Security News

New 'Karakurt' hacking group focuses on data theft and extortion
2021-12-10 11:00

The hacking group calls itself 'Karakurt' and is a financially motivated threat actor that has ramped up its cyber-attacks in Q3 2021. The actors focus almost exclusively on data exfiltration and extortion and are not using ransomware to lock their victims' files.

Over 300,000 MikroTik Devices Found Vulnerable to Remote Hacking Bugs
2021-12-10 03:53

At least 300,000 IP addresses associated with MikroTik devices have been found vulnerable to multiple remotely exploitable security vulnerabilities that have since been patched by the popular supplier of routers and wireless ISP devices. "This has made MikroTik devices a favorite among threat actors who have commandeered the devices for everything from DDoS attacks, command-and-control, traffic tunneling, and more."

XE Group exposed for eight years of hacking, credit card theft
2021-12-08 15:12

A relatively unknown group of Vietnamese hackers calling themselves 'XE Group' has been linked to eight years of for-profit hacking and credit card skimming. The threat actors are thought to be responsible for the theft of thousands of credit cards per day, mainly from restaurants, non-profit, art, and travel platforms.

Russian hacking group uses new stealthy Ceeloader malware
2021-12-06 15:00

The Nobelium hacking group continues to breach government and enterprise networks worldwide by targeting their cloud and managed service providers and using a new custom "Ceeloader" malware. While Nobelium is an advanced hacking group using custom malware and tools, they still leave traces of activity that researchers can use to analyze their attacks.

Israel Bans Sales of Hacking and Surveillance Tools to 65 Countries
2021-12-01 00:08

Israel's Ministry of Defense has dramatically restricted the number of countries to which cybersecurity firms in the country are allowed to sell offensive hacking and surveillance tools to, cutting off 65 nations from the export list. In curtailing the exports, the move effectively makes it harder for local cybersecurity firms to market their software to countries with totalitarian regimes or with a track record of perpetrating human abuses.

Learn in-demand ethical hacking skills in your own time for $11 during this Black Friday sale
2021-11-27 05:00

Since cybercrimes are becoming more frequent and severe almost every day, ethical hacking skills are always much in demand. In "Learn Python & Ethical Hacking From Scratch," alone, you'll learn many valuable skills.

RedCurl Corporate Espionage Hackers Return With Updated Hacking Tools
2021-11-20 07:54

A corporate cyber-espionage hacker group has resurfaced after a seven-month hiatus with new intrusions targeting four companies this year, including one of the largest wholesale stores in Russia, while simultaneously making tactical improvements to its toolset in an attempt to thwart analysis. "In every attack, the threat actor demonstrates extensive red teaming skills and the ability to bypass traditional antivirus detection using their own custom malware," Group-IB's Ivan Pisarev said.

Microsoft Warns about 6 Iranian Hacking Groups Turning to Ransomware
2021-11-17 23:59

Nation-state operators with nexus to Iran are increasingly turning to ransomware as a means of generating revenue and intentionally sabotaging their targets, while also engaging in patient and persistent social engineering campaigns and aggressive brute force attacks. No less than six threat actors affiliated with the West Asian country have been discovered deploying ransomware to achieve their strategic objectives, researchers from Microsoft Threat Intelligence Center revealed, adding "These ransomware deployments were launched in waves every six to eight weeks on average."

Microsoft warns of the evolution of six Iranian hacking groups
2021-11-16 18:11

The Microsoft Threat Intelligence Center has presented an analysis of the evolution of several Iranian threat actors at the CyberWarCon 2021, and their findings show increasingly sophisticated attacks. Since September 2020, Microsoft has been tracking six Iranian hacking groups deploying ransomware and exfiltrating data to cause disruption and destruction for victims.

Save an extra 15% off training in ethical hacking with this pre-Black Friday sale deal
2021-11-12 21:40

Develop the necessary skills and use the tools to be an ethical hacker through this 120-hour comprehensive course bundle. Penetration testers are another word for ethical hackers, and they're incredibly in demand.