BleepingComputer.com

Iranian hackers exposed in a highly targeted espionage campaign.

Views expressed in this cybersecurity-cyber espionage update are those of the reporters and correspondents.

Accessed on 13 May 2022, 1324 UTC.

Content provided by "BleepingComputer.com" via https://feedly.com.

Source:  https://feedly.com/i/subscription/feed%2Fhttp%3A%2F%2Fwww.bleepingcomputer.com%2Ffeed%2F

Please click link or scroll down to read your selections.

Thanks for joining us today.

Russ Roberts

https://hawaiicybersecurityjournal.blogspot.com

https://paper.li/RussellRoberts (machine learning, artificial intelligence, IoT, and information security)

BleepingComputer

50K followers59 articles per week#security#tech

MOST POPULAR

NVIDIA has open-sourced its Linux GPU kernel drivers

Nvidia Open Source GPU

•

1Kby Bill Toulas / 22h

NVIDIA has published the source code of its kernel modules for the R515 driver, using a dual licensing model that combines the GPL and MIT licenses, making the modules legally re-distributable. [...]

UK cybersecurity center sent 33 million alerts to companies

NCSC UK Scams 2021

•

400+by Bill Toulas / 2d

The NCSC (National Cyber Security Centre) in the UK reports having served 33 million alerts to organizations signed up for its "Early Warning" service. Additionally, the government agency has dealt with a record number of online scams in 2021, removing more than 2.7 million from the internet. [...]

New IceApple exploit toolset deployed on Microsoft Exchange servers

IceApple ME Microsoft

•

400+by Ionut Ilascu / 2d

Security researchers have found a new post-exploitation framework that they dubbed IceApple, deployed mainly on Microsoft Exchange servers across a wide geography. [...]

YESTERDAY

Iranian hackers exposed in a highly targeted espionage campaign

8 TTPs

•

100+by Bill Toulas / 9h

Threat analysts have spotted a novel attack attributed to the Iranian hacking group known as APT34 group or Oilrig, who targeted a Jordanian diplomat with custom-crafted tools. [...]

Ukrainian imprisoned for selling access to thousands of PCs

Ukrainian Thousands

•

23by Sergiu Gatlan / 15h

Glib Oleksandr Ivanov-Tolpintsev, a 28-year-old from Ukraine, was sentenced today to 4 years in prison for stealing thousands of login credentials per week and selling them on a dark web marketplace. [...]

Eternity malware kit offers stealer, miner, worm, ransomware tools

24by Bill Toulas / 17h

Threat actors have launched the 'Eternity Project,' a new malware-as-a-service where threat actors can purchase a malware toolkit that can be customized with different modules depending on the attack being conducted. [...]

Zyxel silently fixes critical RCE vulnerability in firewall products

Command and Scripting Interpreter (Enterprise T1059)

•

64by Bill Toulas / 18h

•

CVE-2022-30525

Threat analysts who discovered a vulnerability affecting multiple Zyxel products report that the network equipment company fixed it via a silent update pushed out two weeks ago. [...]

BPFdoor: Stealthy Linux malware bypasses firewalls for remote access

2 TTPs

•

300+by Ionut Ilascu / 20h

•

BPFdoor Linux Systems

A recently discovered backdoor malware called BPFdoor has been stealthily targeting Linux and Solaris systems without being noticed for more than five years. [...]

Historic Hotel Stay, Complementary Emotet Exposure included

33by Sponsored by InQuest / 22h

Historic Hotel of America serving up modern malware to their guests. Why securing your inbox with more than just anti-malware engines is needed to prevent cybercrime attacks. [...]

MAY 11

Microsoft: May Windows updates cause AD authentication failures

CVE-2022-26923 & 2 others

•

300+by Sergiu Gatlan / 1d

Microsoft is investigating a known issue causing authentication failures for some Windows services after installing updates released during the May 2022 Patch Tuesday. [...]

Windows 11 to show suggested actions when copying data to the clipboard

Microsoft Windows 11

•

42by Lawrence Abrams / 1d

Microsoft is testing a new 'Suggested Actions' feature in Windows 11 Dev builds where the operating system suggests actions you can take with data you copy into the clipboard. [...]

Windows 11 KB5013943 update causes 0xc0000135 application errors

200+by Lawrence Abrams / 1d

Windows 11 users are receiving 0xc0000135 errors when attempting to launch applications after installing the recent Windows 11 KB5013943 cumulative update. [...]

US charges hacker for breaching brokerage accounts, securities fraud

US Hacker Brokerage

•

33by Bill Toulas / 1d

The U.S. Department of Justice (DoJ) has charged Idris Dayo Mustapha for a range of cybercrime activities that took place between 2011 and 2018, resulting in financial losses estimated to over $5,000,000. [...]

Microsoft: Windows 10 20H2 has reached end of service

Microsoft Windows Update

•

200+by Sergiu Gatlan / 1d

Microsoft says multiple editions of Windows 10 20H2 and Windows 10 1909 have reached their end of service (EOS) on this month's Patch Tuesday, on May 10, 2022. [...]

HP fixes bug letting attackers overwrite firmware in over 200 models

200+by Bill Toulas / 1d

HP has released BIOS updates today to fix two high-severity vulnerabilities affecting a wide range of PC and notebook products, which might allow arbitrary code execution. [...]

New stealthy Nerbian RAT malware spotted in ongoing attacks

Keylogging (Enterprise T1056.001)

•

200+by Bill Toulas / 1d

•

Nerbian RAT COVID-19

A new remote access trojan called Nerbian RAT has been discovered that includes a rich set of features, including the ability to evade detection and analysis by researchers. [...]

CISA tells federal agencies to fix actively exploited F5 BIG-IP bug

100+by Sergiu Gatlan / 1d

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a new security vulnerability to its list of actively exploited bugs, the critical severity CVE-2022-1388 affecting BIG-IP network devices. [...]

Our Medical Devices' Open Source Problem – What Are the Risks?

15 New Open Source

•

21by Sponsored by Cybellum / 1d

There is no doubt that open source powers our development processes, enabling software developers to build high quality, innovative products faster than ever before. But OSS also comes with its own set of risks that device manufacturers must address while leveraging its many advantages. [...]

FBI, CISA, and NSA warn of hackers increasingly targeting MSPs

CISA MSP Customers

•

300+by Sergiu Gatlan / 2d

Members of the Five Eyes (FVEY) intelligence alliance today warned managed service providers (MSPs) and their customers that they're increasingly targeted by supply chain attacks. [...]

Bitter cyberspies target South Asian govts with new malware

4 TTPs

•

59by Bill Toulas / 2d

New activity has been observed from Bitter, an APT group focused on cyberespionage, targeting the government of Bangladesh with new malware with remote file execution capabilities. [...]

Microsoft fixes Windows Direct3D issue behind app crashes

Microsoft Windows Update

•

63by Sergiu Gatlan / 2d

Microsoft has addressed a known issue causing apps using Direct3D 9 to experience issues after installing April 2022 cumulative updates, including crashes and errors on systems using certain GPUs. [...]