targeted
-
Blog
GitHub projects targeted with malicious commits to frame researcher
GitHub projects have been targeted with malicious commits and pull requests, in an attempt to inject backdoors into these projects. Most recently, the GitHub repository of Exo Labs, an AI and machine learning startup, was targeted in the attack, which has left many wondering about the attacker’s true intentions. ‘Innocent looking PR’ caught injecting backdoor On Tuesday, Alex Cheema, co-founder of EXO Labs warned everyone…
Read More » -
Blog
Why you should always offboard outgoing staff: A disgruntled ex-Disney employee targeted former colleagues with DDoS attacks and hacked its menu system to change peanut allergen information
A former Disney employee faces federal cyber crime charges after being accused of hacking into the entertainment giant’s menu system. The disgruntled ex-menu production manager, Michael Scheuer, was fired in June for alleged misconduct, but is now charged with attempting to mislabel menu items, hiding the fact they contained peanuts. “The threat actor manipulated the allergen information on menus by…
Read More » -
Blog
Google fixes two Android zero-days used in targeted attacks
Google fixed two actively exploited Android zero-day flaws as part of its November security updates, addressing a total of 51 vulnerabilities. Tracked as CVE-2024-43047 and CVE-2024-43093, the two issues are marked as exploited in limited, targeted attacks. “There are indications that the following may be under limited, targeted exploitation,” says Google’s advisory. The CVE-2024-43047 flaw is a high-severity use-after-free issue…
Read More » -
Blog
Ireland fines LinkedIn €310 million over targeted advertising
LinkedIn received a €310 million fine from the Irish Data Protection Commission for violating European Union’s law related to the processing of personal data for behavioral analysis and targeted advertising. The penalty follows an inquiry into the lawfulness, fairness, and transparency of LinkedIn’s data processing, which started from a complaint several years ago from French non-profit org La Quadrature Du Net. According to the…
Read More » -
Blog
VMware ESXi Servers Targeted by New Ransomware Variant
A new double-extortion ransomware variant targets VMware ESXi servers, security researchers have found. The group behind it, named Cicada3301, has been promoting its ransomware-as-a-service operation since June. Once an attacker has initial access to a corporate network, they can copy and encrypt its private data using the Cicada3301 ransomware. They can then withhold the decryption key and threaten to expose…
Read More » -
Blog
Thousands targeted with phishing emails after cyber attack on Greater Manchester councils
A major cyber attack that’s hit councils across Greater Manchester has highlighted the risks local authorities face. The attack on Locata affected the housing websites for Manchester, Salford, and Bolton councils, which are run by the software firm. It’s led to thousands of users being sent a phishing email asking them to ‘activate your tenancy options’ and hand over their…
Read More »