Security News

Cybersecurity researchers have shed light on a short-lived DarkGate malware campaign that leveraged Samba file shares to initiate the infections. Palo Alto Networks Unit 42 said the activity spanned the months of March and April 2024, with the infection chains using servers running public-facing Samba file shares hosting Visual Basic Script and JavaScript files.

Webinar Threat actors are always looking for that easy way in by testing weak spots, and user identities are one of their favourite targets. While additional security layers can ward off these attacks, what's the cost to the end user experience?

AT&T has admitted that cyberattackers grabbed a load of its data for the second time this year, and if you think the first haul was big, you haven't seen anything: This latest one includes data on "Nearly all" AT&T wireless customers - and those served by mobile virtual network operators running on AT&T's network. Some customers could be at risk because "a subset" of records contained in that online storage included one or more cell tower identification numbers, allowing snoops to potentially roughly geolocate a customer whose data was stolen in the attack.

Snowflake? Snowflake AT&T has admitted that cyberattackers grabbed a load of its data for the second time this year, and if you think the first haul was big you haven't seen anything: This one...

The Living Off The Land technique is an example of a stealthy attack vector cyber attackers use to avoid detection. LOTL attacks are often called fileless attacks because threat actors use existing tools on the victim's endpoint, unlike traditional malware attacks that require customized programs.

AT&T is warning of a massive data breach where threat actors stole the call logs for approximately 109 million customers, or nearly all of its mobile customers, from an online database on the company's Snowflake account. In a Friday morning Form 8-K filling with the SEC, AT&T says that the stolen data contains the call and text records of nearly all AT&T mobile clients and customers of mobile virtual network operators made from May 1 to October 31, 2022 and on January 2, 2023.

Two Russian-born Australian citizens have been arrested and charged in the country for spying on behalf of Russia as part of a "Complex" law enforcement operation codenamed BURGAZADA. This includes a 40-year-old woman, an Australian Defence Force Army Private, and her husband, a 62-year-old self-employed laborer. They have been charged with one count each of preparing for an espionage offense, which carries a maximum penalty of 15 years' imprisonment.

Hackers leveraging stolen Snowflake account credentials have stolen records of calls and texts made by "Nearly all" of AT&T's cellular customers from May to October 2022, the company has confirmed. "Based on our investigation, the compromised data includes files containing AT&T records of calls and texts of nearly all of AT&T's cellular customers, customers of mobile virtual network operators using AT&T's wireless network, as well as AT&T's landline customers who interacted with those cellular numbers between May 1, 2022 - October 31, 2022," AT&T detailed.

Personal information of over 2,3 million individuals has been stolen by attackers as part of the massive data grab via compromised Snowflake accounts without MFA protection, Advance Auto Parts has confirmed by filing notices with the attorney general offices in several US states. In May, the company has notified the US Securities and Exchange Commission of the compromise, without naming Snowflake - a cloud-based data storage and analytics company base in the US, as the third party hosting the data.

The NSA has a video recording of a 1982 lecture by Adm. Grace Hopper titled "Future Possibilities: Data, Hardware, Software, and People." The agency is refusing to release it.