Tag: IMPACT

Daily News Update: Friday, March 28, 2025 (Australia/Melbourne)
A wave of cybersecurity incidents has revealed vulnerabilities across various platforms, affecting developers, healthcare providers, enterprises, and individuals. Notably, npm packages were compromised to steal sensitive information, a critical flaw was patched in Firefox, a ransomware fine was issued to a UK company, and numerous vulnerabilities were identified in solar inverters.…
Read More
Red Team Perspective: Known Attack Surface and Potential Risks of GitLab – Security KER – Security Information Platform
This article discusses various known attack surfaces and potential risks associated with GitLab, highlighting a range of vulnerabilities, including Remote Code Execution (RCE), SSRF, XSS, and permission escalation issues. The information covers the history of vulnerabilities, their impact, and famous cases, emphasizing the importance of security measures for self-managed GitLab instances.…
Read More

Hacked Website Report Summary Attacker: Grased

Target: commune-menzeltemime.gov.tn Source: zone-h.org Victim Country: Tunisia Sector: Government – The target relates to local municipal governance and public services. Description: A breach was reported involving the municipal government site of Menzel Temime in Tunisia, indicating a potential compromise of local governance and public service integrity.…

Read More

Victim: albrecht-partner-steuerberatung.de Country : DE Actor: safepay Source: http://nz4z6ruzcekriti5cjjiiylzvrmysyqwibxztk6voem4trtx7gstpjid.onion#albrecht Discovered: 2025-03-30 02:57:34.051154 Published: 2025-03-30 02:57:29.298381 Description : Albrecht & Partner Steuerberatung, a German tax advisory firm based in Frankfurt, has fallen victim to a ransomware attack orchestrated by the malicious actor known as Safepay. The company specializes in providing accounting, auditing, and tax services primarily to small and medium-sized enterprises, emphasizing personalized consultations and tailored solutions for its clients.…
Read More
Lucid: The Rising Threat of Phishing-as-a-Service
Summary: The report by Prodaft reveals the emergence of Phishing-as-a-Service (PhAAS) platforms, particularly focusing on the Lucid platform operated by Chinese-speaking threat actors. This platform facilitates large-scale phishing attacks targeting individuals and organizations worldwide through sophisticated mechanisms that exploit messaging technologies. The rise of such platforms underscores a growing threat landscape, intensifying the risks associated with financial cybercrime and the need for enhanced security measures.…
Read More

Victim: Town of Orangeville Country : CA Actor: blacksuit Source: http://weg7sdx54bevnvulapqu6bpzwztryeflq3s23tegbmnhkbpqz637f2yd.onion/?id=Upj1jWSYRtsORyMO Discovered: 2025-03-29 20:28:39.800245 Published: 2025-03-29 20:27:29.004081 Description : The Town of Orangeville, located in Ontario, Canada, recently fell victim to a ransomware attack carried out by the cybercriminal group known as BlackSuit. As the municipal government, Orangeville’s council oversees essential services such as public safety, waste management, infrastructure, and community development.…
Read More
Major Cyber Attacks Targeting Transportation & Logistics Industry
The transportation and logistics industry is increasingly targeted by cybercriminals as they exploit vulnerabilities to disrupt operations and steal sensitive data. Major incidents include ransomware attacks affecting ports and airports, along with data breaches that raise severe concerns about data security within the sector. Affected: transportation and logistics industry, public infrastructure, cybersecurity sector

Keypoints :

Transportation and logistics sector is a major target for cybercriminals due to valuable data.…
Read More
Zero-Day Vulnerability Discovered in a-blog cms, Act Now to Protect Your Web Server
Summary: A critical security vulnerability (CVE-2025-31103) has been identified in a-blog cms, enabling attackers to exploit untrusted data deserialization and potentially execute arbitrary scripts on affected web servers. The Japan Computer Emergency Response Team (JPCERT/CC) has highlighted the urgency of the issue, as attackers have already begun targeting vulnerable versions of the software.…
Read More
150,000 Sites Compromised by JavaScript Injection Promoting Chinese Gambling Platforms
Summary: A malware campaign has compromised approximately 150,000 websites by injecting malicious JavaScript to redirect users to Chinese-language gambling platforms. These attacks utilize iframe tactics for full-screen overlays, targeting visitors of infected sites. Another related operation, dubbed DollyWay, has affected over 20,000 websites globally by redirecting traffic through a complex network of compromised WordPress sites to various scam pages.…
Read More
Critical Severity Vulnerabilities in Ghostscript Put Users at Risk
Summary: A series of critical security vulnerabilities have been discovered in Artifex Ghostscript, including multiple buffer overflow and unauthorized file access vulnerabilities that could lead to exploitation of affected systems. These vulnerabilities are linked to various components of the Ghostscript interpreter, with several having high CVSS scores indicating severe risk.…
Read More

Victim: pureincubation.com Country : US Actor: babuk2 Source: http:/bxwu33iefqfc3rxigynn3ghvq4gdw3gxgxna5m4aa3o4vscdeeqhiqad.onion/blog/aca6f28085ad9c62056267f1ed82b5ae0da3a3b9ef4d30654028306e7ae7892d/ Discovered: 2025-03-28 17:51:42.048407 Published: 2025-03-28 17:50:34.796450 Description : PureIncubation.com, a victim of a ransomware attack attributed to the Babuk2 group, is based in the United States. This incident highlights the increasing prevalence of ransomware threats targeting businesses, where attackers typically encrypt sensitive data and demand a ransom for its release.…
Read More

Victim: leadzen.ai Country : IN Actor: babuk2 Source: http:/bxwu33iefqfc3rxigynn3ghvq4gdw3gxgxna5m4aa3o4vscdeeqhiqad.onion/blog/8b4ba9a7921f9cedc14275f97019a1c2717ee9d99a108241fbb94368079647c2/ Discovered: 2025-03-28 17:54:39.195735 Published: 2025-03-28 17:53:33.355736 Description : Leadzen.ai, a company based in India, recently fell victim to a ransomware attack attributed to the Babuk2 group. This incident highlights the increasing threat posed by sophisticated cybercriminal organizations and underscores the need for enhanced cybersecurity measures among businesses.…
Read More
College Cybersecurity Notes Module 2 The Security Environment
This guide covers essential cybersecurity concepts, including definitions of cybercrime, the principles of cybersecurity, types of threats, vulnerabilities, and secure software development practices. Understanding these elements is crucial for organizations and individuals to strengthen their defenses against increasing cyber threats. Affected: Cybersecurity sector, organizations, individuals

Keypoints :

Cybercrime includes illegal activities performed using computers or the internet, such as hacking and phishing.…
Read More
From Espionage to PsyOps: Tracking Operations and Bulletproof Providers of UACs in 2025
This report details the activities of Russia-aligned intrusion sets UAC-0050 and UAC-0006, which have been engaged in financially and espionage-motivated spam campaigns targeting various entities globally, particularly in Ukraine. They employ psychological operations, utilize malware for financial theft, and rely on bulletproof hosting providers to obfuscate their infrastructure.…
Read More
Dozens of solar inverter flaws could be exploited to attack power grids – PRSOL:CC
This article discusses severe vulnerabilities found in solar inverters from major manufacturers Sungrow, Growatt, and SMA, which could be exploited to control devices or execute code on their cloud platforms. These vulnerabilities pose risks to grid stability and user privacy, as they can be leveraged for attacks that disrupt power generation and demand balance.…
Read More