Operation Celestial Force: Ongoing Malware Campaign Linked to Pakistani Threat Actors A persistent malware campaign known as Operation Celestial Force has been traced back to actors linked to Pakistan, with activities dating as far back as 2018. Cisco Talos has identified the campaign’s reliance on two primary malware tools: GravityRAT,…
Pro-Ukrainian hacktivist group DumpForums has announced it breached Dr.Web, a prominent Russian cybersecurity firm, allegedly stealing over 10 terabytes of sensitive information. This theft reportedly includes internal projects, client databases, and access to critical infrastructure. The breach was revealed by DumpForums in a Telegram post on October 8, 2024, following…
Investigations Underway Following Data Breach at Ward Transport & Logistics NEWTOWN, Pa., October 8, 2024 (GLOBE NEWSWIRE) – Edelson Lechtzin LLP has initiated an investigation into potential data privacy violations involving Ward Transport & Logistics Corporation (Ward Transport). The firm’s inquiry follows reports received on or around October 2, 2024,…
For years, the focus of corporate cybersecurity has been on protecting the perimeter of systems, creating a clear division between secured internal environments and the threatening outside world. Organizations invested in robust firewalls and advanced detection systems, banking on the belief that preventing unauthorized access from external sources was sufficient…
Recent cybersecurity incidents have spotlighted a malware strain known as NiceRAT, which is being extensively deployed by threat actors to commandeer infected devices into a botnet. This wave of attacks primarily targets users in South Korea, utilizing deceptive tactics that position the malware as cracked software, including altered versions of…
MoneyGram Confirms Data Breach Following Cyberattack MoneyGram has acknowledged that it suffered a significant loss of sensitive customer information during a recent cyberattack targeting its systems. In an official notification letter sent to affected customers and made available on the company’s website, MoneyGram disclosed that hackers were able to infiltrate…
SolarWinds has issued patches to mitigate a severe security vulnerability in its Web Help Desk software that could allow attackers to execute arbitrary code on affected systems. The vulnerability, identified as CVE-2024-28986 with a CVSS score of 9.8, is characterized as a deserialization issue. The company, in its advisory, indicated…
Compromised Websites Facilitate New Windows Backdoor Threat: BadSpace Recent developments in cybersecurity have uncovered a concerning trend where legitimate but compromised websites are being exploited to deliver a malicious Windows backdoor known as BadSpace. This operation is particularly deceptive as it is presented under the guise of fictitious browser updates,…
ADT, a prominent provider of home and small business security solutions, has reported a cybersecurity breach that occurred due to the exploitation of compromised credentials from a third-party business partner. In a Form 8-K filing with the Securities and Exchange Commission (SEC) made on Monday, ADT disclosed that this cyberattack…
