A previously unreported Lebanon-based hacking group with likely ties to Iranian intelligence has targeted more than 20 Israeli organizations since February, Microsoft's Threat Intelligence Center and Digital Security Unit reported Thursday. The group, which Microsoft dubbed "Polonium," targeted or compromised more than 20 organizations in Israel and one unnamed intergovernmental organization with operations in Lebanon. READ MORE...
Evil Corp has shifted tactics once again, this time pivoting to LockBit ransomware after U.S. sanctions have made it difficult for the cybercriminal group to reap financial gain from its activity, researchers have found. Researchers from Mandiant Intelligence have been tracking a "financially motivated threat cluster" they're calling UNC2165 that has numerous overlaps with Evil Corp and is highly likely the latest incarnation of the group. READ MORE...
Canadian investigators determined that users of the Tim Hortons coffee chain's mobile app "had their movements tracked and recorded every few minutes of every day," even when the app wasn't open, in violation of the country's privacy laws. "The app also used location data to infer where users lived, where they worked, and whether they were traveling," the Office of the Privacy Commissioner said READ MORE...
Hackers are actively exploiting a new Atlassian Confluence zero-day vulnerability tracked as CVE-2022-26134 to install web shells, with no fix available at this time. Today, Atlassian released a security advisory disclosing that CVE-2022-26134 is a critical unauthenticated, remote code execution vulnerability tracked in both Confluence Server and Data Center. READ MORE...
The US Cybersecurity and Infrastructure Security Agency (CISA) this week issued an advisory to warn of critical vulnerabilities in Illumina genetic analysis devices that could allow a remote, unauthenticated attacker to take over an impacted product. The flaws affect Illumina Local Run Manager (LRM), which is used by sequencing instruments designed for clinical diagnostic use in the sequencing of a person's DNA, testing for various genetic conditions, as well as research. READ MORE...