Feds Reportedly Try to Disrupt 'Volt Typhoon' Attack Infrastructure

The China-linked threat actor's attacks on US critical infrastructure organizations have alarmed American intelligence officials, Reuters says.


https://www.darkreading.com/cybersecurit...astructure

A mishandled GitHub token exposed Mercedes-Benz source code


A mishandled GitHub token gave unrestricted access to Mercedes-Benz's internal GitHub Enterprise Service, exposing source code to the public. [...]


https://www.bleepingcomputer.com/news/se...urce-code/

Vastaamo hacker traced via ‘untraceable’ Monero transactions, police says


Julius Aleksanteri Kivimäki, the suspect believed to be behind an attack against one of Finland's largest psychotherapy clinics, Vastaamo, was allegedly identified by tracing what has been believed to be untraceable Monero transactions. [...]


https://www.bleepingcomputer.com/news/se...lice-says/

US charges two more suspects with DraftKing account hacks


​The U.S. Department of Justice arrested and charged two more suspects for their involvement in the hacking of almost 68,000 DraftKings accounts in a November 2022 credential stuffing attack. [...]


https://www.bleepingcomputer.com/news/se...unt-hacks/

Online ransomware decryptor helps recover partially encrypted files


CyberArk has created an online version of 'White Phoenix,' an open-source ransomware decryptor targeting operations using intermittent encryption. [...]


https://www.bleepingcomputer.com/news/se...ted-files/

New Linux glibc flaw lets attackers get root on major distros


​Unprivileged attackers can get root access on multiple major Linux distributions in default configurations by exploiting a newly disclosed local privilege escalation (LPE) vulnerability in the GNU C Library (glibc). [...]


https://www.bleepingcomputer.com/news/se...r-distros/

Ivanti warns of new Connect Secure zero-day exploited in attacks


Today, Ivanti warned of two more vulnerabilities impacting Connect Secure, Policy Secure, and ZTA gateways, one of them a zero-day bug already under active exploitation. [...]


https://www.bleepingcomputer.com/news/se...n-attacks/

Johnson Controls says ransomware attack cost $27 million, data stolen


Johnson Controls International has confirmed that a September 2023 ransomware attack cost the company $27 million in expenses and led to a data breach after hackers stole corporate data. [...]


https://www.bleepingcomputer.com/news/se...ta-stolen/

CISA: Vendors must secure SOHO routers against Volt Typhoon attacks


CISA has urged manufacturers of small office/home office (SOHO) routers to ensure their devices' security against ongoing attacks attempting to hijack them, especially those coordinated by Chinese state-backed hacking group Volt Typhoon (Bronze Silhouette). [...]


https://www.bleepingcomputer.com/news/se...n-attacks/

FBI disrupts Chinese botnet by wiping malware from infected routers

The FBI has disrupted the KV Botnet used by Chinese Volt Typhoon state hackers to evade detection during attacks targeting U.S. critical infrastructure. [...]


https://www.bleepingcomputer.com/news/se...d-routers/