Belarusian Cybercriminal ‘JP Morgan’ Arrested and Extradited by UK’s NCA
38-year-old Belarusian cybercriminal known as ‘JP Morgan’ arrested and extradited by UK’s National Crime Agency for involvement in global cybercrime operation, including pioneering ransomware-as-a-service model and exploit kits.
View full story…
Critical Vulnerabilities in Microsoft Azure’s Health Bot Service Promptly Addressed by Microsoft
Tenable Research identified critical vulnerabilities in Microsoft Azure’s Health Bot service, allowing for privilege escalation and access to cross-tenant resources, promptly mitigated by Microsoft.
View full story…
CERTUA Issues Warning About Phishing Campaigns Targeting Government Bodies in Ukraine
CERTUA warns of two phishing campaigns targeting government bodies in Ukraine, involving ANONVNC and PicassoLoader malware, compromising over 100 computers and posing a threat to specialists and contractors.
View full story…
NIST Releases First Post-Quantum Cryptographic Standards
NIST has released the first three post-quantum cryptographic standards, developed by IBM Research, to enhance global cybersecurity against future attacks using quantum technologies.
View full story…
South Korea’s People Power Party Pushes for New Cybersecurity Law
South Korea’s People Power Party advocates for new cybersecurity law in response to recent breaches of military and intelligence data by North Korean hackers.
View full story…
FBI Disrupts Radar Ransomware Group in International Operation
FBI, UK, and Germany law enforcement agencies successfully dismantle the Radar ransomware group, also known as “Dispossessor,” targeting corporate victims across multiple countries with double extortion techniques.
View full story…
Latest Cybernews
United Nations Adopts Global Cybercrime Treaty Despite Controversy
The United Nations Convention Against Cybercrime, aimed at addressing criminal activities involving computer technology, was unanimously approved by nearly 200 member states after three years of negotiations, sparking debates and concerns about its potential impact on human rights and privacy.
View full story…
Phishing Attacks Surge in 2023 Due to AI and PhaaS
Phishing attacks in 2023 increased by 40%, impacting 94% of businesses, with threat actors using AI and PhaaS to create and execute campaigns.
View full story…
DARPA AI Cyber Challenge Awards $14M to Semifinalists for Developing Cyber Reasoning System
Seven semifinalists of the DARPA AI Cyber Challenge at DEFCON 32 were awarded $2 million each to develop a cyber reasoning system capable of identifying and patching vulnerabilities in open-source software, showcasing the potential of AI systems in enhancing cybersecurity measures.
View full story…
Russian Government and IT Organizations Targeted by EastWind Cyberattack
A targeted cyberattack known as EastWind has been detected by Kaspersky researchers, utilizing spear-phishing emails with RAR archive attachments containing Trojans like GrewApacha and CloudSorcerer, as well as the newly discovered PlugY implant, posing significant risks to data security and control.
View full story…
Iran, Russia, and China Identified by Microsoft for Election Interference
Iran, Russia, and China are actively engaging in online tactics to interfere with the upcoming US presidential election, including cyber-attacks, fake news sites, and propaganda.
View full story…
Researchers Identify Security Vulnerabilities in Solarman and Deye Photovoltaic System Management Platforms
Cybersecurity researchers have discovered security vulnerabilities in Solarman and Deye platforms, including hard-coded accounts, information leaks, and unauthorized token generation, potentially allowing attackers to take control of accounts and disrupt power generation.
View full story…
Russian-German National Extradited to US for Export Control Violations
Arthur Petrov, a dual Russian and German national, extradited to the US from Cyprus to face charges related to smuggling sensitive US-sourced electronics for Russian military use.
View full story…
Security Vulnerability in Windows CLFSsys Driver Leads to Blue Screen of Death
A security vulnerability in the Common Log File System (CLFSsys) driver of Windows allows for a denial of service-induced Blue Screen of Death due to improper validation of input data quantities.
View full story…