Tag: Hacking

Hikvision cameras could be remotely hacked due to critical flaw (Pierluigi Paganini, Security Affairs)

Hikvision cameras could be remotely hacked due to critical flawSecurity Affairs

A zero-day flaw allows to run arbitrary commands on macOS systems (Pierluigi Paganini, Security Affairs)

Security researchers disclosed a new zero-day flaw in Apple’s macOS Finder that can allow attackers to run arbitrary commands on Macs A zero-day flaw allows...

Apache OpenOffice is currently impacted by a remote code execution flaw (Pierluigi Paganini, Security Affairs)

Apache OpenOffice (AOO) is currently impacted by a remote code execution flaw, tracked as CVE-2021-33035, that has yet to be fixed in the official...

Large phishing campaign targets EMEA and APAC governments (Pierluigi Paganini, Security Affairs)

Security researchers uncovered a large phishing campaign targeting multiple government departments in APAC and EMEA countries Large phishing campaign targets EMEA and APAC governmentsSecurity Affairs

Pakistani man sentenced to 12 years of prison for his role in AT&T hacking scheme (Pierluigi Paganini)

A Pakistani national has been sentenced to 12 years of prison in the US for his role in a hacking scheme against the telecom...

Cybersecurity – This bug can permanently break iPhone WiFi connectivity (Pierluigi Paganini, Security Affairs)

A new bug in iPhone can permanently break users’ WiFi by disabling it, the issue could be triggered by simply connecting to a rogue...

Cybersecurity – North Korean APT group Kimsuky allegedly hacked South Korea’s atomic research agency KAERI (Pierluigi Paganini, Security Affairs)

North Korea-linked APT group Kimsuky allegedly breached South Korea’s atomic research agency KAERI by exploiting a VPN vulnerability. South Korean representatives declared on Friday that...

Cybersecurity – RedFoxtrot operations linked to China’s PLA Unit 69010 due to bad opsec (Pierluigi Paganini, Security Affairs)

Experts attribute a series of cyber-espionage campaigns dating back to 2014, and focused on gathering military intelligence, to China-linked Unit 69010. Experts from Recorded Future’s...

APT/Hacking/Malware – China-linked APT groups targets orgs via Pulse Secure VPN devices (Security Affairs)

Pierluigi Paganini Researchers from FireEye warn that China-linked APT groups continue to target Pulse Secure VPN devices to compromise networks. https://securityaffairs.co/wordpress/118358/hacking/pulse-secure-vpn-china-apt.html

APT/Hacking/Malware – Microsoft details new sophisticated spear-phishing attacks from NOBELIUM (Security Affairs)

Pierluigi Paganini Microsoft experts uncovered a wide-scale malicious email campaign operated by NOBELIUM, the threat actor behind SolarWinds hack. https://securityaffairs.co/wordpress/118352/apt/spear-phishing-attacks-nobelium.html

Security/Hacking – 13 flaws in Nagios IT Monitoring Software pose serious risk to orgs (Security Affairs)

Pierluigi Paganini Researchers disclosed details about 13 vulnerabilities in the Nagios network monitoring application that could be exploited for malicious purposes. https://securityaffairs.co/wordpress/118207/hacking/nagios-it-monitoring-flaws.html

(USA/Kroger/Personal Data/Hacking) Kroger warns pharmacy customers’ personal data may have been stolen in hack (The Hill)

ZACK BUDRYK Some Kroger pharmacy customers’ data may have been stolen after hackers accessed a vendor’s file-transfer service, the grocery store chain said  Friday. https://thehill.com/policy/cybersecurity/539825-kroger-warns-pharmacy-customers-personal-data-may-have-been-stolen-in

(Cyber Warfare/Hacking) The US Government is going to respond to the SolarWinds hack very soon (Security Affairs)

Pierluigi Paganini https://securityaffairs.co/wordpress/114840/cyber-warfare-2/us-government-response-solarwinds.html

(Data Breach/Hacking) Sequoia Capital Venture Capital firm discloses a data breach (Security Affairs)

Pierluigi Paganini https://securityaffairs.co/wordpress/114831/hacking/sequoia-capital-data-breach.html

(Hacking/Security) SonicWall releases second firmware updates for SMA 100 vulnerability (Security Affairs)

Pierluigi Paganini https://securityaffairs.co/wordpress/114818/security/sonicwall-firmware-updates-sma-100.html

(Cyber Crime/Hacking) Hackers abuse Plex Media servers for DDoS amplification attacks (Security Affairs)

Pierluigi Paganini https://securityaffairs.co/wordpress/114249/cyber-crime/ddos-amplification-plex-media.html