Cybersecurity News %%page%% - BlazeGuar

23 Feb

Good Guys Retailer Alerts Customers of Potential Data Breach

Have the Bad Guys done a number on the Good Guys? The Good Guys has become the latest company to reveal that its customers have been affected by a data breach that occurred at My Rewards - a 3rd part loyalty program provider. The breach, which occurred in August 2021, exposed limited customer data such as names, addresses, phone numbers and email addresses. In some cases, an...

23 Feb

Experts Warn of Increasing Cyberattacks Targeting Zoho ManageEngine Products

in Cyber Security, Cybersecurity

Comments

On February 23, 2023, multiple threat actors have been observed exploiting a critical security vulnerability impacting several Zoho ManageEngine products since January 20, 2023. Tracked as CVE-2022-47966 (CVSS score: 9.8), the remote code execution flaw allows a complete takeover of the susceptible systems by unauthenticated attackers. Martin Zugec of Bitdefender's cybersecurity firm revealed in a technical advisory that the vulnerability "allows unauthenticated remote code execution due...

23 Feb

China-Linked Cyber Espionage Group Targeting South American Nations

in Advanced Persistent Threats, Cyber Security, Cyberattacks, Cybersecurity, Remote Access Security

Comments

China-based cyberespionage actor DEV-0147 has been observed compromising diplomatic targets in South America, according to Microsoft’s Security Intelligence team.

The initiative is “a notable expansion of the group’s data exfiltration operations that traditionally targeted gov’t agencies and think tanks in Asia and Europe,” the team tweeted on Monday.

DEV-0147’s attacks in South America included post-exploitation activity involving the abuse of on-premises identity infrastructure for reconnaissance...

22 Feb

Okta Report Reveals Increase in Adoption of Security Tools

in Cyber Security, Cybersecurity, Security

Comments

A report from identity and access management (IAM) vendor Okta says that zero trust and new types of security tooling are in increasingly widespread use, as businesses tackle a changing security landscape....

21 Feb

APT37 Malware Deployed by North Korea to Target South Korea

in Cyber Security, Cybersecurity

Comments

The North Korea-linked threat actor tracked as APT37 has been linked to a piece of new malware dubbed M2RAT in attacks targeting its southern counterpart, suggesting continued evolution of the group's features and tactics. APT37, also tracked under the monikers Reaper, RedEyes, Ricochet Chollima, and ScarCruft, is linked to North Korea's Ministry of State Security (MSS) unlike the Lazarus and...

20 Feb

Financial Cybercriminals Deploy Ransomware and Clipper Malware

in Cyber Security, Cybersecurity, Ransomware

Comments

A new financially motivated campaign that commenced in December 2022 has seen the unidentified threat actor behind it deploying a novel ransomware strain dubbed MortalKombat and a clipper malware known as Laplas. Cisco Talos said it "observed the actor scanning the internet for victim machines with an exposed remote desktop protocol (RDP) port 3389." The attacks, per the cybersecurity company,...

19 Feb

CISA Releases Decryptor Tool to Combat New ESXiArgs Ransomware Variant

in Cyber Security, Cybersecurity

Comments

After the U.S. Cybersecurity and Infrastructure Security Agency (CISA) released a decryptor for affected victims to recover from ESXiArgs ransomware attacks, the threat actors have bounced back with an updated version that encrypts more data. The emergence of the new variant was reported by a system administrator on an online forum, where another participant stated that files larger than 128MB...

18 Feb

The Rising Risks of Cryptocurrency Use: Exploring Enigma, Vector, and TgToxic

in Cyber Security, Cybersecurity

Comments

Suspected Russian threat actors have been targeting Eastern European users in the crypto industry with fake job opportunities as bait to install information-stealing malware on compromised hosts. The attackers "use several highly obfuscated and under-development custom loaders in order to infect those involved in the cryptocurrency industry with Enigma stealer," Trend Micro researchers Aliakbar...

17 Feb

VMware ESXi Server Ransomware Attack Evolves, Recovery Script Released

in Cyber Security, Cybersecurity, Ransomware, Security, Servers

Comments

The FBI and CISA have released a recovery script for the global ESXiArgs ransomware campaign targeting VMware ESXi servers, but the ransomware has since been updated to elude former attempts at remediation....

16 Feb

Wireless IIoT Device Vulnerabilities Pose Risk to Critical Infrastructure

in Cyber Security, Cybersecurity

Comments

A set of 38 security vulnerabilities has been uncovered in wireless industrial internet of things (IIoT) devices from four different vendors that could pose a significant attack surface for threat actors looking to exploit operational technology (OT) environments. "Threat actors can exploit vulnerabilities in Wireless IIoT devices to gain initial access to internal OT networks," Israeli...

Cybersecurity

Good Guys Retailer Alerts Customers of Potential Data Breach

Experts Warn of Increasing Cyberattacks Targeting Zoho ManageEngine Products

China-Linked Cyber Espionage Group Targeting South American Nations

Okta Report Reveals Increase in Adoption of Security Tools

APT37 Malware Deployed by North Korea to Target South Korea

Financial Cybercriminals Deploy Ransomware and Clipper Malware

CISA Releases Decryptor Tool to Combat New ESXiArgs Ransomware Variant

VMware ESXi Server Ransomware Attack Evolves, Recovery Script Released

Wireless IIoT Device Vulnerabilities Pose Risk to Critical Infrastructure

Cloud Backup Feature for TOTP Codes Now Available on Google Authenticator App

Accounts left vulnerable to permanent compromise due to Google OAuth bug

How Fancy Bear Infected Routers Using an Old SNMP Bug

AI-generated YouTube videos used to distribute difficult-to-detect malware loader

Navigation

Connect with us on social