Daily Cyber Brief

Greece’s national natural gas operator refuses to negotiate with ransomware group, CISA warns of a high severity Pan-OS flaw, and Borat RAT is a malware triple-threat...

Cybersecurity

Researchers Find Counterfeit Phones with Backdoor to Hack WhatsApp Accounts

Budget Android device models that are counterfeit versions associated with popular smartphone brands are harboring multiple trojans designed to target WhatsApp and WhatsApp Business messaging apps. The trojans, which Doctor Web first came…

Hackers demand $10m to end cyber attack on Paris regional hospital

A hospital southeast of Paris has been the victim of an ongoing cyber attack since the weekend, with disruption to emergency services and surgeries as hackers demand a ransom of $10 million to call off the digital assault. The CHSF Hospital Centre in Corbeil-Essonnes…

Over 80,000 exploitable Hikvision cameras exposed online

Security researchers have discovered over 80,000 Hikvision cameras vulnerable to a critical command injection flaw that's easily exploitable via specially crafted messages sent to the vulnerable web server. The flaw is tracked as CVE-2021-36260 and was addressed by…

FBI warns of residential proxies used in credential stuffing attacks

The Federal Bureau of Investigation (FBI) warns of a rising trend of cybercriminals using residential proxies to conduct large-scale credential stuffing attacks without being tracked, flagged, or blocked. The warning was issued as a Private Industry Notification on the…

Greek gas operator refuses to negotiate with ransomware group after attack

Greece’s national natural gas operator DESFA confirmed this weekend that it was hit with a cyberattack but said it will not negotiate with the people behind the incident. DESFA is in charge of managing, exploiting, developing, and operating Greece’s natural gas system…

CISA is warning of high-severity PAN-OS DDoS flaw used in attacks

A recent vulnerability found in Palo Alto Networks' PAN-OS has been added to the catalog of Known Exploitable Vulnerabilities from the U.S. Cybersecurity and Infrastructure Security Agency (CISA). The security issue is a high-severity risk identified as CVE-2022-0028 that…

"As Nasty as Dirty Pipe" — 8 Year Old Linux Kernel Vulnerability Uncovered

Details of an eight-year-old security vulnerability in the Linux kernel have emerged that the researchers say is "as nasty as Dirty Pipe." Dubbed DirtyCred by a group of academics from Northwestern University, the security weakness exploits a previously unknown flaw…

Misconfigured Meta Pixel exposed healthcare data of 1.3M patients

U.S. healthcare provider Novant Health has disclosed a data breach impacting 1,362,296 individuals who have had their sensitive information mistakenly collected by the Meta Pixel ad tracking script. Meta Pixel (formerly Facebook Pixel) is a JavaScript tracking script that…

Meet Borat RAT, a New Unique Triple Threat

Atlanta-based cyber risk intelligence company, Cyble discovered a new Remote Access Trojan (RAT) malware. What makes this particular RAT malware distinct enough to be named after the comic creation of Sacha Baron Cohen? RAT malware typically helps cybercriminals…

LockBit ransomware blames Entrust for DDoS attacks on leak sites

The LockBit ransomware operation's data leak sites have been shut down over the weekend due to a DDoS attack telling them to remove Entrust's allegedly stolen data. In late July, digital security giant Entrust confirmed a cyberattack disclosing that threat actors had stolen…

Daily Cyber Brief

Greece’s national natural gas operator refuses to negotiate with ransomware group, CISA warns of a high severity Pan-OS flaw, and Borat RAT is a malware triple-threat...

Cybersecurity

Join the conversation

Overt Operator