Serious Unpatched Vulnerability Uncovered in Popular Belkin Wemo Smart Plugs

Serious Unpatched Vulnerability Uncovered in Popular Belkin Wemo Smart Plugs,

The second generation version of Belkin’s Wemo Mini Smart Plug has been found to contain a buffer overflow vulnerability that could be weaponized by a threat actor to inject arbitrary commands remotely.
The issue, assigned the identifier CVE-2023-27217, was discovered and reported to Belkin on January 9, 2023, by Israeli IoT security company Sternum, which reverse-engineered the device and

,

The second generation version of Belkin’s Wemo Mini Smart Plug has been found to contain a buffer overflow vulnerability that could be weaponized by a threat actor to inject arbitrary commands remotely.
The issue, assigned the identifier CVE-2023-27217, was discovered and reported to Belkin on January 9, 2023, by Israeli IoT security company Sternum, which reverse-engineered the device and

, ,
https://thehackernews.com/2023/05/serious-unpatched-vulnerability.html

State-Sponsored Sidewinder Hacker Group’s Covert Attack Infrastructure Uncovered

State-Sponsored Sidewinder Hacker Group’s Covert Attack Infrastructure Uncovered

,

Cybersecurity researchers have unearthed previously undocumented attack infrastructure used by the prolific state-sponsored group SideWinder to strike entities located in Pakistan and China.
This comprises a network of 55 domains and IP addresses used by the threat actor, cybersecurity companies Group-IB and Bridewell said in a joint report shared with The Hacker News.
« The identified phishing

,

Cybersecurity researchers have unearthed previously undocumented attack infrastructure used by the prolific state-sponsored group SideWinder to strike entities located in Pakistan and China.
This comprises a network of 55 domains and IP addresses used by the threat actor, cybersecurity companies Group-IB and Bridewell said in a joint report shared with The Hacker News.
« The identified phishing

, ,
https://thehackernews.com/2023/05/state-sponsored-sidewinder-hacker.html

U.S. Offers $10 Million Bounty for Capture of Notorious Russian Ransomware Operator

U.S. Offers $10 Million Bounty for Capture of Notorious Russian Ransomware Operator,

A Russian national has been charged and indicted by the U.S. Department of Justice (DoJ) for launching ransomware attacks against « thousands of victims » in the country and across the world.
Mikhail Pavlovich Matveev (aka Wazawaka, m1x, Boriselcin, and Uhodiransomwar), the 30-year-old individual in question, is alleged to be a « central figure » in the development and deployment of LockBit, Babuk,

,

A Russian national has been charged and indicted by the U.S. Department of Justice (DoJ) for launching ransomware attacks against « thousands of victims » in the country and across the world.
Mikhail Pavlovich Matveev (aka Wazawaka, m1x, Boriselcin, and Uhodiransomwar), the 30-year-old individual in question, is alleged to be a « central figure » in the development and deployment of LockBit, Babuk,

, ,
https://thehackernews.com/2023/05/us-offers-10-million-bounty-for-capture.html

Apple vante les mérites de l’App Store en matière de sécurité

Apple vante les mérites de l’App Store en matière de sécurité,

Apple App Store

L’entreprise, bientôt contrainte d’accepter d’autres boutiques d’applications tierces, met en avant les avantages de l’App Store en matière de sécurité : en 2022, ses différentes équipes auraient empêché près de 2 milliards de dollars de « transactions potentiellement frauduleuses ».

,

Apple App Store

L’entreprise, bientôt contrainte d’accepter d’autres boutiques d’applications tierces, met en avant les avantages de l’App Store en matière de sécurité : en 2022, ses différentes équipes auraient empêché près de 2 milliards de dollars de « transactions potentiellement frauduleuses ».

, ,
https://www.01net.com/actualites/apple-vante-les-merites-de-lapp-store-en-matiere-de-securite.html

China’s Mustang Panda Hackers Exploit TP-Link Routers for Persistent Attacks

China’s Mustang Panda Hackers Exploit TP-Link Routers for Persistent Attacks

,

The Chinese nation-state actor known as Mustang Panda has been linked to a new set of sophisticated and targeted attacks aimed at European foreign affairs entities since January 2023.
An analysis of these intrusions, per Check Point researchers Itay Cohen and Radoslaw Madej, has revealed a custom firmware implant designed explicitly for TP-Link routers.
« The implant features several malicious

,

The Chinese nation-state actor known as Mustang Panda has been linked to a new set of sophisticated and targeted attacks aimed at European foreign affairs entities since January 2023.
An analysis of these intrusions, per Check Point researchers Itay Cohen and Radoslaw Madej, has revealed a custom firmware implant designed explicitly for TP-Link routers.
« The implant features several malicious

, ,
https://thehackernews.com/2023/05/chinas-mustang-panda-hackers-exploit-tp.html

Inside Qilin Ransomware: Affiliates Take Home 85% of Ransom Payouts

Inside Qilin Ransomware: Affiliates Take Home 85% of Ransom Payouts,

Ransomware affiliates associated with the Qilin ransomware-as-a-service (RaaS) scheme earn anywhere between 80% to 85% of each ransom payment, according to new findings from Group-IB.
The cybersecurity firm said it was able to infiltrate the group in March 2023, uncovering details about the affiliates’ payment structure and the inner workings of the RaaS program following a private conversation

,

Ransomware affiliates associated with the Qilin ransomware-as-a-service (RaaS) scheme earn anywhere between 80% to 85% of each ransom payment, according to new findings from Group-IB.
The cybersecurity firm said it was able to infiltrate the group in March 2023, uncovering details about the affiliates’ payment structure and the inner workings of the RaaS program following a private conversation

, ,
https://thehackernews.com/2023/05/inside-qilin-ransomware-affiliates-take.html

Cyolo Product Overview: Secure Remote Access to All Environments

Cyolo Product Overview: Secure Remote Access to All Environments,

Operational technology (OT) cybersecurity is a challenging but critical aspect of protecting organizations’ essential systems and resources. Cybercriminals no longer break into systems, but instead log in – making access security more complex and also more important to manage and control than ever before. In an effort to solve the access-related challenges facing OT and critical infrastructure

,

Operational technology (OT) cybersecurity is a challenging but critical aspect of protecting organizations’ essential systems and resources. Cybercriminals no longer break into systems, but instead log in – making access security more complex and also more important to manage and control than ever before. In an effort to solve the access-related challenges facing OT and critical infrastructure

, ,
https://thehackernews.com/2023/05/cyolo-product-overview-secure-remote.html

CopperStealer Malware Crew Resurfaces with New Rootkit and Phishing Kit Modules

CopperStealer Malware Crew Resurfaces with New Rootkit and Phishing Kit Modules,

The threat actors behind the CopperStealer malware resurfaced with two new campaigns in March and April 2023 that are designed to deliver two novel payloads dubbed CopperStealth and CopperPhish.
Trend Micro is tracking the financially motivated group under the name Water Orthrus. The adversary is also assessed to be behind another campaign known as Scranos, which was detailed by Bitdefender in

,

The threat actors behind the CopperStealer malware resurfaced with two new campaigns in March and April 2023 that are designed to deliver two novel payloads dubbed CopperStealth and CopperPhish.
Trend Micro is tracking the financially motivated group under the name Water Orthrus. The adversary is also assessed to be behind another campaign known as Scranos, which was detailed by Bitdefender in

, ,
https://thehackernews.com/2023/05/water-orthrus-copperstealer-malware.html

Hackers Using Golang Variant of Cobalt Strike to Target Apple macOS Systems

Hackers Using Golang Variant of Cobalt Strike to Target Apple macOS Systems,

A Golang implementation of Cobalt Strike called Geacon is likely to garner the attention of threat actors looking to target Apple macOS systems.
The findings come from SentinelOne, which observed an uptick in the number of Geacon payloads appearing on VirusTotal in recent months.
« While some of these are likely red-team operations, others bear the characteristics of genuine malicious attacks, »

,

A Golang implementation of Cobalt Strike called Geacon is likely to garner the attention of threat actors looking to target Apple macOS systems.
The findings come from SentinelOne, which observed an uptick in the number of Geacon payloads appearing on VirusTotal in recent months.
« While some of these are likely red-team operations, others bear the characteristics of genuine malicious attacks, »

, ,
https://thehackernews.com/2023/05/hackers-using-golang-variant-of-cobalt.html

Des URL de Telegram bloquées par erreur : l’histoire risque-t-elle de se répéter ?

Des URL de Telegram bloquées par erreur : l’histoire risque-t-elle de se répéter ?,

Smartphone s'ouvrant sur Telegram.

Samedi dernier, des adresses de l’ensemble du domaine « t.me » étaient inaccessibles en raison d’une erreur commise par la police. Cette dernière était passée par une procédure de blocage, qui permet de rendre inaccessibles certains sites Web. Cette procédure pourrait être bientôt étendue aux plateformes pornographiques qui ne vérifient pas l’âge des internautes, ainsi qu’à d’autres cas. Au risque de voir se multiplier les cas de blocage injustifiés ?

,

Smartphone s'ouvrant sur Telegram.

Samedi dernier, des adresses de l’ensemble du domaine « t.me » étaient inaccessibles en raison d’une erreur commise par la police. Cette dernière était passée par une procédure de blocage, qui permet de rendre inaccessibles certains sites Web. Cette procédure pourrait être bientôt étendue aux plateformes pornographiques qui ne vérifient pas l’âge des internautes, ainsi qu’à d’autres cas. Au risque de voir se multiplier les cas de blocage injustifiés ?

, ,
https://www.01net.com/actualites/des-url-de-telegram-bloquees-par-erreur-lhistoire-risque-t-elle-de-se-repeter.html