Over 30k Internet-Exposed QNAP NAS hosts impacted by CVE-2022-27596 flaw

Censys found 30,000 internet-facing QNAP appliances potentially impacted by a recently disclosed critical code injection flaw. On January 30, Taiwanese vendor QNAP released QTS and QuTS firmware updates to address a critical vulnerability, tracked as CVE-2022-27596 (CVSS v3 score: 9.8), that affects QNAP NAS devices. A remote attacker can exploit the vulnerability to inject malicious code […]

Continue Reading

Pro-Russia Killnet group hit Dutch and European hospitals

The Dutch National Cyber Security Centre (NCSC) confirmed that Pro-Russia group Killnet hit websites of national and European hospitals. The Dutch National Cyber Security Centre (NCSC) reported that the websites of several hospital in the Netherlands and Europe were hit by DDoS attacks carried out by pro-Russia hacking group Killnet. The group of hackers launched […]

Continue Reading

Cyberattaque Groupe Ramsay Santé

Le 25 janvier dernier, quatre établissements au sein du Groupe Ramsay Santé ont été ciblés par des cybercriminels. À ce jour, aucune donnée n’a été dérobée et l’impact sur les patients reste mineur.  The post Cyberattaque Groupe Ramsay Santé first appeared on UnderNews.

Continue Reading

New Prilex PoS Malware evolves to target NFC-enabled credit cards

Authors of the Prolex PoS malware improved their malicious code to target contactless credit card transactions. The threat actors behind the sophisticated point-of-sale (PoS) malware Prilex have have improved its capabilities to block contactless payment transactions. Researchers from Kaspersky Lab discovered three new versions of the PoS malware designed to target credit cards using NFC technology. […]

Continue Reading

Nevada Ransomware Has Released Upgraded Locker

Researchers from Resecurity have identified a new version of Nevada Ransomware which recently emerged on the Dark Web right before the start of 2023. Resecurity, California-based cybersecurity company protecting Fortune 500 globally, has identified a new version of Nevada Ransomware which recently emerged on the Dark Web right before the start of 2023. The actors […]

Continue Reading

Les cybercriminels contournent les contrôles de vérification de Microsoft pour compromettre les organisations britanniques

Les chercheurs de la société Proofpoint, spécialiste dans les domaines de la cybersécurité et de la conformité, révèlent aujourd’hui comment certains cybercriminels ont pu infiltrer les environnements cloud d’entreprises basées au Royaume-Uni, et ce en utilisant de fausses applications malveillantes.  Tribune – En décembre, des acteurs de la menace auraient réussi à exploiter la fonction « […]

Continue Reading