The Hacker News
Rockwell Advises Disconnecting Internet-Facing ICS Devices Amid Cyber Threats
May 22^nd 2024 at 12:21

Rockwell Advises Disconnecting Internet-Facing ICS Devices Amid Cyber Threats

By: Newsroom

Rockwell Automation is urging its customers to disconnect all industrial control systems (ICSs) not meant to be connected to the public-facing internet to mitigate unauthorized or malicious cyber activity. The company said it's issuing the advisory due to "heightened geopolitical tensions and adversarial cyber activity globally." To that end, customers are required to take immediate

The Hacker News
Kinsing Hacker Group Exploits More Flaws to Expand Botnet for Cryptojacking
May 17^th 2024 at 17:20

Kinsing Hacker Group Exploits More Flaws to Expand Botnet for Cryptojacking

By: Newsroom

The cryptojacking group known as Kinsing has demonstrated an ability to continuously evolve and adapt, proving to be a persistent threat by swiftly integrating newly disclosed vulnerabilities to the exploit arsenal and expand its botnet. The findings come from cloud security firm Aqua, which described the threat actor as actively orchestrating illicit cryptocurrency mining

The Hacker News
Microsoft Outlook Flaw Exploited by Russia's APT28 to Hack Czech, German Entities
May 4^th 2024 at 08:38

Microsoft Outlook Flaw Exploited by Russia's APT28 to Hack Czech, German Entities

By: Newsroom

Czechia and Germany on Friday revealed that they were the target of a long-term cyber espionage campaign conducted by the Russia-linked nation-state actor known as APT28, drawing condemnation from the European Union (E.U.), the North Atlantic Treaty Organization (NATO), the U.K., and the U.S. The Czech Republic's Ministry of Foreign Affairs (MFA), in a statement, said some unnamed

The Hacker News
Massive Sign1 Campaign Infects 39,000+ WordPress Sites with Scam Redirects
March 22^nd 2024 at 11:27

Massive Sign1 Campaign Infects 39,000+ WordPress Sites with Scam Redirects

By: Newsroom

A massive malware campaign dubbed Sign1 has compromised over 39,000 WordPress sites in the last six months, using malicious JavaScript injections to redirect users to scam sites. The most recent variant of the malware is estimated to have infected no less than 2,500 sites over the past two months alone, Sucuri said in a report published this week. The attacks entail injecting rogue

The Hacker News
New IDAT Loader Attacks Using Steganography to Deploy Remcos RAT
February 26^th 2024 at 14:54

New IDAT Loader Attacks Using Steganography to Deploy Remcos RAT

By: The Hacker News

Ukrainian entities based in Finland have been targeted as part of a malicious campaign distributing a commercial remote access trojan known as Remcos RAT using a malware loader called IDAT Loader. The attack has been attributed to a threat actor tracked by the Computer Emergency Response Team of Ukraine (CERT-UA) under the moniker UAC-0184. "The attack, as part of the IDAT Loader, used

FreshRSS

Rockwell Advises Disconnecting Internet-Facing ICS Devices Amid Cyber Threats

Kinsing Hacker Group Exploits More Flaws to Expand Botnet for Cryptojacking

Microsoft Outlook Flaw Exploited by Russia's APT28 to Hack Czech, German Entities

Massive Sign1 Campaign Infects 39,000+ WordPress Sites with Scam Redirects

New IDAT Loader Attacks Using Steganography to Deploy Remcos RAT