Lucene search
+L

258 matches found

The Hacker News
The Hacker News
added 2025/02/25 5:51 a.m.9 views

FatalRAT Phishing Attacks Target APAC Industries Using Chinese Cloud Services

Various industrial organizations in the Asia-Pacific APAC region have been targeted as part of phishing attacks designed to deliver a known malware called FatalRAT. "The threat was orchestrated by attackers using legitimate Chinese cloud content delivery network CDN myqcloud and the Youdao Cloud...

7.1AI score
Exploits0
Talos Blog
Talos Blog
added 2025/02/20 1:0 p.m.30 views

Weathering the storm: In the midst of a Typhoon

Summary Cisco Talos has been closely monitoring reports of widespread intrusion activity against several major U.S. telecommunications companies. The activity, initially reported in late 2024 and later confirmed by the U.S. government, is being carried out by a highly sophisticated threat actor...

10CVSS10AI score0.99571EPSS
Exploits31
The Hacker News
The Hacker News
added 2025/02/14 10:27 a.m.15 views

Microsoft: Russian-Linked Hackers Using 'Device Code Phishing' to Hijack Accounts

Microsoft is calling attention to an emerging threat cluster it calls Storm-2372 that has been attributed to a new set of cyber attacks aimed at a variety of sectors since August 2024. The attacks have targeted government, non-governmental organizations NGOs, information technology IT services an...

7.2AI score
Exploits0
Wired Threat Level
Wired Threat Level
added 2025/01/17 6:48 p.m.13 views

The FCC’s Jessica Rosenworcel Isn’t Leaving Without a Fight

As the US faces “the worst telecommunications hack in our nation’s history,” by China’s Salt Typhoon hackers, the outgoing FCC chair is determined to bolster network security if it’s the last thing she does...

7.3AI score
Exploits0
CISA
CISA
added 2024/12/18 12:0 p.m.10 views

CISA Releases Best Practice Guidance for Mobile Communications

Today, CISA released Mobile Communications Best Practice Guidance. The guidance was crafted in response to identified cyber espionage activity by People’s Republic of China PRC government-affiliated threat actors targeting commercial telecommunications infrastructure, specifically addressing...

7AI score
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2024/12/16 12:0 a.m.5 views

The vulnerability of the UMTS RLC microprogramming software driver for Unisoc chips, related to buffer overflow attacks, allows attackers to cause service failures.

The vulnerability of the UMTS RLC microprogramming software driver for Unisoc chips is related to writing beyond buffer boundaries. Exploiting this vulnerability could allow a malicious actor to cause service failure...

8.3CVSS5.7AI score0.00176EPSS
Exploits0References2
The Hacker News
The Hacker News
added 2024/12/04 6:7 a.m.10 views

Joint Advisory Warns of PRC-Backed Cyber Espionage Targeting Telecom Networks

A joint advisory issued by Australia, Canada, New Zealand, and the U.S. has warned of a broad cyber espionage campaign undertaken by People's Republic of China PRC-affiliated threat actors targeting telecommunications providers. "Identified exploitations or compromises associated with these threa...

7.2AI score
Exploits0
The Hacker News
The Hacker News
added 2024/11/26 10:19 a.m.20 views

Chinese Hackers Use GHOSTSPIDER Malware to Hack Telecoms Across 12+ Countries

The China-linked threat actor known as Earth Estries has been observed using a previously undocumented backdoor called GHOSTSPIDER as part of its attacks targeting Southeast Asian telecommunications companies. Trend Micro, which described the hacking group as an aggressive advanced persistent...

9.8CVSS9.8AI score0.99999EPSS
Exploits93
The Hacker News
The Hacker News
added 2024/11/20 6:58 a.m.7 views

China-Backed Hackers Leverage SIGTRAN, GSM Protocols to Infiltrate Telecom Networks

A new China-linked cyber espionage group has been attributed as behind a series of targeted cyber attacks targeting telecommunications entities in South Asia and Africa since at least 2020 with the goal of enabling intelligence collection. Cybersecurity company CrowdStrike is tracking the adversa...

7.2AI score
Exploits0
The Hacker News
The Hacker News
added 2024/11/19 7:2 a.m.7 views

Chinese Hackers Exploit T-Mobile and Other U.S. Telecoms in Broader Espionage Campaign

U.S. telecoms giant T-Mobile has confirmed that it was also among the companies that were targeted by Chinese threat actors to gain access to valuable information. The adversaries, tracked as Salt Typhoon, breached the company as part of a "monthslong campaign" designed to harvest cellphone...

7.6AI score
Exploits0
The Hacker News
The Hacker News
added 2024/10/17 10:15 a.m.63 views

SideWinder APT Strikes Middle East and Africa With Stealthy Multi-Stage Attack

An advanced persistent threat APT actor with suspected ties to India has sprung forth with a flurry of attacks against high-profile entities and strategic infrastructures in the Middle East and Africa. The activity has been attributed to a group tracked as SideWinder, which is also known as...

9.3CVSS8.8AI score0.99945EPSS
Exploits33
Positive Technologies
Positive Technologies
added 2024/09/27 12:0 a.m.3 views

PT-2024-9402 · Unisoc · Unisoc Chipsets

Name of the Vulnerable Software and Affected Versions: Unisoc chipsets affected versions not specified Description: The issue is related to a buffer overflow in the UMTS RLC driver of Unisoc chipsets' microprogram software. This is due to a missing bounds check, which could lead to a remote denia...

8.3CVSS7.3AI score0.00176EPSS
Exploits0References7
CNNVD
CNNVD
added 2024/09/27 12:0 a.m.4 views

UNISOC Chipsets 安全漏洞

UNISOC Chipsets is a chipset from China's Unisplendour UNISOC. A security vulnerability exists in UNISOC Chipsets, which stems from a lack of boundary checking in the UMTS RLC driver, which could result in out-of-bounds writes...

8.3CVSS6.5AI score0.00176EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/09/13 12:0 a.m.7 views

PT-2024-37121

Name of the Vulnerable Software and Affected Versions: BT affected versions not specified Description: The BT encryption procedure host has a vulnerability. There is no information provided about the estimated number of potentially affected devices worldwide or details about real-world incidents...

8.2CVSS6.3AI score0.0031EPSS
Exploits1References6
Qualys Blog
Qualys Blog
added 2024/07/19 11:58 a.m.19 views

Global Outage Alert: Windows BSOD Crisis Following CrowdStrike Update – Recovery Steps & Qualys Assurance

On Friday, July 19, 2024, morning, reports surfaced globally of Microsoft Windows operating system users encountering the infamous Blue Screen of Death BSOD following the latest update from CrowdStrike. This widespread issue has severely impacted critical services, including telecommunications,...

7.4AI score
Exploits0
The Hacker News
The Hacker News
added 2024/06/22 11:28 a.m.72 views

ExCobalt Cyber Gang Targets Russian Sectors with New GoRed Backdoor

Russian organizations have been targeted by a cybercrime gang called ExCobalt using a previously unknown Golang-based backdoor known as GoRed. "ExCobalt focuses on cyber espionage and includes several members active since at least 2016 and presumably once part of the notorious Cobalt Gang,"...

7.8CVSS9.1AI score0.99295EPSS
Exploits259
The Hacker News
The Hacker News
added 2024/06/19 3:9 p.m.98 views

UNC3886 Uses Fortinet, VMware 0-Days and Stealth Tactics in Long-Term Spying

The China-nexus cyber espionage actor linked to the zero-day exploitation of security flaws in Fortinet, Ivanti, and VMware devices has been observed utilizing multiple persistence mechanisms in order to maintain unfettered access to compromised environments. "Persistence mechanisms encompassed...

9.8CVSS8AI score0.99474EPSS
Exploits13
Talos Blog
Talos Blog
added 2024/05/02 6:0 p.m.20 views

What can we learn from the passwords used in brute-force attacks?

Brute force attacks are one of the most elementary cyber threats out there. Technically, anyone with a keyboard and some free time could launch one of them -- just try a bunch of different username and password combinations on the website of your choice until you get blocked. Nick Biasini and I...

7.6AI score
Exploits0
Schneier on Security
Schneier on Security
added 2024/05/02 11:5 a.m.22 views

The UK Bans Default Passwords

The UK is the first country to ban default passwords on IoT devices. On Monday, the United Kingdom became the first country in the world to ban default guessable usernames and passwords from these IoT devices. Unique passwords installed by default are still permitted. The Product Security and...

7.3AI score
Exploits0
The Hacker News
The Hacker News
added 2024/04/30 5:57 a.m.20 views

New U.K. Law Bans Default Passwords on Smart Devices Starting April 2024

The U.K. National Cyber Security Centre NCSC is calling on manufacturers of smart devices to comply with new legislation that prohibits them from using default passwords, effective April 29, 2024. "The law, known as the Product Security and Telecommunications Infrastructure act or PSTI act, will...

7.5AI score
Exploits0
Rows per page
Query Builder