cRyPtHoN™ INFOSEC (EN)
03 Jul 2025 16:06
Ransomware crew Hunters International shuts down, hands out keys to victims
Don't let their kind words sway you – leaders are still up to no good
Ransomware gang Hunters International has shut up shop and offered decryption keys to all victims as a parting favor.
Announcing the news on Thursday morning, the gang deleted all victim data from its dark web leak site and issued a statement confirming its closure.
https://www.theregister.com/2025/07/03/hunters_international_shutdown/
📡@
📡@
📡@
📡@
📡@
Читать полностью…
cRyPtHoN™ INFOSEC (EN)
03 Jul 2025 16:00
Microsoft is laying off 9,000 employees in its latest huge job cut
Microsoft is cutting more jobs as it continues AI push
Microsoft is cutting 9,000 jobs with most of those facing the ax being employed in the Gaming division.
“We continue to implement organizational changes necessary to best position the company and teams for success in a dynamic marketplace,” a Microsoft spokesperson said (via CNBC).
https://www.techradar.com/pro/microsoft-is-laying-off-9-000-employees-in-its-latest-huge-job-cut
📡@
📡@
📡@
📡@
📡@
Читать полностью…
cRyPtHoN™ INFOSEC (EN)
03 Jul 2025 15:56
Vivaldi 7.5 launches with tab, ad blocker and other improvements
Vivaldi Technologies has released Vivaldi 7.5 today. The update for the highly customizable Chromium-based browser adds even more customization options to it plus nice-to-have features on top of that.
Most Vivaldi installations should receive the update automatically. Select Vivaldi Menu > Check for Updates to install it right away, if that has not happened already.
https://www.ghacks.net/2025/07/03/vivaldi-7-5-launches-with-tab-ad-blocker-and-other-improvements/
📡@
📡@
📡@
📡@
📡@
Читать полностью…
cRyPtHoN™ INFOSEC (EN)
02 Jul 2025 16:39
IoT Security Digest: Essential Tools and Techniques for Securing IoT Devices
Introduction
The rapid growth of IoT (Internet of Things) devices has introduced new cybersecurity challenges, from insecure firmware to weak authentication protocols. Matt Brown’s IoT Security Digest newsletter aims to provide actionable insights, tools, and best practices for securing IoT ecosystems. This article extracts key technical content related to IoT security, including Linux/Windows commands, vulnerability exploitation, and hardening techniques.
https://undercodetesting.com/iot-security-digest-essential-tools-and-techniques-for-securing-iot-devices/
📡@
📡@
📡@
📡@
📡@
Читать полностью…
cRyPtHoN™ INFOSEC (EN)
02 Jul 2025 16:36
A Colorado credit union notifies 8.5K people of data breach that compromised SSNs, account info
Community Choice Credit Union in Colorado today confirmed it notified 8,465 people of a May 2025 data breach that compromised names, Social Security numbers, and account numbers.
https://www.comparitech.com/news/a-colorado-credit-union-notifies-8-5k-people-of-data-breach-that-compromised-ssns-account-info/
📡@
📡@
📡@
📡@
📡@
Читать полностью…
cRyPtHoN™ INFOSEC (EN)
02 Jul 2025 16:33
Secretless Broker: Open-source tool connects apps securely without passwords or keys
Secretless Broker is an open-source connection broker that eliminates the need for client applications to manage secrets when accessing target services like databases, web services, SSH endpoints, or other TCP-based systems.
https://github.com/cyberark/secretless-broker
📡@
📡@
📡@
📡@
📡@
Читать полностью…
cRyPtHoN™ INFOSEC (EN)
02 Jul 2025 16:29
Dozens of fake wallet add-ons flood Firefox store to drain crypto
More than 40 fake extensions in Firefox’s official add-ons store are impersonating popular cryptocurrency wallets from trusted providers to steal wallet credentials and sensitive data.
Some of the extensions pretend to be wallets from Coinbase, MetaMask, Trust Wallet, Phantom, Exodus, OKX, Keplr, and MyMonero, and include malicious code that sends stolen information to attacker-controlled servers.
https://www.bleepingcomputer.com/news/security/dozens-of-fake-wallet-add-ons-flood-firefox-store-to-drain-crypto/
📡@
📡@
📡@
📡@
📡@
Читать полностью…
cRyPtHoN™ INFOSEC (EN)
02 Jul 2025 16:25
Data breach reveals Catwatchful ‘stalkerware’ is spying on thousands of phones
A security vulnerability in a stealthy Android spyware operation called Catwatchful has exposed thousands of its customers, including its administrator.
The bug, which was discovered by security researcher Eric Daigle, spilled the spyware app’s full database of email addresses and plaintext passwords that Catwatchful customers use to access the data stolen from the phones of their victims.
https://techcrunch.com/2025/07/02/data-breach-reveals-catwatchful-stalkerware-spying-on-thousands-android-phones/
📡@
📡@
📡@
📡@
📡@
Читать полностью…
cRyPtHoN™ INFOSEC (EN)
02 Jul 2025 16:22
Opera 120 is out with privacy-friendly fullpage translations and more
The developers of the Opera web browser have released Opera 120 to the public. The latest stable version of the web browser adds several features to the browser, including a natively integrated translation option. The update upgrades the core of the browser to the latest Chromium version next to that.
The update is available already and unmanaged Opera installations should receive it automatically. You can open Opera Menu > Update & Recovery to check for the update and get it installed as early as possible.
https://www.ghacks.net/2025/07/02/opera-120-is-out-with-privacy-friendly-fullpage-translations-and-more/
📡@
📡@
📡@
📡@
📡@
Читать полностью…
cRyPtHoN™ INFOSEC (EN)
01 Jul 2025 14:48
YES3 Scanner: Open-source S3 security scanner for public access, ransomware protection
YES3 Scanner is an open-source tool that scans and analyzes 10+ different configuration items for your S3 buckets in AWS. This includes access such as public access via ACLs and bucket policies – including the complex combinations of account and bucket settings that can make a S3 bucket effectively public.
https://github.com/OperantAI/woodpecker
📡@
📡@
📡@
📡@
📡@
Читать полностью…
cRyPtHoN™ INFOSEC (EN)
01 Jul 2025 14:43
Critical Microsens Product Flaws Allow Hackers to Go ‘From Zero to Hero’
CISA has informed organizations about critical authentication bypass and remote code execution vulnerabilities in Microsens NMP Web+.
Critical vulnerabilities affecting a product made by Germany-based Microsens can be exploited by hackers to conduct remote attacks against organizations.
https://www.securityweek.com/critical-microsens-product-flaws-allow-hackers-to-go-from-zero-to-hero/
https://www.cisa.gov/news-events/ics-advisories/icsa-25-175-07
📡@
📡@
📡@
📡@
📡@
Читать полностью…
cRyPtHoN™ INFOSEC (EN)
01 Jul 2025 14:40
Linus Torvalds hints Bcachefs may get dropped from the Linux kernel
Kernel 6.16 may be the last with the new disk format
The geek titans are clashing once again, and Linux supremo Linus Torvalds has warned: "I think we'll be parting ways" as of kernel 6.17.
The latest installment in the continuing drama over the next-gen bcachefs filesystem is that Torvalds accepted the code, for now, but added a sobering warning:
https://www.theregister.com/2025/07/01/bcachefs_may_get_dropped/
📡@
📡@
📡@
📡@
📡@
Читать полностью…
cRyPtHoN™ INFOSEC (EN)
01 Jul 2025 14:36
Even Donald Trump can't get a good connection for a work video call
Trump blames AT&T for video call disruption, it says the network is fine
US President Donald Trump has criticized AT&T on Truth Social, claiming its network failed during a major conference call with faith leaders.
"I’m doing a major Conference Call with Faith Leaders from all over the Country, and AT&T is totally unable to make their equipment work properly," the leader wrote in an online post.
https://www.techradar.com/pro/even-donald-trump-cant-get-a-good-connection-for-a-work-video-call
📡@
📡@
📡@
📡@
📡@
Читать полностью…
cRyPtHoN™ INFOSEC (EN)
01 Jul 2025 14:32
Europol dismantles €460M crypto scam targeting 5,000 victims worldwide
Europol busted a crypto scam ring that laundered €460M from 5,000+ victims. Operation Borrelli involved Spain, the U.S., France, and Estonia.
Europol has taken down a massive cryptocurrency fraud ring that scammed over 5,000 people worldwide, laundering around €460 million ($540 million). The international operation, dubbed Operation Borrelli, began in 2023 and was led by Spain’s Guardia Civil with help from law enforcement in Estonia, France, and the U.S.
https://securityaffairs.com/179495/cyber-crime/europol-dismantles-e460m-crypto-scam-targeting-5000-victims-worldwide.html
📡@
📡@
📡@
📡@
📡@
Читать полностью…
cRyPtHoN™ INFOSEC (EN)
30 Jun 2025 14:56
RIFT: New open-source tool from Microsoft helps analyze Rust malware
Microsoft’s Threat Intelligence Center has released a new tool called RIFT to help malware analysts identify malicious code hidden in Rust binaries. While Rust is becoming more popular for its speed and memory safety, those same qualities make malware written in Rust harder to analyze. RIFT is designed to cut through that complexity and make the job easier.
https://github.com/microsoft/RIFT
📡@
📡@
📡@
📡@
📡@
Читать полностью…
cRyPtHoN™ INFOSEC (EN)
03 Jul 2025 16:03
India’s Max Financial says hacker accessed customer data from its insurance unit
Max Financial Services on Wednesday said its insurance subsidiary Axis Max Life Insurance received communication from an anonymous sender about unauthorized access to its customer data.
https://techcrunch.com/2025/07/02/indias-max-financial-says-hacker-accessed-customer-data-from-its-insurance-unit/
https://www.documentcloud.org/documents/25988297-axis-max-life-insurance-breach/
📡@
📡@
📡@
📡@
📡@
Читать полностью…
cRyPtHoN™ INFOSEC (EN)
03 Jul 2025 15:58
Cisco Issues Urgent Patch for Critical Unified CM Vulnerability (CVE-2025-20309)
Cisco has issued a new security advisory addressing a severe vulnerability in its Unified Communications Manager (Unified CM) and Unified Communications Manager Session Management Edition (Unified CM SME). The flaw, now identified as CVE-2025-20309, carries the highest possible CVSS score of 10.0.
This Cisco vulnerability stems from static root account credentials embedded during the development phase, which were never removed or secured prior to product release. According to Cisco’s advisory, the root credentials are immutable, meaning administrators cannot change or delete them, leaving the systems vulnerable to unauthenticated, remote attackers.
https://thecyberexpress.com/cisco-patches-cve-2025-20309-vulnerability/
📡@
📡@
📡@
📡@
📡@
Читать полностью…
cRyPtHoN™ INFOSEC (EN)
03 Jul 2025 15:55
Kelly Benefits data breach has impacted 550,000 people, and the situation continues to worsen as the investigation progresses
A data breach at Kelly Benefits has impacted 550,000 people, with the number of affected individuals growing as the investigation continues.
Benefits and payroll solutions firm Kelly Benefits has confirmed that a recent data breach has affected 550,000 individuals. As the investigation continued, the scale of the impact expanded, revealing that more people were affected than initially believed.
https://securityaffairs.com/179583/uncategorized/the-kelly-benefits-data-breach-has-impacted-550000-people-and-the-situation-continues-to-worsen-as-the-investigation-progresses.html
📡@
📡@
📡@
📡@
📡@
Читать полностью…
cRyPtHoN™ INFOSEC (EN)
02 Jul 2025 16:37
PDFs: Portable documents, or perfect deliveries for phish?
Brand impersonation via PDF payload
The portable document format (PDF) is a standard method for sharing information electronically. Files created in other applications (e.g., Microsoft Word) are often converted into this format, which can then be viewed using PDF rendering applications like Adobe Reader, commonly available on most OSs. Thanks to its excellent portability, this file format is widely used for the mass distribution of documents to large audiences. However, in recent months, it has also been exploited for illegitimate purposes, such as brand impersonation.
https://blog.talosintelligence.com/pdfs-portable-documents-or-perfect-deliveries-for-phish/
📡@
📡@
📡@
📡@
📡@
Читать полностью…
cRyPtHoN™ INFOSEC (EN)
02 Jul 2025 16:34
Ransomware gang attacks German charity that feeds starving children
Deutsche Welthungerhilfe (WHH), the German charity that aims to develop sustainable food supplies in some of the world’s most impoverished countries, has been attacked by a ransomware gang.
The charity, whose name literally translates as World Hunger Help, reached 16.4 million people in 2023. It is currently providing emergency aid to people in Gaza, Ukraine, Sudan and other countries and regions where there is an urgent need for food, water, medicine and basic necessities.
https://therecord.media/welthungerhilfe-german-hunger-relief-charity-ransomware-attack
📡@
📡@
📡@
📡@
📡@
Читать полностью…
cRyPtHoN™ INFOSEC (EN)
02 Jul 2025 16:31
Dozens of Corporates Caught in Kelly Benefits Data Breach
One of America’s biggest benefits administration specialists has revealed that more than half a million individuals have been impacted by a 2024 data breach at the company.
https://www.infosecurity-magazine.com/news/dozens-corporates-kelly-benefits/
📡@
📡@
📡@
📡@
📡@
Читать полностью…
cRyPtHoN™ INFOSEC (EN)
02 Jul 2025 16:27
Cl0p cybercrime gang's data exfiltration tool found vulnerable to RCE attacks
Experts say they don't expect the MOVEit menace to do much about it
Security experts have uncovered a hole in Cl0p's data exfiltration tool that could potentially leave the cybercrime group vulnerable to attack.
The vulnerability in the Python-based software, which was used in the 2023-2024 MOVEit mass data raids, was discovered by Italian researcher Lorenzo N and published by the Computer Incident Response Center Luxembourg (CIRCL).
https://www.theregister.com/2025/07/02/cl0p_rce_vulnerability/
https://vulnerability.circl.lu/vuln/gcve-1-2025-0002
📡@
📡@
📡@
📡@
📡@
Читать полностью…
cRyPtHoN™ INFOSEC (EN)
02 Jul 2025 16:24
AT&T has a new tool to stop dangerous SIM swapping attacks - here's how it will keep you safe
Users will need physical access to a device to make important changes
AT&T has introduced a new feature to protect consumer and business accounts from SIM-swapping attacks.
Wireless Account Lock will be able to disable several key account changes, a key part of SIM-swapping, which can give attackers control of a victim’s phone number and lets them intercept SMS-based two-factor authentication app codes.
https://www.techradar.com/pro/security/at-and-t-reveals-new-account-lock-tool-to-stop-sim-swapping-attacks
📡@
📡@
📡@
📡@
📡@
Читать полностью…
cRyPtHoN™ INFOSEC (EN)
02 Jul 2025 16:21
Qantas confirms customer data breach amid Scattered Spider attacks
Qantas reports a cyberattack after hackers accessed customer data via a third-party platform, amid ongoing Scattered Spider aviation breaches.
Qantas, Australia’s largest airline, disclosed a cyberattack after hackers accessed a third-party platform used by a call centre, stealing significant customer data. The breach, linked to ongoing Scattered Spider activity, was detected and contained on Monday. Qantas confirmed that while the system is now secure, a substantial amount of data was likely compromised during the incident.
https://securityaffairs.com/179557/cyber-crime/qantas-confirms-customer-data-breach-amid-scattered-spider-attacks.html
📡@
📡@
📡@
📡@
📡@
Читать полностью…
cRyPtHoN™ INFOSEC (EN)
01 Jul 2025 14:45
DOJ raids 29 ‘laptop farms’ in operation against North Korean IT worker scheme
Nearly 30 “laptop farms” across 16 states have been raided by U.S. law enforcement in recent months for their suspected role in a long-running North Korean IT worker scheme.
The Justice Department on Monday announced a coordinated action that involved three indictments, one arrest, the seizure of 29 financial accounts and the shutdown of 21 websites alongside the laptop farm raids.
https://therecord.media/doj-raids-laptop-farms-crackdown
📡@
📡@
📡@
📡@
📡@
Читать полностью…
cRyPtHoN™ INFOSEC (EN)
01 Jul 2025 14:41
Johnson Controls starts notifying people affected by 2023 breach
Building automation giant Johnson Controls is notifying individuals whose data was stolen in a massive ransomware attack that impacted the company's operations worldwide in September 2023.
Johnson Controls is a multinational conglomerate that develops and manufactures industrial control systems, security equipment, HVAC systems, and fire safety equipment for buildings. The company employs over 100,000 people through its corporate operations and subsidiaries across 150 countries, reporting sales of $27.4 billion in 2024.
https://www.bleepingcomputer.com/news/security/johnson-controls-starts-notifying-people-affected-by-2023-breach/
📡@
📡@
📡@
📡@
📡@
Читать полностью…
cRyPtHoN™ INFOSEC (EN)
01 Jul 2025 14:37
Mexican drug cartel hacker spied on FBI official’s phone to track and kill informants, report says
n 2018, a hacker hired by the Mexican Sinaloa drug cartel run by the infamous kingpin Joaquín “El Chapo” Guzmán spied on the U.S. Embassy in Mexico City with the goal of identifying “people of interest” for the cartel to target and kill, according to a new U.S. government watchdog report.
https://techcrunch.com/2025/06/30/mexican-drug-cartel-hacker-spied-on-fbi-officials-phone-to-track-and-kill-informants-report-says/
📡@
📡@
📡@
📡@
📡@
Читать полностью…
cRyPtHoN™ INFOSEC (EN)
01 Jul 2025 14:33
No, Windows did not lose 400 million devices in the past three years
Microsoft keeps a tight watch on Windows usage information. Ever so often, a company executive highlights Windows usage numbers, usually to demonstrate the immense base of users that Windows has. Sometimes, it is done to show confidence in a product. This happened the last time when Microsoft projected that its new Windows 10 operating system would be installed on more than a billion PC devices just a few years after its 2015 release. Never happened, that one.
https://www.ghacks.net/2025/07/01/no-windows-did-not-lose-400-million-devices-in-the-past-three-years/
📡@
📡@
📡@
📡@
📡@
Читать полностью…
cRyPtHoN™ INFOSEC (EN)
30 Jun 2025 15:02
Villain: Open-source framework for managing and enhancing reverse shells
Villain is an open-source Stage 0/1 command-and-control (C2) framework designed to manage multiple reverse TCP and HoaxShell-based shells.
Vuls: Open-source agentless vulnerability scanner
Vuls is an open-source tool that helps users find and manage security vulnerabilities. It was created to solve the daily problems admins face when trying to keep servers secure.
Woodpecker: Open-source red teaming for AI, Kubernetes, APIs
Woodpecker is an open-source tool that automates red teaming, making advanced security testing easier and more accessible. It helps teams find and fix security weaknesses in AI systems, Kubernetes environments, and APIs before attackers can exploit them.
📡@
📡@
📡@
📡@
📡@
Читать полностью…
cRyPtHoN™ INFOSEC (EN)
30 Jun 2025 14:42
Now it is certain: NFC data for contactless payments are the new target. Here is what you need to know.
How a novel attack scenario spotted in Eastern Europe became a global threat.
In late 2023, when ESET researchers discovered a novel attack method abusing the near field communications (NFC) data of Czech banking customers, they warned about the possibility of its expansion into other regions or countries.
https://www.eset.com/blog/en/home-topics-1/cybersecurity-protection/now-it-is-certain-nfc-data-for-contactless-payments-are-the-new-target-here-is-what-you-need-to-know/
📡@
📡@
📡@
📡@
📡@
Читать полностью…
4200