BleepingComputer.com

"Mortgage LoanDepot cyberattack impacts IT systems, payment portal."

Views expressed in this cybersecurity, cybercrime update are those of the reporters and correspondents.  Accessed on 07 January 2024, 2305 UTC.

Content and Source:  https://www.bleepingcomputer.com/ ("BleepingComputer.com").

Please click link or scroll down to read your selections.  Thanks for joining us today.

Russ Roberts (https://www.hawaiicybersecurityjournal.net).

LATEST ARTICLES

Mortgage firm loanDepot cyberattack impacts IT systems, payment portal

  • U.S. mortgage lender loanDepot has suffered a cyberattack that caused the company to take IT systems offline, preventing online payments against loans.

  • Hacker AI cybersecurity Artificial Intelligence
     
    SECURITY

Stealthy AsyncRAT malware attacks targets US infrastructure for 11 months

  • A campaign delivering the AsyncRAT malware to select targets has been active for at least the past 11 months, using hundreds of unique loader samples and more than 100 domains.

  • Kyber Quantum
     
    SECURITY

KyberSlash attacks put quantum encryption projects at risk

  • Multiple implementations of the Kyber key encapsulation mechanism for quantum-safe encryption, are vulnerable to a set of flaws collectively referred to as KyberSlash, which could allow the recovery of secret keys.

  • Cybersecurity
     
    DEALS

Start a new career with $100 off an ethical hacking bootcamp course

  • Malicious actors need to be beaten to the punch. Start the new year by learning how you can use hacking for ethical purposes across these 11 courses for $39.97, $103 off the $143 MSRP.

    • BLEEPINGCOMPUTER DEALS
      •  
    • JANUARY 07, 2024
      •  
    • 08:11 AM
      •  
    • Comment Count 0
  • Google Chrome
     
    SECURITY

Google: Malware abusing API is standard token theft, not an API issue

  • Google is downplaying reports of malware abusing an undocumented Google Chrome API to generate new authentication cookies when previously stolen ones have expired.

  • Twitter X logo flare
     
    SECURITY

X users fed up with constant stream of malicious crypto ads

  • Cybercriminals are abusing X advertisements to promote websites that lead to crypto drainers, fake airdrops, and other scams.

  • Microsoft Office
     
    DEALS

Start the new year organized with $220 off Microsoft Project and Visio

  • Get Microsoft Project 2021 Professional and Microsoft Visio 2021 Professional for $29.99 (reg. $249) in this StackCommerce deal.

    • BLEEPINGCOMPUTER DEALS
      •  
    • JANUARY 06, 2024
      •  
    • 08:19 AM
      •  
    • Comment Count 0
  • Key Decryptor bright
     
    SECURITY

The Week in Ransomware - January 5th 2024 - Secret decryptors

  • With it being the first week of the New Year and some still away on vacation, it has been slow with ransomware news, attacks, and new information.

  • Police arrest
     
    SECURITY

US charged 19 suspects linked to xDedic cybercrime marketplace

  • The U.S. Department of Justice announced the end of a transnational investigation into the dark web xDedic cybercrime marketplace, charging 19 suspects for their involvement in running and using the market's services.

  • Arrested handcuffs
     
    SECURITY

BreachForums admin jailed again for using a VPN, unmonitored PC

  • The administrator behind the notorious BreachForums hacking forum has been arrested again for breaking pretrial release conditions, including using an unmonitored computer and a VPN.

  • Hacker Vulnerability
     
    SECURITY

Hackers target Apache RocketMQ servers vulnerable to RCE attacks

  • Security researchers are detecting hundreds of IP addresses on a daily basis that scan or attempt to exploit Apache RocketMQ services vulnerable to a remote command execution flaw identified as CVE-2023-33246 and CVE-2023-37582.

  • Hackers cryptocurrency
     
    SECURITY, CRYPTOCURRENCY

Web3 security firm CertiK's X account hacked to push crypto drainer

  • The Twitter/X account of blockchain security firm CertiK was hijacked today to redirect the company's more than 343,000 followers to a malicious website pushing a cryptocurrency wallet drainer.

  • Memorial University
     
    SECURITY, EDUCATION

Memorial University recovers from cyberattack, delays semester start

  • The Memorial University of Newfoundland (MUN) continues to deal with the effects of a cyberattack that occurred in late December and postponed the start of classes in one campus.

  • Hacker
     
    DEALS

Update your white hat hacking skills with $70 off this training bundle

  • Aggressively pursuing flaws and problems is the most effective way to ensure networks and data are secure. This 10-course ethical hacking bundle shows you how for $39.99, $70 off the $110 MSRP.

    • BLEEPINGCOMPUTER DEALS
      •  
    • JANUARY 05, 2024
      •  
    • 07:19 AM
      •  
    • Comment Count 0
  • Casino Hacker Crypto
     
    SECURITY

Crypto wallet founder loses $125,000 to fake airdrop website

  • A crypto wallet service co-founder shares with the world his agony after losing $125,000 to a crypto scam. The startup CEO, who at the time believed he was on a legitimate cryptocurrency airdrop website, realized after his loss that the domain he'd went on was setup for the purposes of phishing unsuspecting users.

  • Ivanti
     
    SECURITY

Ivanti warns critical EPM bug lets hackers hijack enrolled devices

  • Ivanti fixed a critical remote code execution (RCE) vulnerability in its Endpoint Management software (EPM) that can let unauthenticated attackers hijack enrolled devices or the core server.

  • Hacker datacenter servers
     
    SECURITY

Russian hackers wiped thousands of systems in KyivStar attack

  • The Russian hackers behind a December breach of Kyivstar, Ukraine's largest telecommunications service provider, have wiped all systems on the telecom operator's core network.

  • NIST
     
    DEALS

Save $120 on this NIST cybersecurity risk management training

  • Risk management is a core discipline in both cybersecurity and general IT. This 26-hour course shows you what it is and how to use it for $39.99, $120 off the $160 MSRP.

    • BLEEPINGCOMPUTER DEALS
      •  
    • JANUARY 04, 2024
      •  
    • 02:11 PM
      •  
    • Comment Count 0
  • Twitter X rebranding
     
    SECURITY

Hackers hijack govt and business accounts on X for crypto scams

  • Hackers are increasingly targeting verified accounts on X (formerly Twitter) belonging to government and business profiles and marked with 'gold' and 'grey' checkmarks to promote cryptocurrency scams, phishing sites, and sites with crypto drainers.

  • Zeppelin
     
    SECURITY

Zeppelin ransomware source code sold for $500 on hacking forum

  • A threat actor announced on a cybercrime forum that they sold the source code and a cracked version of the Zeppelin ransomware builder for just $500.

VIEW MORE

Comments

Post a Comment

Please leave a comment about our recent post.

Popular posts from this blog

The Cyberwire Daily Briefing

Image
"Fortinet confirms breach of customer data." Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 15 September 2024, 1339 UTC. Content and Source:   https://thecyberwire.com/newsletters/daily-briefing/13/176 Please check link or scroll down to read your selections.  Thanks for joining us today. Russ Roberts (https://www.hawaiicybersecurityjournal.net). V13 | Issue 176 | 9.13.24 Daily Briefing for 09.13.24 Announcement Cloud Security in the Age of Generative AI. Artificial Intelligence is revolutionizing business, but it also introduces new risks. Join us on Wednesday, September 18th at 2pm EDT for a compelling live webinar on "Good vs. Evil: Cloud Security in the Age of Generative AI" with N2K CyberWire’s Dave Bittner and Sysdig’s Loris Degioanni.  Learn more and register now . Summary By the CyberWire staff At a glance. Fortinet confirms breach of customer data. Iran's Scarred Manticore deploys ne
Read more

BleepingComputer.com

Image
"Progress LoadMaster vulnerable to 10/10 severity RCE flaw." Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 08 September 2024, 1458 UTC. Content and Source:   https://www.bleepingcomputer.com/ Please check link or scroll down to read your selections. Thanks for joining us today. Russ Roberts (https://www.hawaiicybersecurityjournal.net). Latest Articles   Security Progress LoadMaster vulnerable to 10/10 severity RCE flaw Progress Software has issued an emergency fix for a maximum (10/10) severity vulnerability impacting its LoadMaster and LoadMaster Multi-Tenant (MT) Hypervisor products that allows attackers to remotely execute commands on the device. Bill Toulas   September 08, 2024   10:11 AM     0   Deals Get started learning about cybersecurity with this course bundle deal Take a real step towards a job in information security with this intro to cybersecurity. Get the 2024 Cybersecurity Essentials Bundl
Read more

SecurityWeek Briefing

Image
"New RAMBO attack allows air-gapped data theft." Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 10 September 2024, 0035 UTC. Content and Source:  https://www.securityweek.com Please check link or scroll down to read your selections.  Thanks for joining us today. Russ Roberts (https://www.hawaiicybersecurityjournal.net).   Monday, September 9 , 2024 Are you worried about unmanaged devices and apps? LATEST CYBERSECURITY HEADLINES New RAMBO Attack Allows Air-Gapped Data Theft Predator Spyware Resurfaces With Fresh Infrastructure Google Pushes Rust in Legacy Firmware to Tackle Memory Safety Flaws 300,000 Impacted by Data Breach at Car Rental Firm Avis One Million US Kaspersky Customers Transferred to Pango’s UltraAV Two Indicted in US for Running Dark Web Marketplaces Offering Stolen Information Critical SonicWall Vulnerability Possibly Exploited in Ransomware Attacks CISA Breaks Silence on Controversial ‘Airp
Read more