01 September 2022

CYBER INSECURITIES: Data Breeches, Active Exploitations, Hacks, Flaws and Hidden Malware

 Let's start somewhere - in a place far far-away...Wow!


www.bleepingcomputer.com

Hackers hide malware in James Webb telescope images

Bill Toulas
7 - 9 minutes

Hackers hide malware in James Webb telescope images

"Threat analysts have spotted a new malware campaign dubbed ‘GO#WEBBFUSCATOR’ that relies on phishing emails, malicious documents, and space images from the James Webb telescope to spread malware.

The malware is written in Golang, a programming language that is gaining popularity among cybercriminals because it is cross-platform (Windows, Linux, Mac) and offers increased resistance to reverse engineering and analysis.

In the recent campaign discovered by researchers at Securonix, the threat actor drops payloads that are currently not marked as malicious by antivirus engines on the VirusTotal scanning platform..


During testing, Securonix observed the threat actors running arbitrary enumeration commands on its test systems, a standard first reconnaissance step.

The researchers note that the domains used for the campaign were registered recently, the oldest one on May 29, 2022.

Securonix has provided a set of indicators of compromise (IoCs) that includes both network and host-based indicators."

READ MORE


  • Google Chrome bug lets sites write to clipboard without asking

    Chrome version 104 accidentally introduced a bug that removes the user requirement to approve clipboard writing events from websites they visit.

  • Ragnar Locker ransomware claims attack on Portugal's flag airline

    The Ragnar Locker ransomware gang has claimed an attack on the flag carrier of Portugal, TAP Air Portugal, disclosed by the airline last Friday. 

  • Microsoft found TikTok Android flaw that let hackers hijack accounts

    Microsoft found and reported a high severity flaw in the TikTok Android app in February that allowed attackers to "quickly and quietly" take over accounts with one click by tricking targets into clicking a specially crafted malicious link.

  • Eliminate distractions while using the web with this $40 tool

    Refocus your attention when surfing the web with a five-year subscription to Control D, on sale for $39.99 or 66 percent off.

    • BleepingComputer Deals
    • August 31, 2022
    • 07:16 AM
    • Comment 0
  • Ukraine takes down cybercrime group hitting crypto fraud victims

    The National Police of Ukraine (NPU) took down a network of call centers used by a cybercrime group focused on financial scams and targeting victims of cryptocurrency scams under the guise of helping them recover their stolen funds.

  • Hackers hide malware in James Webb telescope images

    Threat analysts have spotted a new malware campaign dubbed 'GO#WEBBFUSCATOR' that relies on phishing emails, malicious documents, and space images from the James Webb telescope to spread malware.

  • Russian streaming platform confirms data breach affecting 7.5M users

    Russian media streaming platform 'START' (start.ru) has confirmed rumors of a data breach impacting millions of users.

  • Get a lifetime subscription to Babbel for just $199 until Sep 18

    If you want to learn a new language or two or three, then Babbel may be your best bet. And particularly right now since, for a very limited time, the cost of a lifetime subscription has dropped significantly to just $199.

    • BleepingComputer Deals
    • August 30, 2022
    • 02:17 PM
    • Comment 0
  • Chinese hackers target Australian govt with ScanBox malware

    China-based threat actors have been targeting Australian government agencies and wind turbine fleets in the South China Sea by directing select individuals to a fake impersonating an Australian news media outlet.

  • Microsoft Azure outage knocks Ubuntu VMs offline after buggy update

    Microsoft Azure customers' virtual machines (VMs) running Ubuntu 18.04 have been taken offline by an ongoing outage caused by a faulty systemd update.

  • Chrome extensions with 1.4 million installs steal browsing data

    Threat analysts at McAfee found five Google Chrome extensions that steal track users' browsing activity. Collectively, the extensions have been downloaded  more then 1.4  million times.

  • No comments:

    Kyiv’s Counter-Disinformation Unit: Google Maps reveals locations of Ukrainian military systems - especially since Russian groups had started sharing these images

    The head of Ukraine's Center for Countering Disinformation, Andrii Kovalenko, announced that the company has promised to fix this issue....