YoroTrooper: Researchers Warn of Kazakhstan's Stealthy Cyber Espionage Group

A relatively new threat actor known as YoroTrooper is likely made of operators originating from Kazakhstan.
The assessment, which comes from Cisco Talos, is based on their fluency in Kazakh and Russian, use of Tenge to pay for operating infrastructure, and very limited targeting of Kazakhstani entities, barring the government's Anti-Corruption Agency.
"YoroTrooper attempts to obfuscate the

https://thehackernews.com/2023/10/yorotr...rn-of.html

Critical Flaw in NextGen's Mirth Connect Could Expose Healthcare Data

Users of Mirth Connect, an open-source data integration platform from NextGen HealthCare, are being urged to update to the latest version following the discovery of an unauthenticated remote code execution vulnerability.
Tracked as CVE-2023-43208, the vulnerability has been addressed in version 4.4.1 released on October 6, 2023.
"This is an easily exploitable, unauthenticated remote code

https://thehackernews.com/2023/10/critic...nnect.html

Iranian Group Tortoiseshell Launches New Wave of IMAPLoader Malware Attacks

The Iranian threat actor known as Tortoiseshell has been attributed to a new wave of watering hole attacks that are designed to deploy a malware dubbed IMAPLoader.
"IMAPLoader is a .NET malware that has the ability to fingerprint victim systems using native Windows utilities and acts as a downloader for further payloads," the PwC Threat Intelligence said in a Wednesday analysis.
"It uses email

https://thehackernews.com/2023/10/irania...nches.html

The Danger of Forgotten Pixels on Websites: A New Case Study

While cyberattacks on websites receive much attention, there are often unaddressed risks that can lead to businesses facing lawsuits and privacy violations even in the absence of hacking incidents. A new case study highlights one of these more common cases. 
Download the full case study here.
It's a scenario that could have affected any type of company, from healthcare to finance, e-commerce to

https://thehackernews.com/2023/10/the-da...ls-on.html

BHI Energy Releases Details of Akira Ransomware Attack

The threat actor exfiltrated 690 gigabytes of uncompressed data, or 767,035 files.

https://www.darkreading.com/attacks-brea...are-attack

Microsoft tests Windows 11 encrypted DNS server auto-discovery


Microsoft is testing support for the Discovery of Network-designated Resolvers (DNR) internet standard, which enables automated client-side discovery of encrypted DNS servers on local area networks. [...]


https://www.bleepingcomputer.com/news/mi...discovery/

Chilean telecom giant GTD hit by the Rorschach ransomware gang


Chile's Grupo GTD warns that a cyberattack has impacted its Infrastructure as a Service (IaaS) platform, disrupting online services. [...]


https://www.bleepingcomputer.com/news/se...ware-gang/

Samsung Galaxy S23 hacked two more times at Pwn2Own Toronto

Security researchers hacked the Samsung Galaxy S23 smartphone two more times on the second day of the Pwn2Own 2023 hacking competition in Toronto, Canada. [...]


https://www.bleepingcomputer.com/news/se...n-toronto/

UAW calls off strike against Ford after tentative contract reached with 25% raises

<p>If ratified, the deal would provide roughly 57,000 hourly workers with 25 percent raises over four years and bring an end to a 6-week-old strike.</p>

https://www.autonews.com/manufacturing/u...-25-raises

Ford Confirms Tentative Agreement with UAW

We are pleased to have reached a tentative agreement on a new labor contract with the UAW covering our U.S. operations.


https://media.ford.com/content/fordmedia...h-uaw.html