Bleeping Computer: Cybersecurity News

GitLab security update fixes critical account take over flaw.

Views expressed in this cybersecurity-cyber crime update are those of the reporters and correspondents.

Accessed on 03 June 2022, 2026 UTC.

Content provided by "BleepingComputer.com" via https://feedly.com.

Source:  https://feedly.com/i/subscription/feed%2Fhttp%3A%2F%2Fwww.bleepingcomputer.com%2Ffeed%2F

Please click link or scroll down to read your selections.

Thanks for joining us today.

Russ Roberts

https://www.hawaiicybersecurityjournal.net

https://paper.li/RussellRoberts (machine learning, artificial intelligence, IoT, and information security)

BleepingComputer

51K followers58 articles per week#security#tech

35

MOST POPULAR

GitLab security update fixes critical account take over flaw

200+by Bill Toulas / 6h

GitLab has released a critical security update for multiple versions of its Community and Enterprise Edition products to address eight vulnerabilities, one of which allows account takeover. [...]

Atlassian fixes Confluence zero-day widely exploited in attacks

100+by Sergiu Gatlan / 2h

Atlassian has released security updates to address a critical zero-day vulnerability in Confluence Server and Data Center actively exploited in the wild to backdoor Internet-exposed servers. [...]

Americans report losing over $1 billion to cryptocurrency scams

Crypto $1B 2021 FTC

•

39by Sergiu Gatlan / 2h

The U.S. Federal Trade Commission (FTC) says Americans have reported losing more than $1 billion worth of cryptocurrency to scams between January 2021 and March 2022. [...]

TODAY

Novartis says no sensitive data was compromised in cyberattack

by Lawrence Abrams / 43min

Pharmaceutical giant Novartis says no sensitive data was compromised in a recent cyberattack by the Industrial Spy data-extortion gang. [...]

WatchDog hacking group launches new Docker cryptojacking campaign

by Bill Toulas / 2h

​The WatchDog hacking group is conducting a new cryptojacking campaign with advanced techniques for intrusion, worm-like propagation, and evasion of security software. [...]

Microsoft disrupts Bohrium hackers’ spear-phishing operation

32by Sergiu Gatlan / 4h

The Microsoft Digital Crimes Unit (DCU) has disrupted a spear-phishing operation linked to an Iranian threat actor tracked as Bohrium that targeted customers in the U.S., Middle East, and India. [...]

YESTERDAY

Critical Atlassian Confluence zero-day actively used in attacks

200+by Lawrence Abrams / 18h

Hackers are actively exploiting a new Atlassian Confluence zero-day vulnerability tracked as CVE-2022-26134 to install web shells, with no fix available at this time. [...]

Windows 10 KB5014023 update fixes slow copying, app crashes

Microsoft Windows 11

•

100+by Sergiu Gatlan / 22h

Microsoft has released optional cumulative update previews for Windows 10 versions 20H2, 21H1, and 21H2, with fixes for slow file copying and applications crashing due to Direct3D issues. [...]

Top 10 Android banking trojans target apps with 1 billion downloads

300+by Bill Toulas / 23h

The ten most prolific Android mobile banking trojans target 639 financial applications that collectively have over one billion downloads on the Google Play Store. [...]

Evil Corp switches to LockBit ransomware to evade sanctions

Evil Corp US Sanctions

•

100+by Sergiu Gatlan / 23h

The Evil Corp cybercrime group has now switched to deploying LockBit ransomware on targets' networks to evade sanctions imposed by the U.S. Treasury Department's Office of Foreign Assets Control (OFAC). [...]

Ransomware gang now hacks corporate websites to show ransom notes

100+by Lawrence Abrams / 1d

A ransomware gang is taking extortion to a new level by publicly hacking corporate websites to publicly display ransom notes. [...]

Microsoft blocks Polonium hackers from using OneDrive in attacks

500+by Sergiu Gatlan / 1d

Microsoft said it blocked a Lebanon-based hacking group it tracks as Polonium from using the OneDrive cloud storage platform for data exfiltration and command and control while targeting and compromising Israelian organizations. [...]

Chinese LuoYu hackers deploy cyber-espionage malware via app updates

100+by Sergiu Gatlan / 1d

A Chinese-speaking hacking group known as LuoYu is infecting victims WinDealer information stealer malware deployed by switching legitimate app updates with malicious payloads in man-on-the-side attacks. [...]

Conti ransomware targeted Intel firmware for stealthy attacks

100+by Bill Toulas / 1d

Researchers analyzing the leaked chats of the notorious Conti ransomware operation have discovered that teams inside the Russian cybercrime group were actively developing firmware hacks. [...]

Clipminer malware gang stole $1.7M by hijacking crypto payments

Clipminer $1.7M Crypto

•

87by Bill Toulas / 1d

Threat analysts have discovered a large operation of a new cryptocurrency mining malware called Clipminer that brought its operators at least $1.7 million from transaction hijacking. [...]