Category Archives: Security

Russian Sandworm hackers targeted 20 critical orgs in Ukraine

Russian hacker group Sandworm, also known as BlackEnergy, targeted approximately 20 critical infrastructure sites in Ukraine, aiming to disrupt operations. Associated with Russia’s GRU, they conducted cyberespionage and destructive attacks on energy, water, and heating suppliers across ten Ukrainian regions in March 2024. Employing tactics like poisoning the software supply chain and leveraging software provider…

Researchers Uncover Windows Flaws Granting Hackers Rootkit-Like Powers

Threat actors could exploit the DOS-to-NT path conversion process to gain rootkit-like capabilities, concealing and impersonating files, directories, and processes. SafeBreach researcher Or Yair revealed this at the Black Hat Asia conference. MagicDot paths enable rootkit-like functions for unprivileged users, allowing them to execute malicious actions without admin permissions. These actions include hiding files, affecting…

Microsoft: APT28 hackers exploit Windows flaw reported by NSA

APT28, a Russian threat group, exploits a Windows Print Spooler vulnerability using a tool called GooseEgg to escalate privileges and steal data, as warned by Microsoft. This tool targets a flaw reported by the NSA, allowing attackers to run commands with SYSTEM-level privileges and launch additional malicious tools. APT28, linked to Russia’s GRU, deploys GooseEgg…

Daily Newsletter

Subscribe to our free daily newsletter to get the latest summarized updates