News

Latest news about B2B cyber security >>> PR agencies: add us to your mailing list - see contact! >>> Book an exclusive PartnerChannel for your news!

Fortigate devices: Chinese hackers had access to 20.000 systems 
B2B Cyber ​​Security ShortNews

A vulnerability in FortiGate devices was already exploited by Chinese hackers in 2022 and 2023. The Dutch Intelligence Service has now evaluated the incident: there was access to over 20.000 devices! Previous investigations by the Military Intelligence Service and the General Intelligence Service of the Netherlands found that Chinese hackers gained access to at least 20.000 devices worldwide by exploiting a vulnerability in FortiGate devices. During this zero-day period alone, 14.000 devices were compromised by the state actor. The targets included dozens of Western governments and diplomatic institutions as well as numerous companies active in the defense industry. Over 20.000 accesses by…

Read more

Chinese espionage campaign exposed
SophosNews

Sophos experts have uncovered a Chinese espionage campaign in Southeast Asia. Sophos X-Ops finds links between five known Chinese threat groups, including APT41 and BackdoorDiplomacy; attackers use two previously unknown malware variants for espionage and persistence. The report, "Operation Crimson Palace: Sophos Threat Hunting Unveils Multiple Clusters of Chinese State-Sponsored Activity Targeting Southeast Asia," is full of facts. It documents in detail a highly sophisticated, nearly two-year-long espionage campaign against a high-profile government target. Chinese espionage campaign has already been running for two years As part of the Sophos X-Ops investigation launched in 2023, the Managed Detection and Response (MDR) team found three different clusters of activity that...

Read more

Russian hackers: cyber attacks on democracy
B2B Cyber ​​Security ShortNews

Investigations have revealed that the Russian hacker group APT28 (Advanced Persistent Threat), also known as Fancy Bear, Forest Blizzard or Pawn Storm, is behind the cyberattacks on SPD email accounts in January 2023. This event represents another significant milestone in the series of incidents with which this group has been associated, including high-profile actions such as the hack of the German Bundestag in 2015 and the breach of the United States Democratic Party's network in the run-up to the 2016 elections. It was also revealed that the group was using advanced…

Read more

Keylogger steals login data from Exchange servers
B2B Cyber ​​Security ShortNews

The PT ESC Incident Response Team has discovered a new type of keylogger in the main page of a Microsoft Exchange Server. Everyone who logged in there handed over their login data. Many of the victims were probably in contact with government authorities. While responding to an incident, the Positive Technologies Expert Security Center (PT ESC) Incident Response Team discovered an unknown keylogger embedded in the main page of one of their customers' Microsoft Exchange Servers. This keylogger collected account credentials in a file that could be accessed from the Internet via a special path….

Read more

560 million records stolen from Ticketmaster
B2B Cyber ​​Security ShortNews

Experts are expecting a wave of identity theft: the parent company of Ticketmaster had to report that hackers had lightened its systems by 560 million records of customer data. Now 1,3 terabytes of data are for sale on the dark web. The data from Ticketmaster and its parent company Live Nation Entertainment had already been offered for sale as a data set on the Darknet, but there was no report yet about the hack by the ShinyHunters group. Now the company was forced to report the data loss under American law and publish a corresponding report to the US Securities and Exchange Commission, as...

Read more

Hackers crack Europol discussion platform
B2B Cyber ​​Security ShortNews

In a dark web forum, hackers proudly presented their loot: information that is only for official use. Hackers stole the files from the Europol Platform for Experts (EPE). A discussion platform for investigators. ​Europol, the European Union's law enforcement agency, has confirmed to the news platform Bleepingcomputer that an attack on the Europol Expert Platform (EPE) portal has now been taken offline. The authority is now investigating the incident because a provider in a dark web forum claimed that he had stolen “For Official Use Only” (FOUO) documents with confidential content. However, this has something to do with Europol...

Read more

280.000 email addresses stolen from Mainz University Medical Center
B2B Cyber ​​Security ShortNews

Several media reports document the recent data theft at the Mainz University Medical Center: 280.000 email addresses were stolen and published on the darknet. The data was probably stolen from an IT service provider that had stored the data. As reported by the Tagesschau, among others, the email systems of an IT service provider at Mainz University Medical Center were accessed without permission. The log files containing the names and email addresses of 280.000 patients and customers were stolen. The attackers published the data on the dark web after a short time. Since only the log files were stolen, the attackers cannot access the...

Read more

Hackers paralyze the Genios economic database
B2B Cyber ​​Security ShortNews

Libraries, universities and companies currently do not have access to the economic database of the provider Genios - a subsidiary of the FAZ and the Handelsblatt. A hacker attack paralyzed the systems. The otherwise full Genios economic databases cannot currently be accessed. A single page only thinly announces “Our servers are currently unavailable! Due to a massive hacker attack, our servers are currently unavailable. We are working hard to solve the problem. We apologize for this and thank you for your understanding. Your GENIOS team”. Genios databases are not accessible Especially…

Read more

Darknet job exchange: Hackers are looking for renegade insiders
Darknet job exchange: Hackers are looking for renegade insiders

The Darknet is not only an exchange for illegal goods, but also a place where hackers look for new accomplices or disappointed company employees offer their services to criminal gangs as insiders. This time, Check Point Research is putting the spotlight on the Darknet personnel scene. Not only are drugs, weapons, personal data, bank accounts, credit cards, hacking tools, malware and ransomware traded there, but renegade employees also offer their services as insiders, or hacker gangs look for such insiders as accomplices. Hackers are looking for employees who spread malware or ransomware “Cyber ​​criminals often use specialized forums…

Read more

I-Soon: China's state-run foreign hackers exposed 
I-Soon: China's state-run foreign hackers exposed - MS KI

Internally, it is certainly the biggest betrayal of China: an employee of the company I-Soon revealed data and services that were used to attack foreign companies and governments. China denies the issue of foreign hackers, but the leaked data is overwhelming and the disclosure of the tools' capabilities is reminiscent of the day of the Snoden leaks. Now China has its own Snowden. According to research by specialists at Malwarebytes and SentinelOne, this is what happened: Data from a Chinese cybersecurity provider working for the Chinese government revealed a number of hacking tools and services. Although the…

Read more