Security News

Amazon seizes domains used in rogue Remote Desktop campaign to steal data
2024-10-25 16:41

Amazon has seized domains used by the Russian APT29 hacking group in targeted attacks against government and military organizations to steal Windows credentials and data using malicious Remote...

Undercover North Korean IT workers now steal data, extort employers
2024-10-17 18:01

North Korean IT professionals who trick Western companies into hiring them are stealing data from the organization's network and asking for a ransom to not leak it. [...]

New RAMBO Attack Uses RAM Radio Signals to Steal Data from Air-Gapped Networks
2024-09-09 17:19

A novel side-channel attack has been found to leverage radio signals emanated by a device's random access memory (RAM) as a data exfiltration mechanism, posing a threat to air-gapped networks. The...

Cybercriminals Deploy New Malware to Steal Data via Android’s Near Field Communication (NFC)
2024-08-23 19:35

A new malware called NGate allows cybercriminals to steal near field communication data from Android phones via sophisticated social engineering. The data is relayed to the fraudsters before being...

Hackers use F5 BIG-IP malware to stealthily steal data for years
2024-06-17 17:37

A group of suspected Chinese cyberespionage actors named 'Velvet Ant' are deploying custom malware on F5 BIG-IP appliances to gain a persistent connection to the internal network and steal data. Using the compromised F5 BIG-IP devices, the threat actors could stealthily steal sensitive customer and financial information from the company for three years without being detected.

Ukraine says hackers abuse SyncThing tool to steal data
2024-06-06 20:43

The attack utilizes the legitimate file-syncing software SyncThing in combination with malware called SPECTR. Vermin's apparent motive is to steal sensitive information from military organizations. SyncThing establishes a peer-to-peer connection for data synchronization, which is used for stealing documents and account passwords.

Ukraine says hackers abuse SyncThing data sync tool to steal data
2024-06-06 20:43

The attack utilizes the legitimate file-syncing software SyncThing in combination with malware called SPECTR. Vermin's apparent motive is to steal sensitive information from military organizations. SyncThing establishes a peer-to-peer connection for data synchronization, which is used for stealing documents and account passwords.

Snowflake denies miscreants melted its security to steal data from top customers
2024-05-31 21:44

Infosec house claims Ticketmaster, Santander hit via cloud storage Infosec analysts at Hudson Rock believe Snowflake was compromised by miscreants who used that intrusion to steal data on hundreds...

Hackers steal data of 2 million in SQL injection, XSS attacks
2024-02-06 07:00

A threat group named 'ResumeLooters' has stolen the personal data of over two million job seekers after compromising 65 legitimate job listing and retail sites using SQL injection and cross-site scripting attacks. ResumeLooters primarily employs SQL injection and XSS to breach targeted sites, mainly job-seeking and retail shops.

Citrix Bleed leveraged to steal data of 35+ million Comcast Xfinity customers
2023-12-20 10:31

Telecommunications company Comcast has confirmed a breach that exposed personal information of more than 35.8 million of Xfinity customers. CVE-2023-4966 - an information disclosure vulnerability in Citrix NetScaler ADC/Gateway devices - was disclosed on October 10, when Citrix issued a patch to fix the vulnerability.