Romania’s Election Systems Targeted in Over 85,000 Cyberattacks

Threat actors obtained access credentials for election-related websites and leaked them on a Russian hacker forum less than a week before the first presidential election round.

U.S. Organization in China Targeted by Attackers

A large U.S. organization with a significant presence in China was the subject of a targeted attack earlier this year, during which the attackers obtained a persistent presence on its network, seemingly for the purpose of intelligence gathering.

Solana Web3.js Library Compromised in Targeted Supply Chain Attack

Malicious code was injected into versions 1.95.6 and 1.95.7 of the library, which is downloaded over 350,000 times weekly from the npm registry. This code was designed to exfiltrate private keys, leading to cryptocurrency theft.

Gambling and lottery giant disrupted by cyberattack, working to bring systems back online

One of the largest gambling companies, International Game Technology (IGT), in the U.S. said a cyberattack last week caused massive disruptions to their operations, forcing them to take some systems offline.

Threat Actors Behind VEILDrive Campaign Exploit Microsoft Services for C2

The ongoing threat campaign known as VEILDrive is utilizing Microsoft services such as Teams, SharePoint, Quick Assist, and OneDrive in its operations to distribute spear-phishing attacks and store malware.

Suspected Ukrainian Cyberattack Knocks Out Parking Enforcement in Russian City

A suspected cyberattack believed to be orchestrated by the Ukrainian Cyber Alliance led to the disruption of the parking enforcement system in the Russian city of Tver. Citizens were able to park for free.

Supply Chain Attack on Popular Animation Library Lottie-Player Targets Web3 Users

Malicious actors executed a sophisticated supply chain attack on the widely-utilized JavaScript library lottie-player, infecting versions 2.0.5, 2.0.6, and 2.0.7 with malicious code that prompts a fake Web3 wallet connection.

Attacker Abuses Victim Resources to Reap Rewards from Titan Network

Trend Micro researchers observed an attacker exploiting the Atlassian Confluence vulnerability CVE-2023-22527 to achieve remote code execution for cryptomining via the Titan Network.

HeptaX Cyberespionage Campaign Snoops Through Unauthorized RDP Connections

The attackers heavily rely on PowerShell and BAT scripts to download additional payloads and create an administrative user account on compromised systems, lowering authentication barriers for unauthorized remote access.

Chinese Nation-State Hackers APT41 Hit Gambling Sector for Financial Gain

APT41, a Chinese nation-state actor, conducted a cyberattack targeting the gambling and gaming industry. Over six months, they gathered valuable information from a company including network configurations and user passwords.

Defend Against Threats with Cyber Fusion

Cyware is the leading provider of cyber fusion solutions that power threat intelligence sharing , end-to-end automation and 360-degree threat response.

Trending Tags