Bleeping Computer

Syndikovat obsah
BleepingComputer - All Stories
Aktualizace: 23 min 59 sek zpět

Microsoft: Hackers steal emails in device code phishing attacks

15 Únor, 2025 - 16:22
An active campaign from a threat actor potentially linked to Russia is targeting Microsoft 365 accounts of individuals at organizations of interest using device code phishing. [...]
Kategorie: Hacking & Security

Hackers exploit authentication bypass in Palo Alto Networks PAN-OS

14 Únor, 2025 - 22:20
Hackers are launching attacks against Palo Alto Networks PAN-OS firewalls by exploiting a recently fixed vulnerability (CVE-2025-0108) that allows bypassing authentication. [...]
Kategorie: Hacking & Security

SonicWall firewall bug leveraged in attacks after PoC exploit release

14 Únor, 2025 - 19:13
Attackers are now targeting an authentication bypass vulnerability affecting SonicWall firewalls shortly after the release of proof-of-concept (PoC) exploit code. [...]
Kategorie: Hacking & Security

SonicWall firewall bug targeted in attacks after PoC exploit release

14 Únor, 2025 - 19:13
Attackers are now targeting an authentication bypass vulnerability affecting SonicWall firewalls shortly after the release of proof-of-concept (PoC) exploit code. [...]
Kategorie: Hacking & Security

PirateFi game on Steam caught installing password-stealing malware

14 Únor, 2025 - 18:32
A free-to-play game named PirateFi in the Steam store has been distributing the Vidar infostealing malware to unsuspecting users. [...]
Kategorie: Hacking & Security

Malicious PirateFi game infects Steam users with Vidar malware

14 Únor, 2025 - 18:32
A free-to-play game named PirateFi in the Steam store has been distributing the Vidar infostealing malware to unsuspecting users. [...]
Kategorie: Hacking & Security

PostgreSQL flaw exploited as zero-day in BeyondTrust breach

14 Únor, 2025 - 15:15
​Rapid7's vulnerability research team says attackers exploited a PostgreSQL security flaw as a zero-day to breach the network of privileged access management company BeyondTrust in December. [...]
Kategorie: Hacking & Security

Chinese hackers breach more US telecoms via unpatched Cisco routers

14 Únor, 2025 - 13:56
China's Salt Typhoon hackers are still actively targeting telecoms worldwide and have breached more U.S. telecommunications providers via unpatched Cisco IOS XE network devices. [...]
Kategorie: Hacking & Security

Microsoft fixes bug causing Windows Server 2025 boot errors

14 Únor, 2025 - 12:18
​Microsoft has fixed a known issue causing "boot device inaccessible" errors during startup on some Windows Server 2025 systems using iSCSI. [...]
Kategorie: Hacking & Security

whoAMI attacks give hackers code execution on Amazon EC2 instances

14 Únor, 2025 - 00:35
Security researchers discovered a name confusion attack that allows access to an Amazon Web Services account to anyone that publishes an Amazon Machine Image (AMI) with a specific name. [...]
Kategorie: Hacking & Security

Dutch Police seizes 127 XHost servers, dismantles bulletproof hoster

13 Únor, 2025 - 19:26
The Dutch Police (Politie) dismantled the ZServers/XHost bulletproof hosting operation after taking offline 127 servers used by the illegal platform. [...]
Kategorie: Hacking & Security

Hacker leaks account data of 12 million Zacks Investment users

13 Únor, 2025 - 18:39
Zacks Investment Research (Zacks) last year reportedly suffered another data breach that exposed sensitive information related to roughly 12 million accounts. [...]
Kategorie: Hacking & Security

Chinese espionage tools deployed in RA World ransomware attack

13 Únor, 2025 - 15:31
A China-based threat actor, tracked as Emperor Dragonfly and commonly associated with cybercriminal endeavors, has been observed using in a ransomware attack a toolset previously attributed to espionage actors. [...]
Kategorie: Hacking & Security

zkLend loses $9.5M in crypto heist, asks hacker to return 90%

13 Únor, 2025 - 00:08
Decentralized money lender zkLend suffered a breach where threat actors exploited a smart contract flaw to steal 3,600 Ethereum, worth $9.5 million at the time. [...]
Kategorie: Hacking & Security

Surge in attacks exploiting old ThinkPHP and ownCloud flaws

13 Únor, 2025 - 00:04
Increased hacker activity has been observed in attempts to compromise poorly maintained devices that are vulnerable to older security issues from 2022 and 2023. [...]
Kategorie: Hacking & Security

Sarcoma ransomware claims breach at giant PCB maker Unimicron

12 Únor, 2025 - 20:24
A relatively new ransomware operation named 'Sarcoma' has claimed responsibility for an attack against the Unimicron printed circuit boards (PCB) maker in Taiwan. [...]
Kategorie: Hacking & Security

DPRK hackers dupe targets into typing PowerShell commands as admin

12 Únor, 2025 - 19:56
North Korean state actor 'Kimsuky' (aka 'Emerald Sleet' or 'Velvet Chollima') has been observed using a new tactic inspired from the now widespread ClickFix campaigns. [...]
Kategorie: Hacking & Security

Ivanti fixes three critical flaws in Connect Secure & Policy Secure

12 Únor, 2025 - 18:26
Ivanti has released security updates for Ivanti Connect Secure (ICS), Ivanti Policy Secure (IPS), and Ivanti Secure Access Client (ISAC) to address multiple vulnerabilities, including three critical severity problems. [...]
Kategorie: Hacking & Security

BadPilot network hacking campaign fuels Russian SandWorm attacks

12 Únor, 2025 - 18:00
A subgroup of the Russian state-sponsored hacking group APT44, also known as 'Seashell Blizzard' and 'Sandworm', has been targeting critical organizations and governments in a multi-year campaign dubbed 'BadPilot.' [...]
Kategorie: Hacking & Security

Beyond VPN: How TruGrid Simplifies RDP Deployment, Security, and Compliance

12 Únor, 2025 - 16:01
Cloud-based RDP Remote Desktop Protocol solutions offer a centralized dashboard to manage user access, security policies, and monitor usage from one location. Learn more from TruGrid about how their SecureRDP platform provides a secure, scalable, and cost-efficient alternative to VPN-based RDP implementations. [...]
Kategorie: Hacking & Security