Thousands of Oracle NetSuite Sites at Risk of Exposing Customer Information – OfficialSarkar

Thousands of Oracle NetSuite Sites at Risk of Exposing Customer Information – OfficialSarkar

Aug 20, 2024Ravie LakshmananEnterprise Security / Data Breach Cybersecurity researchers are warning about the discovery of thousands of externally-facing Oracle NetSuite e-commerce sites that have been found susceptible to leaking sensitive customer information. “A potential issue in NetSuite’s SuiteCommerce platform could allow attackers to access sensitive data due to misconfigured access controls on custom record…

Cybercriminals Exploit Popular Software Searches to Spread FakeBat Malware – OfficialSarkar

Cybercriminals Exploit Popular Software Searches to Spread FakeBat Malware – OfficialSarkar

Aug 19, 2024Ravie LakshmananMalvertising / Cybercrime Cybersecurity researchers have uncovered a surge in malware infections stemming from malvertising campaigns distributing a loader called FakeBat. “These attacks are opportunistic in nature, targeting users seeking popular business software,” the Mandiant Managed Defense team said in a technical report. “The infection utilizes a trojanized MSIX installer, which executes…

New UULoader Malware Distributes Gh0st RAT and Mimikatz in East Asia – OfficialSarkar

New UULoader Malware Distributes Gh0st RAT and Mimikatz in East Asia – OfficialSarkar

Aug 19, 2024Ravie LakshmananThreat Intelligence / Cryptocurrency A new type of malware called UULoader is being used by threat actors to deliver next-stage payloads like Gh0st RAT and Mimikatz. The Cyberint Research Team, which discovered the malware, said it’s distributed in the form of malicious installers for legitimate applications targeting Korean and Chinese speakers. There…

How to Automate the Hardest Parts of Employee Offboarding – OfficialSarkar

How to Automate the Hardest Parts of Employee Offboarding – OfficialSarkar

According to recent research on employee offboarding, 70% of IT professionals say they’ve experienced the negative effects of incomplete IT offboarding, whether in the form of a security incident tied to an account that wasn’t deprovisioned, a surprise bill for resources that aren’t in use anymore, or a missed handoff of a critical resource or…

Xeon Sender Tool Exploits Cloud APIs for Large-Scale SMS Phishing Attacks – OfficialSarkar

Xeon Sender Tool Exploits Cloud APIs for Large-Scale SMS Phishing Attacks – OfficialSarkar

Aug 19, 2024Ravie LakshmananCloud Security / Threat Intelligence Malicious actors are using a cloud attack tool named Xeon Sender to conduct SMS phishing and spam campaigns on a large scale by abusing legitimate services. “Attackers can use Xeon to send messages through multiple software-as-a-service (SaaS) providers using valid credentials for the service providers,” SentinelOne security…

Microsoft Patches Zero-Day Flaw Exploited by North Korea’s Lazarus Group – OfficialSarkar

Microsoft Patches Zero-Day Flaw Exploited by North Korea’s Lazarus Group – OfficialSarkar

Aug 19, 2024Ravie LakshmananVulnerability / Zero-Day A newly patched security flaw in Microsoft Windows was exploited as a zero-day by Lazarus Group, a prolific state-sponsored actor affiliated with North Korea. The security vulnerability, tracked as CVE-2024-38193 (CVSS score: 7.8), has been described as a privilege escalation bug in the Windows Ancillary Function Driver (AFD.sys) for…

Researchers Uncover New Infrastructure Tied to FIN7 Cybercrime Group – OfficialSarkar

Researchers Uncover New Infrastructure Tied to FIN7 Cybercrime Group – OfficialSarkar

Aug 19, 2024Ravie LakshmananCybercrime / Network Security Cybersecurity researchers have discovered new infrastructure linked to a financially motivated threat actor known as FIN7. The two clusters of potential FIN7 activity “indicate communications inbound to FIN7 infrastructure from IP addresses assigned to Post Ltd (Russia) and SmartApe (Estonia), respectively,” Team Cymru said in a report published…

OpenAI Blocks Iranian Influence Operation Using ChatGPT for U.S. Election Propaganda – OfficialSarkar

OpenAI Blocks Iranian Influence Operation Using ChatGPT for U.S. Election Propaganda – OfficialSarkar

OpenAI on Friday said it banned a set of accounts linked to what it said was an Iranian covert influence operation that leveraged ChatGPT to generate content that, among other things, focused on the upcoming U.S. presidential election. “This week we identified and took down a cluster of ChatGPT accounts that were generating content for…

Attackers Exploit Public .env Files to Breach Cloud and Social Media Accounts – OfficialSarkar

Attackers Exploit Public .env Files to Breach Cloud and Social Media Accounts – OfficialSarkar

Aug 16, 2024Ravie LakshmananCloud Security / Application Security A large-scale extortion campaign has compromised various organizations by taking advantage of publicly accessible environment variable files (.env) that contain credentials associated with cloud and social media applications. “Multiple security missteps were present in the course of this campaign, including the following: Exposing environment variables, using long-lived…

Russian Hacker Jailed 3+ Years for Selling Stolen Credentials on Dark Web – OfficialSarkar

Russian Hacker Jailed 3+ Years for Selling Stolen Credentials on Dark Web – OfficialSarkar

Aug 16, 2024Ravie LakshmananDark Web / Data Breach A 27-year-old Russian national has been sentenced to over three years in prison for peddling financial information, login credentials, and other personally identifying information (PII) on a now-defunct dark web marketplace called Slilpp. Georgy Kavzharadze, 27, of Moscow, Russia, pleaded guilty to one count of conspiracy to…