Tag: security
Salesforce platforms are being cracked open for data theft – FBI warns of UNC6040 and UNC6395 IOCs
Two threat groups, UNC6040 and UNC6395, are actively targeting Salesforce accounts to steal sensitive data UNC6395 exploits integrations like the Salesloft Drift chatbot, while UNC6040 uses phone-based social engineering to impersonate IT staff and gain access The FBI warns that follow-up extortion attacks are often carried out by ShinyHunters, linked…
Read More
Another massive DDoS attack that reached 1.5 Bpps has been thwarted
FastNetMon detected record 1.5 billion packet per second DDoS attack Traffic came from hijacked IoT devices and MikroTik routers across 11,000 networks FastNetMon warns ISP level filtering is essential to stop future large scale floods A distributed denial-of-service attack targeting a DDoS mitigation vendor somewhere in Western Europe has been…
Read More
Vietnam creditors hit by cyberattack – sensitive data at risk
Vietnam confirms cyberattack on national credit data center is being investigated CIC says systems still operational despite hacker intrusion into creditor database Authorities suspect Shiny Hunters group is behind the system breach Vietnam’s National Credit Information Center (CIC), which operates under the State Bank of Vietnam, has confirmed a cyberattack…
Read More
US solar highway infrastructure may contain hidden malicious tech, officials warn
Undocumented cellular radios were found in power inverters and battery systems used in US highway infrastructure Concerns include remote tampering, data theft, and sabotage Many affected devices were made in China, reigniting tensions over cybersecurity and foreign tech, with China denying any wrongdoing Certain power inverters and battery management systems…
Read More
Keep an eye on your Meta Business account, these fake extensions could steal your credentials
Vietnamese-speaking hackers are using fake browser extensions to steal Facebook Business and Ads accounts Bitdefender found two campaigns promoting a malware-laced extension called SocialMetrics Pro through deceptive ads and tutorials The malware exfiltrates session data to Telegram bots, enabling account theft and resale for malvertising. Vietnamese hackers are once again…
Read More
Apple issues customer warning after four spyware campaigns discovered targeting devices
Apple issued four waves of alerts in 2025 warning users of spyware attacks targeting high-profile individuals CERT-FR confirmed the use of advanced tools like Pegasus and Predator, exploiting zero-day and zero-click flaws Apple notified compromised users via device and iCloud, while patching at least seven critical vulnerabilities From early March…
Read More