Software

Japan’s largest taxi operator shuts systems after cyberattack

UK authorities charged five people following a National Crime Agency (NCA) investigation into Russian Coms, a major caller ID spoofing platform used by criminals to make over 1.8 million scam calls. The five people charged are 28-year-old Ayoub Sehailia, 30-year-old Zakkaria Sehailia, 30-year-old Usman Din, 29-year-old Denis Ozmus, and 53-year-old Fadila Salem, 53, all from […]

Japan’s largest taxi operator shuts systems after cyberattack Read More »

Japan’s largest taxi operator shuts systems after cyberattack

Discover how Varonis Threat Labs created Breach at the Beach, a unique Entra ID training experience. Enhance your cybersecurity skills through hands-on learning with this CTF. Cybersecurity can feel a lot like the ocean. A sense of calm on the surface, but likely something unknown is lurking underwater. Varonis Threat Labs researchers Doron Kapah and

Japan’s largest taxi operator shuts systems after cyberattack Read More »

Japan’s largest taxi operator shuts systems after cyberattack

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is warning that attackers are exploiting vulnerabilities in the iCagenda and Balbooa Forms extensions for Joomla to achieve remote code execution through arbitrary file uploads. The agency has categorized the flaws as a maximum priority, ordering federal agencies to apply available security updates and/or mitigations within three

Japan’s largest taxi operator shuts systems after cyberattack Read More »

Japan’s largest taxi operator shuts systems after cyberattack

German discount supermarket chain Lidl notified customers in Germany, Belgium, and the Netherlands that attackers stole their personal information in a breach at a service provider. Lidl, owned by Schwarz Group, the largest food retailer in Europe, has over 376,000 employees and operates 12,000 stores across Europe and the United States. The discount giant notified

Japan’s largest taxi operator shuts systems after cyberattack Read More »

Japan’s largest taxi operator shuts systems after cyberattack

A new macOS information-stealing malware called CrashStealer pretends to be Apple’s crash-reporting tool to steal credentials, keychain data, and crypto wallets. Malware researchers started tracking the malware in May, when it appeared to still be in development, but observed it being used in attacks in early July. CrashStealer has a typical infostealer capability set that

Japan’s largest taxi operator shuts systems after cyberattack Read More »

Japan’s largest taxi operator shuts systems after cyberattack

Japan’s largest taxi operator, Nihon Kotsu, announced that its systems were compromised in a cyberattack, forcing the company to shut down part of its infrastructure. The incident occurred over the weekend, early Saturday morning, and impacted operations, including the company’s taxi dispatch system, which remains offline as of today. Nihon Kotsu is Japan’s largest taxi

Japan’s largest taxi operator shuts systems after cyberattack Read More »

Japan’s largest taxi operator shuts systems after cyberattack

The Jscrambler client-side web security company disclosed that a threat actor published a malicious version of its npm package that has been downloaded almost 1,500 times. The malicious Jscrambler package spanned releases 8.14, 8.16, 8.17, and 8.20 and included information-stealing malware that executed during the ‘preinstall’ hook. “Today, we identified the unauthorized publication of a

Japan’s largest taxi operator shuts systems after cyberattack Read More »

Zimbra urges customers to patch critical web client XSS flaw

The Zimbra security team urged customers to patch a critical vulnerability affecting the Classic Web Client used to access the Zimbra Collaboration suite. Zimbra is a very popular email and collaboration software suite used by hundreds of millions of people, including thousands of businesses and hundreds of government agencies worldwide. Also known as the Classic

Zimbra urges customers to patch critical web client XSS flaw Read More »

Former ransomware negotiator gets 4 years for BlackCat attacks

A former employee of cybersecurity incident response company DigitalMint was sentenced to 70 months in prison for targeting U.S. companies in BlackCat (ALPHV) ransomware attacks. The FBI linked the BlackCat ransomware gang to more than 60 breaches between November 2021 and March 2022, adding in a separate advisory that the cybercrime group had collected at

Former ransomware negotiator gets 4 years for BlackCat attacks Read More »

Google is about to delete some of your favorite Chrome extensions forever, and there’s no going back

For a few years now, Google has been waging a campaign against old Chrome extensions that use the now-deprecated Manifest V2, which has been replaced by newer, more secure Manifest V3. The new protocol also refines how extensions run on Chrome, thereby reducing resource utilization. But there are some casualties of this transition, including popular

Google is about to delete some of your favorite Chrome extensions forever, and there’s no going back Read More »