Think, Talk, Hack

Browsing tag

cyber security news

DarkPulsar – A Shadow Brokers Group’s New Hacking Tool Leak To Open Backdoor & Provide Remote Control

Shadow Brokers Hacking Group’s new administrative module Tool called DarkPulsar Leaks with persistance backdoor to provide remote control to the attackers. There are two sophisticated Frameworks called DanderSpritz and FuzzBunch published in 2017 by the same Shadow Brokers. Frameworks framework modules contain various persistance and advanced functionalities with a variety of plugins that designed to analyze […]

root

Cybercriminals Advertising Godzilla Loader Malware On Dark Web Forums

Cybercriminals Advertising Godzilla Loader Malware for $500 on Dark web forums, the malware found actively maintained and getting new updates periodically. Godzilla modern downloader or dropper which first runs the binary on victim’s machine and then it downloads the payload form a remote server. According to Checkpoint investigation, the Godzilla Loader malware rate of infection […]

root

FitMetrix Unprotected Passwordless Database Exposed Millions of User​ Data

Fitmetrix is a fitness company that builds fitness tracking software for the gym, studios that track heart rate and other fitness metrics. The company exposed a passwordless database hosted on AWS contains millions of customer records such as name, gender, email address, birth date, home and work phone, height, weight and much more. The huge […]

root

Fake Flash Updates pushing Malware to Inject XMRig Cryptocurrency Miners

Newly discovered fake flash updates malware pushing XMRing Cryptocurrency miners along with borrowing the original Adobe installer flash updater notification. Recent campaigns are pushing various malware via fake Flash updates that drop and install cryptocurrency miners and other threats such as information stealers, or ransomware. In this campaign not only install the crypto mining malware but […]

root

Hackers Use Hijacked Email Address To Send Malware as a Reply to Existing Email Thread

A new more sophisticated phishing campaign uses hijacked email accounts to deliver malware as a part of the response to the existing the email thread. The malicious campaign primarily targets the education, financial, and energy sectors, some industries such as real estate, transportation, manufacturing, and government entities are affected. Security researchers from TrendMicro spotted the […]

root

Fin7 Cybercrime Group Hacked Burgerville and Stolen Payment Card Details

The US food chain Burgerville was the recent victim of the notorious Fin7 hacker group. The hackers placed malware on Burgerville’s network and collect the payment card details. Burgerville managed immediately to stop the breach and disable the malware with the help of third-party cybersecurity experts and in cooperation with the FBI. Burgerville Security Breach […]

root

Roaming Mantis Hacking Group Inject Web Crypto Mining for iOS Devices via Malicious Content Delivery System

Cyber Criminals from roaming mantis hacking group actively targeting iOS devices to inject web crypto mining via the malicious content delivery system. Roaming Mantis group already involved with various cybercrime such as DNS hijacking the router to spread malicious android application to the target system and also they spoof legitimate apps Facebook and Chrome. Their malware […]

root

New DanaBot Banking Malware Attack in Various Countries with Stealer and Remote Access Futures

New Banking malware called “DanaBot” actively attacking various counties organization with sophisticated evasion technique and act as a Stealer and ability to gain remote access from targeted victims machine. DanaBot content some evasion technique such as extensive anti-analysis features and targeting various countries including Poland, Italy, Germany, and Austria, Australia and mainly targeting organization in the […]

root

Mozilla Firefox Releases 62.0.3 & Security Updates for 2 High Critical Vulnerabilities

Mozilla Firefox Released security updates that cover 2 critical vulnerabilities in Firefox 62.0.3 and Firefox ESR 60.2.2. One of the remote code execution vulnerability allows a remote attacker to get access to the system and both vulnerabilities are categorized under a critical impact. Mozilla released Firefox 62.0.3 along with these 2 security patches and users can download the new version […]

root

Dark Web Malware Builder Allow Attackers To Create Malware That Steals Passwords & Credit Card Data

Researchers from Checkpoint spotted a free online builder for building customized binaries for the popular info-stealer Azorult malware that steals user passwords, credit card information, cryptocurrency related data. The Gazop service emerged as a result of the source code leak of Azorult’s panel version 3.1 and 3,2. the free Gazorp service allows threat actors to fresh […]

root

Powerful Ransomware Attack Hit on Port of San Diego

The port of  San Diego computer system hit a massive cyber attack  On September 27, 2018, and it was confirmed by officials as a Ransomware attack. The Port of San Diego serves the people of California as a specially created district, balancing multiple uses on 34 miles along San Diego Bay spanning five cities A statement […]

root

APT Group Uses Dangerous LoJax Malware That Can Survive After OS Re-installation and Hard Disk Replacement

Security researchers from ESET found first ever APT28 group used UEFI rootkit in wild. The Sedint group behind several high profile attacks on several organizations and television networks around the world. The UEFI rootkits are hard to detect and extremely dangerous, they persist even after operating system reinstallation and even a hard disk replacement. Threat […]

root

Uber to Pay $148 Million as a Settlement for Data Breach Cover

Uber Agreed to Pay $148 Million as a Settlement for 2016 Uber data breach which impacts 57 million Uber users around the world and 600,000 drivers names including their license numbers were stolen. The breach took place in October 2016 and the leaked data includes names, email addresses and mobile phone numbers that related to […]

root

VPNFilter Malware Adds Seven New Tools For Exploiting Network Devices

The VPNFilter malware is a globally deployed threat infected thousands of network devices across the globe, it is a multi-stage, modular platform with versatile capabilities to support both intelligence-collection and destructive cyber attack operations. It was uncovered by Talos researchers, the malware infects more than 500,000 in at least 54 countries and the targeted devices […]

root

New Adwind RAT Attack Linux, Windows and Mac via DDE Code Injection Technique by Evading Antivirus Software

New Adwind 3.0 RAT (Remote access Trojan) Evolving with new sophisticated capabilities, unlike old version it mainly attacks desktop version of  Linux, Windows and Mac OSX using DDE code injection technique. Attackers are using weaponized Microsoft Office documents to compromise the targeted victims and also new capabilities that able to avoid detection by anti-virus software. This attack […]

root

25 Malicious apps that Downloaded More Than 120,000 Times Contains Hidden Cryptomining Script

Malware authors continue to upload malicious apps contains hidden Cryptomining Script to Google play, even though it was entirely banned. Attackers uploaded apps poses as games, utilities, and educational apps contain hidden cryptomining scripts. SophosLabs spotted more than 25 malicious apps that contain hidden coinhive cryptomining scripts turning victims device into cryptocurrency churning rigs. 11 […]

root