Security News

Russian hackers exploiting Outlook bug to hijack Exchange accounts
2023-12-04 20:14

Microsoft's Threat Intelligence team issued a warning earlier today about the Russian state-sponsored actor APT28 actively exploiting the CVE-2023-23397 Outlook flaw to hijack Microsoft Exchange accounts and steal sensitive information. The tech giant also highlighted the exploitation of other vulnerabilities with publicly available exploits in the same attacks, including CVE-2023-38831 in WinRAR and CVE-2021-40444 in Windows MSHTML. Outlook flaw exploitation background.

Russian Hacker Vladimir Dunaev Pleads Guilty for Creating TrickBot Malware
2023-12-02 07:52

A Russian national has been found guilty in connection with his role in developing and deploying a malware known as TrickBot, the U.S. Department of Justice (DoJ) announced. Vladimir Dunaev, 40,...

US readies prison cell for another Russian Trickbot developer
2023-12-01 15:08

Another member of the Trickbot malware crew now faces a lengthy prison sentence amid US law enforcement's ongoing search for its leading members. Russian national Vladimir Dunaev, 40, faces a maximum sentence of 35 years in prison for his involvement in the now-shuttered Trickbot malware, which was often used to deploy ransomware.

Ukraine says it hacked Russian aviation agency, leaks data
2023-11-27 18:23

Ukraine's intelligence service, operating under the Defense Ministry, claims they hacked Russia's Federal Air Transport Agency, 'Rosaviatsia,' to expose a purported collapse of Russia's aviation sector. Rosaviatsia is the agency responsible for overseeing the civil aviation industry in Russia, keeping records of flight or emergency incidents.

Leader of pro-Russia DDoS crew Killnet unmasked by Russian state media
2023-11-27 11:02

Also: Qakbot on verge of permadeath, Australia can't deliver on ransom payment ban (yet), and Justin Sun's very bad month Infosec in Brief Cybercriminals working out of Russia go to great lengths...

Konni Group Using Russian-Language Malicious Word Docs in Latest Attacks
2023-11-23 14:46

A new phishing attack has been observed leveraging a Russian-language Microsoft Word document to deliver malware capable of harvesting sensitive information from compromised Windows hosts. The...

Russian hackers use Ngrok feature and WinRAR exploit to attack embassies
2023-11-19 16:14

NDSC says that the Russian hackers used a Ngrok free static domain to access the command and control server hosted on their Ngrok instance. A report from Google in October notes that the security issue was exploited by Russian and Chinese state hackers to steal credentials and other sensitive data, as well as to establish persistence on target systems.

Russian Cyber Espionage Group Deploys LitterDrifter USB Worm in Targeted Attacks
2023-11-18 06:32

Russian cyber espionage actors affiliated with the Federal Security Service (FSB) have been observed using a USB propagating worm called LitterDrifter in attacks targeting Ukrainian entities....

Russian Hackers Linked to 'Largest Ever Cyber Attack' on Danish Critical Infrastructure
2023-11-16 06:06

Russian threat actors have been possibly linked to what's been described as the "largest cyber attack against Danish critical infrastructure," in which 22 companies associated with the operation...

U.S. Takes Down IPStorm Botnet, Russian-Moldovan Mastermind Pleads Guilty
2023-11-15 15:34

The U.S. government on Tuesday announced the takedown of the IPStorm botnet proxy network and its infrastructure, as the Russian and Moldovan national behind the operation pleaded guilty. "The...