183 matches found
Vietnam-Based Hackers Steal Financial Data Across Asia with Malware
A suspected Vietnamese-origin threat actor has been observed targeting victims in several Asian and Southeast Asian countries with malware designed to harvest valuable data since at least May 2023. Cisco Talos is tracking the cluster under the name CoralRaider, describing it as financially...
CoralRaider targets victims’ data and social media accounts
Cisco Talos discovered a new threat actor were calling "CoralRaider" that we believe is of Vietnamese origin and financially motivated. CoralRaider has been operating since at least 2023, targeting victims in several Asian and Southeast Asian countries. This group focuses on stealing victims...
Compromising Bank Customer Trust: The Price of Inadequate Data Protection
Banks hold not just money, but also emotions and aspirations. Countless stories unfold within bank walls, reflecting the intimate connection between money and emotion. Beyond the numbers and transactions, every dollar represents individuals’ hopes, dreams, and livelihoods. As the trusted custodia...
Apache Fineract SQL Injection Vulnerability (CNVD-2024-16107)
Apache Fineract is a set of open source digital financial services platform from the U.S. Apache Apache Foundation. The platform can provide users with data management, loan and savings portfolio management and real-time financial data and other functions. Apache Fineract versions prior to 1.8.5...
Apache Fineract SQL Injection Vulnerability (CNVD-2024-16106)
Apache Fineract is a set of open source digital financial services platform from the U.S. Apache Apache Foundation. The platform can provide users with data management, loan and savings portfolio management and real-time financial data and other functions. Apache Fineract versions prior to 1.8.5...
President Biden Blocks Mass Transfer of Personal Data to High-Risk Nations
U.S. President Joe Biden has issued an Executive Order that prohibits the mass transfer of citizens' personal data to countries of concern. The Executive Order also "provides safeguards around other activities that can give those countries access to Americans' sensitive data," the White House sai...
Vulnerabilities fixed in Oracle Hyperion
Oracle has fixed vulnerabilities in several Hyperion products. A malicious party can exploit the vulnerabilities to launch attacks execute attacks that can result in the following categories of damage: Denial-of-Service DoS. Data manipulation. Remote code execution User rights Access to sensitive...
Samsung Data Breach: Hackers Steal Data of UK Customers
By Waqas The data breach does not include passwords or financial data. This is a post from HackRead.com Read the original post: Samsung Data Breach: Hackers Steal Data of UK Customers...
Webinar: Locking Down Financial and Accounting Data — Best Data Security Strategies
Financial data is much more than just a collection of numbers; it is a crucial component of any business and a prime target for cybercriminals. It's important to understand that financial records can be a veritable treasure trove for digital pirates. A security breach not only puts customers'...
APT trends report Q3 2023
For more than six years, the Global Research and Analysis Team GReAT at Kaspersky has been publishing quarterly summaries of advanced persistent threat APT activity. These summaries are based on our threat intelligence research; and they provide a representative snapshot of what we have published...
Phishers Spoof USPS, 12 Other Natl’ Postal Services
The fake USPS phishing page. Recent weeks have seen a sizable uptick in the number of phishing scams targeting U.S. Postal Service USPS customers. Heres a look at an extensive SMS phishing operation that tries to steal personal and financial data by spoofing the USPS, as well as postal services i...
New Chae$4 Malware Steals Login, Financial Data from Businesses
By Habiba Rashid Meet Chae$4 malware: the new and even harder-to-detect variant of the infamous Chaes malware. This is a post from HackRead.com Read the original post: New Chae$4 Malware Steals Login, Financial Data from Businesses...
Apache Fineract SQL Injection Vulnerability (CNVD-2023-23557)
Apache Fineract is an open source digital financial services platform from the Apache Foundation. The platform can provide users with data management, loan and savings portfolio management and real-time financial data and other features. Apache Fineract versions 1.4 to 1.8.3 have a SQL injection...
Black Basta Ransomware Invades US Firms with Qakbot Malware
Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary In this latest spear-phishing campaign, the Black Basta ransomware gang employed QakBot malware, aka QBot or Pinkslipbot, to acquire an initial point of entry and migrate laterally through an organizatio...
LofyLife: Malicious npm Packages Used in Siphoning Off Discord Tokens, Card Data
By Deeba Ahmed The malicious NPM packages used in this supply chain attack can steal Discord tokens and financial data. Discord,… This is a post from HackRead.com Read the original post: LofyLife: Malicious npm Packages Used in Siphoning Off Discord Tokens, Card Data...
Natural Language Processing and “Mindful” AI Drive More Sophisticated Bad Bot Attacks
The evolution from human to bot attacks Over the last several years of my career in cyber security, I have been fortunate to work with professionals who researched and developed new cyber security detection and prevention solutions that block high-end cyber attacks. Initially, these attacks were...
2FA App Loaded with Banking Trojan Infests 10K Victims via Google Play
After remaining available for more than two weeks, a malicious two-factor authentication 2FA application has been removed from Google Play — but not before it was downloaded more than 10,000 times. The app, which is fully functional as a 2FA authenticator, comes loaded with the Vultur stealer...
FBI – Malicious QR codes stealing login and financial data
By Deeba Ahmed The FBI has issued an alert urging users to refrain from scanning anonymous QR codes as cybercriminals are… This is a post from HackRead.com Read the original post: FBI - Malicious QR codes stealing login and financial data...
TransCredit exposed financial data of half a million Americans and Canadians
By Waqas TransCredit is a Jacksonville, Florida-based business credit reporting agency for the transportation industry. The IT security researchers at… This is a post from HackRead.com Read the original post: TransCredit exposed financial data of half a million Americans and Canadians...
Anubis malware resurfaces targeting crypto wallets and banking apps
By Waqas So far, 394 malicious apps have been identified that are spreading Anubis malware to steal financial and personal data from Android users. This is a post from HackRead.com Read the original post: Anubis malware resurfaces targeting crypto wallets and banking apps...