North Korean hackers use new Vyveva malware to attack freighters

The North Korean-backed Lazarus hacking group used new malware with backdoor capabilities dubbed Vyveva and targeted attacks against a South African freight logistics company. Vyveva was first used in a June 2020 attack as ESET researchers discovered, but further evidence shows Lazarus has been deploying it in previous attacks going back to at least December … Continue reading North Korean hackers use new Vyveva malware to attack freighters

Attackers Actively Seeking, Exploiting Vulnerable SAP Applications

Analysis of threat activity in mission-critical environments prompts CISA advisory urging SAP customers to apply necessary security patches and updates. Threat actors are actively exploiting unpatched vulnerabilities in SAP applications, including in mission-critical environments such as enterprise resource planning (ERP), supply chain management (SCM), product life cycle management (PLM), and customer relationship management (CRM). In … Continue reading Attackers Actively Seeking, Exploiting Vulnerable SAP Applications

Qualys says Accellion hackers did not breach production systems

Cybersecurity firm Qualys said today that the attackers who breached its Accellion FTA server didn't infiltrate the company's production and corporate environments. A third-party forensic firm hired to investigate if the hackers moved laterally into Qualys' network found no evidence of lateral movement from the hacked file-sharing appliance. Qualys also noted that the investigation found … Continue reading Qualys says Accellion hackers did not breach production systems

FBI and CISA warn of state hackers attacking Fortinet FortiOS servers

The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) warn of advanced persistent threat (APT) actors targeting Fortinet FortiOS servers using multiple exploits. In the Joint Cybersecurity Advisory (CSA) published today, the agencies warn admins and users that the state-sponsored hacking groups are actively exploiting Fortinet FortiOS vulnerabilities CVE-2018-13379, CVE-2020-12812, … Continue reading FBI and CISA warn of state hackers attacking Fortinet FortiOS servers

Chinese Hackers Used Facebook to Hack Uighur Muslims Living Abroad

Facebook may be banned in China, but the company on Wednesday said it has disrupted a network of bad actors using its platform to target the Uyghur community and lure them into downloading malicious software that would allow surveillance of their devices. "They targeted activists, journalists and dissidents predominantly among Uyghurs from Xinjiang in China … Continue reading Chinese Hackers Used Facebook to Hack Uighur Muslims Living Abroad