Category: security
US government warns of “unsophisticated” hackers targeting oil and gas systems
CISA warns of ‘unsophisticated’ attacks targeting oil and gas industries ‘Basic and elementary’ techniques are being used Critical infrastructure is increasingly at risk from cyberattacks The US Cybersecurity and Infrastructure Security Agency (CISA) has released a warning outlining an increase in ‘unsophisticated’ and ‘basic’ cyberattacks targeting Industrial Control Systems and…
Read More
DDoS-for-hire operation taken down in major police sting
Europol announced shutting down multiple stresser/booter services in the EU Four people were arrested in Poland Law enforcement in The Netherlands, Germany, the US, and Poland, participated in Operation PowerOFF Law enforcement has dismantled a major DDoS-for-hire operation, and arrested four individuals suspected of running it. In a press release,…
Read More
This dastardly phishing attack has stolen nearly a million credit cards – here’s how to stay safe
Around 600 threat actors are using Darcula, experts warn They have managed to steal more than 800,000 credit card details in less than a year Mobile devices are prime targets for phishing nowadays Darcula, an infamous Phishing-as-a-Service (PhaaS) kit, has helped hundreds of its users steal almost a million credit…
Read More
Hundreds of top ecommerce sites under attack following Magento supply chain flaw
Sansec found 21 Magento extensions with malicious code The extensions belong to three companies, who claim everything’s in order Users are advised to take immediate action Hundreds of ecommerce websites, including at least one major player, behemoth, have been compromised after poisoned Magento extensions woke up from a six-year slumber.…
Read More
Gmail servers hijacked by malicious PyPI packages to spread havoc – here’s how to stay safe
Socket found seven malicious packages on PyPI The packages were abusing Gmail and WebSocket They were removed from the platform Several malicious PyPI packages were recently observed abusing Gmail to exfiltrate stolen sensitive data and communicate with their operators. Cybersecurity researchers Socket, who found the packages, reported them to the…
Read More
TeleMessage, the Signal-esque app used by the Trump administration, has been hacked
Hacker claims they broke into messaging service TeleMessage TeleMessage is a clone of Signal, a popular privacy-oriented chat app used by the likes of JD Vance Hacker stole some files from the platform, but no US government data was taken TeleMessage, an instant communications app used by some US Government…
Read More