Federal Bureau of Investigation, the Cybersecurity and Infrastructure Security Agency, the Department of the Treasury and the Financial Crimes Enforcement Network to raise awareness and provide information about the Karakurt Data Extortion Group. The Karakurt Data Extortion Group, also known as Karakurt Team and Karakurt Lair, is a threat actor threatening companies to publicly disclose internal stolen data unless they receive payment of a ransom, which ranges from $25,000 USD to $13,000,000 USD in Bitcoin, within a week.

As the world is waiting for Microsoft to push out a patch for CVE-2022-30190, aka "Follina", attackers around the world are exploiting the vulnerability in a variety of campaigns. Microsoft has described CVE-2022-30190 as a Microsoft Windows Support Diagnostic Tool remote code execution vulnerability, confirmed it affects an overwheming majority of Windows and Windows Server versions, and advised on a workaround to be implemented until a patch is ready.

The Microsoft Digital Crimes Unit has disrupted a spear-phishing operation linked to an Iranian threat actor tracked as Bohrium that targeted customers in the U.S., Middle East, and India. Bohrium has targeted organizations from a wide range of industry sectors, including tech, transportation, government, and education, according to Amy Hogan-Burney, the General Manager of Microsoft DCU. Microsoft has taken down 41 domains used in this campaign to establish a command and control infrastructure that enabled the attackers to deploy malicious tools designed to help them gain access to targets' devices and exfiltrate stolen information from compromised systems.

Conti reforms into several smaller groups, are they now more dangerous than ever? While this may seem like good news at first glance, the restructure into smaller cybercrime groups may make the members even more dangerous.

This Wi-Fi adapter and decentralized VPN make it safer to work remotely We may be compensated by vendors who appear on this page through methods such as affiliate links or sponsored partnerships. If you work remotely, it can be difficult to ensure you're always on a safe connection when you're working on public Wi-Fi. A more reliable, pay-once solution is the Deeper Connect Pico Decentralized VPN & Cybersecurity Hardware + Wi-Fi Adapter.

GitLab has released a critical security update for multiple versions of its Community and Enterprise Edition products to address eight vulnerabilities, one of which allows account takeover.Getting control over a GitLab account comes with severe consequences as hackers could gain access to developers' projects and steal source code.