Tag Archive for: Weekly

Cyber Security News Weekly Round-Up (Vulnerabilities, Threats & New Stories)

/in


The weekly cybersecurity news wrap-up provides readers with the latest information on emerging risks, vulnerabilities, ways to reduce them, and harmful schemes to help make defensive measures proactive.

A well-developed knowledge base is necessary for securing networks from the newest targets and vulnerabilities in the face of the changing risk landscape.

Staying updated with the latest trends, reports, and news is completely necessary nowadays.

Cyber Attacks

CoralRaider Hackers Steal Data

XClient stealer and RotBot are two attack tools that Vietnamese threat actor CoralRaider uses to steal financial data, login credentials, and social media information from victims in Asian and Southeast Asian countries.

Since 2023, the group has been operational with complex approaches where they would integrate Vietnamese vocabularies into their payloads as a sort of hard coding.

The most recent campaign by this threat group involves using Windows shortcut files to distribute malware targeting South Korean, Bangladeshi, and Chinese nationals. This is a significant threat to individuals and businesses in the region.

Chinese Hackers Using AI Tools To Influence Upcoming Elections

The report concerns how Chinese hackers could use AI to influence the elections. While no instances are specifically mentioned in the report, it cautions against this cyber risk. 

Not only that even AI can be used to generate deepfake videos, control social media sites and undertake highly developed cyber offences which makes it a very powerful tool to influence the elections. 

Moreover, the report stresses on increasing cybersecurity defenses against such threats including improvements in detection and response capabilities. 

While it highlights the need of remaining alert and proactive towards changing cyber risks especially in line with elections and politics at large.

Threat Actors Deliver Malware Via YouTube Video

The report highlights a recent malware campaign in which Vidar, StealC, and Lumma Stealer information-stealing malware are disseminated via YouTube videos by hackers. 

These videos that pretend to be guides for getting free software or game upgrades have links to cracked video games and pirated…

Source…

Cyber Security News Weekly Round-Up (Vulnerabilities, Cyber Attacks, Threats & New Stories)

/in


Welcome to the Cyber Security News Weekly Round-Up. Each week, we will explore the latest cyber threats, vulnerabilities, and notable stories that have shaped the cybersecurity landscape.

From sophisticated malware attacks to innovative phishing schemes, we cover the crucial updates you need to stay informed and protected.

Threats

Notepad++ Plugin Compromised by Hackers

Hackers have targeted a widely used Notepad++ plugin, “mimeTools.dll,” injecting malicious code that compromises users’ systems upon execution. The attack, discovered by the AhnLab Security Intelligence Center, leverages DLL Hijacking to execute encrypted malicious Shell Code, posing a significant threat to programmers and writers who rely on Notepad++ for its versatility and plugin support; read more.

Weaponized PDF Files Deliver Byakugan Malware

Cybersecurity researchers at Fortinet have uncovered a new attack vector involving weaponized PDF files used to deliver the multi-functional Byakugan malware. By exploiting the trust and popularity of PDFs, hackers have been able to infiltrate systems through malicious codes embedded in seemingly innocuous documents, highlighting the need for heightened awareness and protection against such files.

Fake E-Shopping Attack Targets Banking Credentials

A sophisticated fake e-shop scam campaign has been targeting users in Southeast Asia, hijacking banking credentials through phishing emails and malicious APKs. The attackers have expanded their operations, utilizing screen-sharing and exploiting accessibility services to gain more control over victims’ devices. This campaign underscores the evolving tactics of cybercriminals in their efforts to steal sensitive information.

Rhadamanthys Stealer Targets Oil and Gas Sector

The oil and gas sector has become the latest target of the Rhadamanthys Stealer malware, delivered through weaponized PDF files. This attack emphasizes the ongoing threat to critical infrastructure sectors and the importance of robust cybersecurity measures to protect against such sophisticated threats.

Ransomware Exploits Unpatched Vulnerabilities

A recent report highlights the increasing trend of ransomware attacks exploiting unpatched…

Source…

FBI warned Twitter during ‘weekly’ meetings of Hunter Biden ‘hack-and-leak operation’ before censoring NY Post

/in


NEWYou can now listen to Fox News articles!

The FBI warned Twitter during “weekly” meetings before the 2020 election to expect “hack-and-leak operations’’ by “state actors” involving Hunter Biden, and “likely” in October, according to a sworn declaration by Twitter’s former head of site integrity, Yoel Roth. 

The warnings were so specific that Twitter immediately censored The Post’s scoop about Hunter Biden’s laptop on Oct. 14, 2020, citing its “hacked materials” policy, a move described on Saturday as “election interference” by Twitter’s new owner, Elon Musk. 

The extraordinary revelation for the first time lays bare how the FBI was involved in pre-bunking the story of the laptop, which had been in the bureau’s possession for almost a year. 

“I was told in these meetings that the intelligence community expected that individuals associated with political campaigns would be subject to hacking attacks and that material obtained through those hacking attacks would likely be disseminated over social media platforms, including Twitter,” said Roth in a Dec. 21, 2020 declaration to the Federal Election Commission. 

REP. BUCK URGES CONGRESS TO BREAK UP ‘DANGEROUS’ TECH MONOPOLIES: TWITTER ‘HURT’ GOP DURING ELECTIONS

“I also learned in these meetings that there were rumors that a hack-and-leak operation would involve Hunter Biden.” 

Roth’s signed declaration formed part of Twitter’s defense against a complaint by the Tea Party Patriots Foundation that its censorship of The Post was an “in­ kind” campaign contribution to then-presidential candidate Joe Biden’s campaign. 

Feds’ social gatherings 

The FBI also warned Facebook to be on “high alert” for a “dump” of “Russian propaganda” before the 2020 election, in terms specific enough that it “fit the pattern” of The Post’s story, CEO Mark Zuckerberg told podcast host Joe Rogan in August. 

Facebook also censored The Post ahead of Twitter’s throttling the story in October, pending “fact checks” that never appear to have been done. 

Yoel Roth, Twitter’s former head of site integrity, said in a Dec. 21, 2020 declaration to the Federal Election Commission that the company was told hacked materials would likely be…

Source…

Battlefield 2042 Update Adds New Weekly Missions, &Lots of Bug Fixes

/in


News

Published on

EA Dice has issued full patch notes for its upcoming Battlefield 2042 patch, which is due to launch tomorrow, Dec. 2. The update is substantial, aiming to resolve in part the huge number of glitches, bugs, and performance issues that have plagued Battlefield 2042 since its launch, in addition to adding new weekly missions and a game mode.

In terms of new content, there will be a total of 3 varying missions each week that reward players with XP for completion. In turn, the XP goes toward unique cosmetic rewards. For Battlefield Portal comes new game mode layouts for Rush on all All-Out Warfare maps. Also, several new templates to the Builder, and a new custom mode called Vehicle Team Deathmatch, which allows players to utilize combat vehicles in custom experiences. It will also support logic created in the Rules Editor, allowing players to spawn at team HQ and adding more options when creating custom games.

Below you can find the full list of patch notes for Update 0.3.0.

Fixes, Changes, and Improvements

General

  • The Recent Players screen now include everyone from previous matches to allow for easier user reporting
  • Made improvements to the “Interaction” system by switching the default “INTERACT” text on multiple interactions to reflect the action you are about to do, i.e. “OPEN CONTAINER”, “CALL ELEVATOR”
  • Resolved Kaleidoscope server room lighting issue
  • Resolved an issue related to the velocity / trajectory while spawning in jets
  • Improved helicopter animation in level fly-bys during insertion
  • Improvements to address an issue where players killed in vehicles would fall beneath level geometry
  • Improvements to streaming assets in deploy screen presentation
  • Player no longer gets stuck in a zipline/rope after exiting a vehicle after entering it too close to a zipline or rope
  • Exiting an open seat early in the enter animation no longer causes your aim pitch to lock up
  • Correct field of view is applied immediately following insertion sequences

User Interface

  • Improved the Collection screens, making them easier to use and clear as to what…

Source…