[HackerNews] Karakurt: A New Emerging Data Theft and Cyber Extortion Hacking Group

A previously undocumented, financially motivated threat group has been connected to a string of data theft and extortion attacks on over 40 entities between September and November 2021.
The hacker collective, which goes by the self-proclaimed name Karakurt and was first identified in June 2021, is capable of modifying its tactics and techniques to adapt to the targeted environment, Accenture’s

Source: Read More (The Hacker News)

You might be interested in …

[SecurityWeek] CISA Adds Zoho, Qualcomm, Mikrotik Flaws to ‘Must-Patch’ List

All posts, Security Week

The U.S. government’s cybersecurity agency has updated its catalog of “known exploited vulnerabilities” and set deadlines for federal agencies to apply fixes for security defects in software made by Qualcomm, Mikrotik, Zoho and the Apache Software Foundation. read more Source: Read More (SecurityWeek RSS Feed)

Read More

[SecurityWeek] Microsoft Spots Multiple Nation-State APTs Exploiting Log4j Flaw

All posts, Security Week

If defenders needed any more urgency to patch and mitigate the explosive Log4j zero-day, along comes word that APT actors linked to China, Iran, North Korea and Turkey have already pounced and are actively exploiting the CVSS 10.0 vulnerability. read more Source: Read More (SecurityWeek RSS Feed)

Read More

[ThreatPost] Comcast RF Attack Leveraged Remotes for Surveillance

All posts, ThreatPost

IoT vulnerabilities turned the remote into a listening device, researchers found, which impacted 18 million Xfinity customers. Source: Read More (Threatpost)

Read More