Sergiu Gatlan reports: Russian-backed hacking group Turla has used a previously undocumented malware toolset to deploy backdoors and steal sensitive documents in targeted cyber-espionage campaigns directed at high-profile targets such as the Ministry of Foreign Affairs of European Union countries. The previously unknown malware framework, named Crutch by its authors, was used in campaigns spanning…
Category: Malware
Brazil planemaker Embraer says hackers gained access to company data
Reuters reports: Brazilian plane manufacturer Embraer said late on Monday that it had been targeted by hackers, who obtained the “disclosure of data allegedly attributed to the company.” The company said the breach was identified on Nov. 25 and the culprits only got access to a single company archive. Read more on Reuters. h/t, @Chum1ng0
Huntsville City Schools hit by ransomware attack
WAAY31 reports: Huntsville City Schools is canceling classes on Tuesday due to a ransomware threat. The district announced earlier Monday that it was closing all schools and campuses for the remainder of the day “due to a potential cybersecurity threat.” It said “students, families, and faculty and staff members should shut down their district-issued devices and…
Hackers attack TRF-1, get data and celebrate on networks
R7 reports: A hacker attack hit this Friday (27) the systems of TRF-1 (Regional Court of the First Region). The attackers say they have gained access to files in more than 40 court databases. The attack was celebrated on the networks by the attackers, who claimed to have captured the data and thus managed to show…
Hackers are targeting MacOS users with this updated malware
Danny Palmer reports: A newly discovered form of malware is targeting Apple MacOS users in a campaign that researchers say is tied to a nation-state-backed hacking operation. The campaign has been detailed by cybersecurity analysts at Trend Micro who’ve linked it to OceanLotus – also known as APT32 – a hacking group that is thought to have links to the Vietnamese government. Read…
NL: Koninklijke Nederlandsche Wielren Unie (KNWU) reports a data breach of legacy database
As seen on KNWU: November 27, 2020 We regret to report that a data hack has taken place in our old MijnKNWU environment. It is no longer in use for the public since the beginning of this year, but was still accessible for internal and historical use. The breach affected the personal information of our members or people…