article thumbnail

Security Affairs newsletter Round 436 by Pierluigi Paganini – International edition

Security Affairs

US CISA added critical Apache RocketMQ flaw to its Known Exploited Vulnerabilities catalog Ragnar Locker gang leaks data stolen from the Israel’s Mayanei Hayeshua hospital North Korea-linked threat actors target cybersecurity experts with a zero-day Zero-day in Cisco ASA and FTD is actively exploited in ransomware attacks Nation-state actors (..)

Security 327
article thumbnail

Security Affairs newsletter Round 342

Security Affairs

Italy’s Antitrust Agency fines Apple and Google for aggressive practices of data acquisition HAEICHI-II: Interpol arrested +1,000 suspects linked to various cybercrimes IKEA hit by a cyber attack that uses stolen internal reply-chain emails Marine services provider Swire Pacific Offshore (SPO) hit by Clop ransomware Threat actors target crypto and (..)

Security 251
Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

article thumbnail

Data of 106 million visitors to Thailand leaked online

Security Affairs

The expert discovered the unsecured database on August 22, 2021, and immediately notified the Thai authorities, he noticed that some of the data stored in the archive date back ten years. While the IP address of the database is still public, the database was taken offline and has been replaced with a honeypot.

Honeypots 363
article thumbnail

SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 14

Security Affairs

Rhadamanthys Stealer Adds Innovative AI Feature in Version 0.7.0

Honeypots 296
article thumbnail

B1txor20 Linux botnet use DNS Tunnel and Log4J exploit

Security Affairs

The malware was first spotted on February 9, 2022, when 360Netlab’s honeypot system captured an unknown ELF file that was spreading by exploiting the Log4J vulnerability. Researchers from Qihoo 360’s Netlab have discovered a new backdoor used to infect Linux systems and include them in a botnet tracked as B1txor20.

Honeypots 362
article thumbnail

Security Affairs newsletter Round 306

Security Affairs

Magecart hackers hide captured credit card data in JPG file Microsoft releases On-premises Mitigation Tool (EOMT) tool to fix ProxyLogon issues New Mirai variant appears in the threat landscape China-linked hackers target telcos to steal 5G secrets Data Breaches Tracker monitor unsecured ElasticSearch servers online FBI warns of PYSA Ransomware attacks (..)

Security 223
article thumbnail

UK newspaper The Telegraph exposed a 10TB database with subscriber data

Security Affairs

. “Evidence suggests the data was left unprotected for about three weeks, since September 1st. We do not know if any unauthorized parties accessed it during that time, but our honeypot experiments show attackers can find and steal data from unprotected databases in just a few hours after they’re exposed.”

Honeypots 300