• North Korea-linked Lazarus APT uses Log4J to target VMware servers
    by Pierluigi Paganini on May 22, 2022 at 3:48 pm

    North Korea-linked Lazarus APT is exploiting the Log4J remote code execution (RCE) in attacks aimed at VMware Horizon servers. North Korea-linked group Lazarus is exploiting the Log4J RCE vulnerability (CVE-2021-44228) to compromise VMware Horizon servers. Multiple threat actors are exploiting this flaw since January, in January VMware urged customers to patch critical Log4j security vulnerabilities impacting Internet-exposed The post North Korea-linked Lazarus APT uses Log4J to target VMware servers appeared first on Security Affairs.

  • The Pwn2Own Vancouver 2022: Trend Micro and ZDI awarded $1,155,000
    by Pierluigi Paganini on May 22, 2022 at 9:20 am

    The Pwn2Own Vancouver 2022 hacking contest ended, Trend Micro and ZDI awarded a total of $1,155,000 for successful attempts! During the third day of the Pwn2Own Vancouver 2022 hacking competition, white hat hackers demonstrated a working exploit against Microsoft Windows 11 OS. nghiadt12 from Viettel Cyber Security demonstrated an exploit for an escalation of privilege via Integer The post The Pwn2Own Vancouver 2022: Trend Micro and ZDI awarded $1,155,000 appeared first on Security Affairs.

  • Asian media company Nikkei suffered a ransomware attack
    by Pierluigi Paganini on May 21, 2022 at 10:21 pm

    The media company Nikkei has disclosed a ransomware attack and revealed that the incident might have impacted customer data. The Japanese-based media company Nikkey is focused on the business and financial industry, it is the world’s largest financial newspaper. This week the company disclosed a security breach, ransomware infected one of its servers at a The post Asian media company Nikkei suffered a ransomware attack appeared first on Security Affairs.

  • Russia-linked Sandworm continues to conduct attacks against Ukraine
    by Pierluigi Paganini on May 21, 2022 at 2:31 pm

    Security researchers from ESET reported that the Russia-linked APT group Sandworm continues to target Ukraine. Security experts from ESET reported that the Russia-linked cyberespionage group Sandworm continues to launch cyber attacks against entities in Ukraine. Sandworm (aka BlackEnergy and TeleBots) has been active since 2000, it operates under the control of Unit 74455 of the Russian GRU’s Main Center for The post Russia-linked Sandworm continues to conduct attacks against Ukraine appeared first on Security Affairs.

  • Cisco fixes an IOS XR flaw actively exploited in the wild
    by Pierluigi Paganini on May 21, 2022 at 11:14 am

    Cisco addressed a medium-severity vulnerability affecting IOS XR Software, the company warns that the flaw is actively exploited in the wild. Cisco released security updates to address a medium-severity vulnerability affecting IOS XR Software, tracked as CVE-2022-20821 (CVSS score: 6.5), that threat actors are actively exploiting in attacks in the wild. The flaw resides in The post Cisco fixes an IOS XR flaw actively exploited in the wild appeared first on Security Affairs.

  • QNAP warns of a new wave of DeadBolt ransomware attacks against its NAS devices
    by Pierluigi Paganini on May 20, 2022 at 10:11 pm

    Taiwanese vendor QNAP warned customers of a new wave of DeadBolt ransomware attacks and urges them to install the latest updates. Taiwanese vendor QNAP is asking users to install the latest update on their NAS devices and avoid exposing them on the Internet. The company issued the alert in response to a new wave of DeadBolt The post QNAP warns of a new wave of DeadBolt ransomware attacks against its NAS devices appeared first on Security Affairs.

  • Pwn2Own Vancouver 2022 D2
    by Pierluigi Paganini on May 20, 2022 at 8:13 pm

    During the second day of the Pwn2Own Vancouver 2022 hacking competition, contestants demonstrated a working exploit for Microsoft Windows 11. During the second day of the Pwn2Own Vancouver 2022 hacking competition, white hat hackers demonstrated a working exploit against Microsoft Windows 11 OS. The T0 group demonstrated an exploit for an improper access control flaw The post Pwn2Own Vancouver 2022 D2 appeared first on Security Affairs.

  • Canada bans Huawei, ZTE in 5G networks
    by Jon Gold on May 20, 2022 at 4:44 pm

    Ottawa government’s move follows similar bans in other English-speaking countries, citing potential security risks to 5G communications networks.

  • Pro-Russian Hackers Hit Critical Government Websites in Italy
    on May 20, 2022 at 4:02 pm

    Hacker group Killnet has targeted approximately 50 Italian institutions, including the council of judiciary

  • DoJ: White Hat Hackers Will No Longer Face Prosecution
    on May 20, 2022 at 3:00 pm

    "Good faith" hackers will no longer face prosecution under the CFAA