As seen on the SLSH Telegram channel: We would like to announce that we have gained full access to REsecurity systems π We took everything: β All internal chats and logs β Full employee data: names, emails, tokens, etc.. β Threat intel related, reports, scrapes, and all management files β Complete client list with details…
Justin Ling reports: For years, cybersecurity professionals, watchdogs, and government agencies have warned that a malicious cyberattack on the US power grid could be devastating. With ample evidence that state-sponsored hacking groups are eyeing the decentralized and deeply vulnerable power grid, the risk is more acute than ever. Case in point: Hackers, believed to be…
Cybersecurity researchers have discovered a loophole in the Visual Studio Code Marketplace that allows threat actors to reuse names of previously removed extensions. Software supply chain security outfit ReversingLabs said it made the discovery after it identified a malicious extension named “ahbanC.shiba” that functioned similarly to two other extensions β ahban.shiba and ahban.cychelloworld β
Mikael Thalen reports: Personal information about nearly 10,000 employees and outside contractors and contributors at The Washington Post was exposed after the newspaper fell victim to aΒ data breach. Analysis of the hacked data by Straight Arrow News indicates that high-profile individuals, including former national security advisor John Bolton, are among those affected. The Post says……
Cybersecurity researchers have disclosed multiple security flaws in video surveillance products from Axis Communications that, if successfully exploited, could expose them to takeover attacks. “The attack results in pre-authentication remote code execution on Axis Device Manager, a server used to configure and manage fleets of cameras, and the Axis Camera Station, client software used to…
Cybersecurity researchers are calling attention to a new Linux cryptojacking campaign that’s targeting publicly accessible Redis servers. The malicious activity has been codenamed RedisRaider by Datadog Security Labs. “RedisRaider aggressively scans randomized portions of the IPv4 space and uses legitimate Redis configuration commands to execute malicious cron jobs on vulnerable systems,”
Russian cyber threat actors have been attributed to a state-sponsored campaign targeting Western logistics entities and technology companies since 2022. The activity has been assessed to be orchestrated by APT28 (aka BlueDelta, Fancy Bear, or Forest Blizzard), which is linked to the Russian General Staff Main Intelligence Directorate (GRU) 85th Main Special Service Center, Military…
