Cybersecurity Highlights

Cryptographic flaw in ECDSA implementation in Java

The Elliptic Curve Digital Signature Algorithm (ECDSA), used in Java and Oracle to digitally sign messages and data to verify the authenticity and integrity of content, is vulnerable due to a...

References:

neilmadden.blog

unaaldia.hispasec.com

media.cert.europa.eu

jfrog.com

blog.ehcgroup.io

nakedsecurity.sophos.com

thehackernews.com

Tags:

Encryption

Tool

Vulnerability

INCONTROLLER/PIPEDREAM malware targeting ICS/SCADA devices

Several government agencies (DOE, CISA, NSA, and FBI) have issued a joint security advisory to warn about an APT threat, called INCONTROLLER/PIPEDREAM, which has been developed to attack industrial...

References:

mandiant.com

dragos.com

wired.com

cisa.gov

computerweekly.com

techtarget.com

securityweek.com

reuters.com

incibe-cert.es

Tags:

APT

Cybercrime

Incident

Industrial Control System

Internet

Malware

Other critical infrastructures

Tool

Windows

BKA and German ZIT shut down Hydra, the most popular Russian black market on the Dark Web

The German Federal Criminal Police Office or Bundeskriminalamt (BKA), together with the Public Prosecutor's Office in Frankfurt am Main and the German Central Office for Combating Cybercrime (ZIT),...

References:

hackread.com

bka.de

eldiario.es

elespanol.com

therecord.media

justice.gov

Tags:

A cyberattack on the Ronin network of the Axie Infinity video game causes hundreds of millions in losses in cryptocurrencies.

Ronin Network has issued an alert to its community explaining how a security breach in the blockchain network, which supports the Axie Infinity video game, led to a cyberattack that resulted in the...

References:

roninchain.com

cnn.com

xakata.com

cope.es

Tags:

Microsoft reports cybersecurity incident

Microsoft has published an official post in response to the news related to the alleged cyberattack perpetrated by the LAPSUS$ ransomware group, which would have resulted in the obtaining of the...

References:

microsoft.com

techmonitor.ai

hipertextual.com

es.gizmodo.com

cyberkendra.com

xataka.com

Tags:

OpenSea phishing leads to theft of millions of dollars' worth of NFTs

OpenSea, an online marketplace dedicated to trading NFTs, has been the victim of a phishing attack that has resulted in the theft of hundreds of tokens worth more than $1.7 million, as confirmed by...

References:

twitter.com

bleepingcomputer.com

zdnet.com

xataka.com

genbeta.com

europapress.es

Tags:

Crypto.com suffers millions in losses due to cyberattack

Crypto.com, a cryptocurrency exchange platform, has reported on its website that 483 users were victims of a cyberattack, resulting in the unauthorised withdrawal of 4,836.26 ETH, 443.93 BTC and...

References:

blog.crypto.com

bleepingcomputer.com

theverge.com

genbeta.com

zdnet.com

Tags:

OpenSubtitles data breached after ransom payment

OpenSubtitles, the largest subtitle download site on the Internet, suffered an extortion attempt in August 2021, whereby a ransom in BTC was demanded in order not to publicly disclose its user...

References:

forum.opensubtitles.org

genbeta.com

larazon.es

20minutos.es

Tags:

Europol disrupts VPNLab.net

Europol, in a coordinated action with several European countries and the United States, has seized or disrupted 15 servers hosting the VPNLab.net service, a VPN service provider that was being used...

References:

europol.europa.eu

welivesecurity.com

genbeta.com

theregister.com

Tags:

Data Breach in Aruba Central

HPE has reported the data repositories of its Aruba Central network monitoring platform were compromised, allowing an attacker to access data collected on monitored devices and their locations for...

References:

arubanetworks.com

computerweekly.com

bleepingcomputer.com

Tags:

Corporate access

Cybersecurity Highlights

Cryptographic flaw in ECDSA implementation in Java

INCONTROLLER/PIPEDREAM malware targeting ICS/SCADA devices

BKA and German ZIT shut down Hydra, the most popular Russian black market on the Dark Web

A cyberattack on the Ronin network of the Axie Infinity video game causes hundreds of millions in losses in cryptocurrencies.

Microsoft reports cybersecurity incident

OpenSea phishing leads to theft of millions of dollars' worth of NFTs

Crypto.com suffers millions in losses due to cyberattack

OpenSubtitles data breached after ransom payment

Europol disrupts VPNLab.net

Data Breach in Aruba Central

Pages