The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a significant Linux kernel vulnerability to its Known Exploited Vulnerabilities (KEV) catalog, highlighting the threat of active exploitation. This flaw, designated as CVE-2024-1086, has been assigned a high CVSS score of 7.8 and pertains to a critical use-after-free issue within…
Fraud Management & Cybercrime, Ransomware Emerging Ransomware Group Utilizes Rust-Based Tools in New Attack Strategies Prajeet Nair (@prajeetspeaks) • October 23, 2024 Image: Shutterstock A newly formed ransomware group has emerged with advanced capabilities, reportedly developing tools designed to bypass traditional security measures. This burgeoning threat is distinguished by its…
OpenSSH Vulnerability Exposes Critical Risk to Linux Systems In a significant development for cybersecurity, the maintainers of OpenSSH have issued urgent security updates addressing a severe vulnerability that may allow unauthenticated remote code execution with root-level access on glibc-based Linux systems. This vulnerability, designated CVE-2024-6387 and dubbed "regreSSHion," resides within…
A recent incident highlighted on the CentOS subreddit reveals a growing threat to server security, as an administrator reported systems infected with a cryptocurrency hijacker known as perfcc and perfctl. The administrator became aware of the compromise following alerts from their monitoring setup indicating 100% CPU usage, which raised immediate…
Cyber Breach Alert: DumpForums Claims Dr.Web Data Theft In a significant cybersecurity incident, the notorious hacking forum known as DumpForums has announced that it has orchestrated a major data breach against Dr.Web, a well-established cybersecurity firm based in Russia. The attackers assert they have successfully extracted an astounding 10 terabytes…
New Ransomware Variant Cicada3301 Targets SMBs with Sophisticated Techniques Cybersecurity researchers have recently unveiled a new strain of ransomware identified as Cicada3301, which bears resemblance to the now-defunct BlackCat operation (also known as ALPHV). This emerging ransomware poses a significant threat, particularly to small and medium-sized businesses (SMBs), according to…
A recent report from Group-IB has drawn attention to the ongoing cyber campaign led by North Korea’s Lazarus Group, referred to as the “Eager Crypto Beavers” initiative. This group utilizes advanced strategies, including deceptive job postings and malicious video conferencing software, to spread malware effectively. The Lazarus Group, infamous for…
