ESET researchers find the first UEFI bootkit designed specifically to target Linux systems, marking a shift in bootkits that previously focused on Windows
Article then proceeds to describe a toy GRUB wrapper bootkit that has nothing to do with UEFI firmware (other than running on UEFI systems like any other UEFI bootloader), does not...
ESET researchers find the first UEFI bootkit designed specifically to target Linux systems, marking a shift in bootkits that previously focused on Windows
Article then proceeds to describe a toy GRUB wrapper bootkit that has nothing to do with UEFI firmware (other than running on UEFI systems like any other UEFI bootloader), does not...
ESET researchers find the first UEFI bootkit designed specifically to target Linux systems, marking a shift in bootkits that previously focused on Windows
Article then proceeds to describe a toy GRUB wrapper bootkit that has nothing to do with UEFI firmware (other than running on UEFI systems like any other UEFI bootloader), does not...
ESET researchers find the first UEFI bootkit designed specifically to target Linux systems, marking a shift in bootkits that previously focused on Windows
Article then proceeds to describe a toy GRUB wrapper bootkit that has nothing to do with UEFI firmware (other than running on UEFI systems like any other UEFI bootloader), does not...
Pro-Russia hacking group Winter Vivern is targeting European governmental entities' Roundcube Webmail servers, triggering an attack when an email is viewed
ESET Research recommends updating Roundcube Webmail to the latest available version as soon as possible
Pro-Russia hacking group Winter Vivern is targeting European governmental entities' Roundcube Webmail servers, triggering an attack when an email is viewed
ESET Research recommends updating Roundcube Webmail to the latest available version as soon as possible
Mandiant says the North Korea-linked hack of VoIP company 3CX's customers is the first confirmed incident of one software-supply-chain attack enabling another
perhaps the first confirmed case of one software supply chain attack causing another. https://www.wired.com/... Kim Zetter / @kimzetter : I've updated story about 3XC/X_Trader with...
Researchers detail UEFI bootkit BlackLotus, capable of bypassing UEFI Secure Boot even on up-to-date Windows 11 systems and selling for $5K since October 2022
The first in-the-wild UEFI bootkit bypassing UEFI Secure Boot on fully updated UEFI systems is now a reality
Researchers say they realized Russia had invaded Ukraine hours before the news broke thanks to Google Maps traffic info and a SAR satellite image of troops
It was 3:15 a.m. in Belgorod, Russia — much too early for a traffic jam, thought Jeffrey Lewis, who was watching the traffic pileup on Google Maps.
Sources: Ukraine is asking for volunteers from its hacker community to protect critical infrastructure and conduct cyber spying missions against Russian troops
The government of Ukraine is asking for volunteers from the country's hacker underground to help protect critical infrastructure …
DDoS attacks disrupt several Ukrainian government sites; ESET researchers discover new data wiper malware installed on hundreds of Ukrainian machines
here's what you need to know NetBlocks : Internet disruptions registered as Russia moves in on Ukraine Andy Greenberg / Wired : Russia's Sandworm Hackers Have Built a Botnet of Fir...
Several Ukrainian government sites have been disrupted by DDoS attacks; researchers discover new data wiper malware installed on hundreds of Ukrainian machines
Cloudflare said the attack was “relatively modest compared to large DDoS attacks we've handled in the past.”
Ukraine's digital transformation ministry says “all evidence points to Russia being behind the attack”, which took down about 70 government websites
Max Seddon / Financial Times :
Israeli spyware vendor Candiru, recently blacklisted by the US, waged “watering hole” attacks on UK and Middle East websites critical of Saudi Arabia and others
Lorenzo Franceschi-Bicchierai / VICE :
In a post on the REvil dark web blog, the gang takes credit for the Kaseya attack, claims it infected 1M+ systems, and demands $70M in bitcoin for the decryptor
The REvil ransomware gang is asking for a $70 million ransom payment to publish a universal decryptor that can unlock …
President Biden says he has directed US intelligence agencies to investigate the Kaseya ransomware attack and adds “we're not certain” who is behind the attack
Trevor Hunnicutt / Reuters :
ESET researchers detail Crutch malware, used by Russian APT Turla to steal sensitive docs from an EU foreign ministry and exfiltrate them via Dropbox accounts
Russian-backed hacking group Turla has used a previously undocumented malware toolset to deploy backdoors and steal sensitive documents …