In The News

Critical Mitel MiCollab Flaw Exposes Systems to Unauthorized File and Admin Access The Hacker Newsinfo@thehackernews.com (The Hacker News)
December 5, 2024

Cybersecurity researchers have released a proof-of-concept (PoC) exploit that strings together a now-patched critical security flaw impacting Mitel MiCollab with an arbitrary file read zero-day, granting an attacker the ability …


Europol Shuts Down Manson Market Fraud Marketplace, Seizes 50 Servers The Hacker Newsinfo@thehackernews.com (The Hacker News)
December 5, 2024

Europol on Thursday announced the shutdown of a clearnet marketplace called Manson Market that facilitated online fraud on a large scale. The operation, led by German authorities, has resulted in the …


Hackers Target Uyghurs and Tibetans with MOONSHINE Exploit and DarkNimbus Backdoor The Hacker Newsinfo@thehackernews.com (The Hacker News)
December 5, 2024

A previously undocumented threat activity cluster dubbed Earth Minotaur is leveraging the MOONSHINE exploit kit and an unreported Android-cum-Windows backdoor called DarkNimbus to facilitate long-term surveillance operations targeting Tibetans and …


Want to Grow Vulnerability Management into Exposure Management? Start Here! The Hacker Newsinfo@thehackernews.com (The Hacker News)
December 5, 2024

Vulnerability Management (VM) has long been a cornerstone of organizational cybersecurity. Nearly as old as the discipline of cybersecurity itself, it aims to help organizations identify and address potential security …


Researchers Uncover 4-Month Cyberattack on U.S. Firm Linked to Chinese Hackers The Hacker Newsinfo@thehackernews.com (The Hacker News)
December 5, 2024

A suspected Chinese threat actor targeted a large U.S. organization earlier this year as part of a four-month-long intrusion. According to Broadcom-owned Symantec, the first evidence of the malicious activity was …


ANEL and NOOPDOOR Backdoors Weaponized in New MirrorFace Campaign Against Japan The Hacker Newsinfo@thehackernews.com (The Hacker News)
December 5, 2024

The China-linked threat actor known as MirrorFace has been attributed to a new spear-phishing campaign mainly targeting individuals and organizations in Japan since June 2024. The aim of the campaign is …


NCA Busts Russian Crypto Networks Laundering Funds and Evading Sanctions The Hacker Newsinfo@thehackernews.com (The Hacker News)
December 4, 2024

The U.K. National Crime Agency (NCA) on Wednesday announced that it led an international investigation to disrupt Russian money laundering networks that were found to facilitate serious and organized crime …


CISA Warns of Active Exploitation of Flaws in Zyxel, ProjectSend, and CyberPanel The Hacker Newsinfo@thehackernews.com (The Hacker News)
December 4, 2024

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added multiple security flaws affecting products from Zyxel, North Grid Proself, ProjectSend, and CyberPanel to its Known Exploited Vulnerabilities (KEV) catalog, citing …


Russia-Linked Turla Exploits Pakistani Hackers’ Servers to Target Afghan and Indian Entities The Hacker Newsinfo@thehackernews.com (The Hacker News)
December 4, 2024

The Russia-linked advanced persistent threat (APT) group known as Turla has been linked to a previously undocumented campaign that involved infiltrating the command-and-control (C2) servers of a Pakistan-based hacking group …


U.S. Offered $10M for Hacker Just Arrested by Russia Krebs on SecurityBrianKrebs
December 4, 2024

In January 2022, KrebsOnSecurity identified a Russian man named Mikhail Matveev as "Wazawaka," a cybercriminal who was deeply involved in the formation and operation of multiple ransomware groups. The U.S. …