Hackers Breach ESET’s Israel Partner, Sending Phishing Emails with Data Wipers
In a recent cybersecurity breach, hackers infiltrated the email server of Comsecure, ESET’s exclusive distributor in Israel, to launch a phishing campaign aimed at Israeli businesses. Disguised as legitimate antivirus software, the attackers used data wipers, malicious software designed to erase files and corrupt systems, posing a destructive threat.
A 25-year-old Alabama man, Eric Council Jr., was arrested on Thursday for allegedly hacking into the U.S. Securities and Exchange Commission's (SEC) X account earlier this year as part of a scheme to manipulate bitcoin prices, U.S. prosecutors revealed.
Intel’s China unit issued a statement on Thursday addressing recent accusations from a prominent Chinese cybersecurity association, which has called for a security review of the U.S. chipmaker’s products sold in the country. The call for review comes at a time when concerns over supply chain security and foreign technology in critical infrastructure are growing within China.
Recent advancements in security research have shed light on critical vulnerabilities affecting Intel and AMD processors. These findings have prompted both chip manufacturers to issue responses to separate studies that target their products' trusted execution environments (TEEs). This article explores these significant developments, focusing on the implications for data security in computing.
The Iran-linked cyberespionage group OilRig (also known as APT34, Cobalt Gypsy, Earth Simnavaz, and Helix Kitten) has been ramping up its cyber operations against government entities across the Gulf region, cybersecurity firm Trend Micro reports. This advanced persistent threat (APT) group, active since at least 2014, continues to target the energy sector and other critical infrastructures in alignment with Iranian government interests.
Internet Archive Breach: 31 Million Users' Data Compromised in Massive Hack
The Internet Archive’s "Wayback Machine," a cornerstone for online digital preservation, has experienced a significant data breach. A threat actor compromised the website and stole an authentication database containing 31 million unique records. The breach was first made public through a JavaScript alert displayed on the compromised archive.org website.
In February 2024, CrowdStrike launched a new InterProcess Communication (IPC) Template Type with its Falcon sensor version 7.1, introducing 21 input fields. Their rapid response mechanism utilizes content delivered via Channel Files. However, the interpreter for Channel File 291 only accounted for 20 values. On July 19, 2024, when two additional IPC Template Instances were deployed, the attempt to access the 21st value led to an out-of-bounds memory read, ultimately causing system crashes.
Hackers Breach ESET’s Israel Partner, Sending Phishing Emails with Data Wipers In a recent cybersecurity breach, hackers infiltrated the e...
