January 2025 – Page 45

Neglected Domains Used in Malspam to Evade SPF and DMARC Security Protections

Cybersecurity researchers have found that bad actors are continuing to have success by spoofing sender email addresses as part of various malspam campaigns.
Faking the sender address of an email is widely seen as an attempt to make the digital missive more legitimate and get past security mechanisms that could otherwise flag it as malicious.
While there are safeguards such as DomainKeys

Over 4,000 backdoors hijacked by registering expired domains

Over 4,000 abandoned but still active web backdoors were hijacked and their communication infrastructure sinkholed after researchers registered expired domains used for commanding them. […]

Medical billing firm Medusind discloses breach affecting 360,000 people

Medusind, a leading billing provider for healthcare organizations, is notifying hundreds of thousands of individuals of a data breach that exposed their personal and health information more than a year ago, in December 2023. […]

Telegram Shared Data of Thousands of Users After CEO’s Arrest

After its CEO was arrested last summer, Telegram has been increasingly sharing user data at the request of authorities.

The post Telegram Shared Data of Thousands of Users After CEO’s Arrest appeared first on SecurityWeek.

Japan Links Chinese Hacker MirrorFace to Dozens of Cyberattacks Targeting Security and Tech Data

Japan says China-linked cyberattacks were systematic attacks with an aim of stealing data on Japanese national security and advanced technology.

The post Japan Links Chinese Hacker MirrorFace to Dozens of Cyberattacks Targeting Security and Tech Data appeared first on SecurityWeek.

Thousands of credit cards stolen in Green Bay Packers store breach

American football team Green Bay Packers says cybercriminals stole the credit card data of over 8,500 customers after hacking its official Pro Shop online retail store in a September breach. […]

How initial access brokers (IABs) sell your users’ credentials

Initial Access Brokers (IABs) are specialized cybercriminals that break into corporate networks and sell stolen access to other attackers. Learn from Specops Software about how IABs operate and how businesses can protect themselves. […]

Rationalizing the Stack: The Case for Security Vendor Consolidation

Consolidating from an overly burdensome number of point solutions to an easier to manage platform-based approach brings with it a number of benefits.

The post Rationalizing the Stack: The Case for Security Vendor Consolidation appeared first on SecurityWeek.

Researchers Expose NonEuclid RAT Using UAC Bypass and AMSI Evasion Techniques

Cybersecurity researchers have shed light on a new remote access trojan called NonEuclid that allows bad actors to remotely control compromised Windows systems.
“The NonEuclid remote access trojan (RAT), developed in C#, is a highly sophisticated malware offering unauthorised remote access with advanced evasion techniques,” Cyfirma said in a technical analysis published last week.
“It employs

UN aviation agency confirms recruitment database security breach

The United Nations’ International Civil Aviation Organization (ICAO) has confirmed that a threat actor has stolen approximately 42,000 records after hacking into its recruitment database. […]

Month: January 2025