infosecintel – Page 72 – Curated Information Security Articles and Threat Intelligence News

Chinese Cybercrime Group Runs Global SEO Fraud Ring Using Compromised IIS Servers

October 6, 2025

Cybersecurity researchers have shed light on a Chinese-speaking cybercrime group codenamed UAT-8099 that has been attributed to search engine optimization (SEO) fraud and theft of high-value credentials, configuration files, and certificate data. The attacks are designed to target Microsoft Internet Information Services (IIS) servers, with most of the infections reportedRead More »Chinese Cybercrime Group Runs Global SEO Fraud Ring Using Compromised IIS Servers

Hackers Extorting Salesforce After Stealing Data From Dozens of Customers

October 6, 2025

Salesforce says the extortion attempts are related to past or unsubstantiated incidents, and not to fresh intrusions. The post Hackers Extorting Salesforce After Stealing Data From Dozens of Customers appeared first on SecurityWeek.

AI in the 2026 Midterm Elections

October 6, 2025

We are nearly one year out from the 2026 midterm elections, and it’s far too early to predict the outcomes. But it’s a safe bet that artificial intelligence technologies will once again be a major storyline. The widespread fear that AI would be used to manipulate the 2024 U.S. electionRead More »AI in the 2026 Midterm Elections

Data Breach at Doctors Imaging Group Impacts 171,000 People

October 6, 2025

Doctors Imaging Group is informing customers about a cybersecurity incident nearly a year after it occurred. The post Data Breach at Doctors Imaging Group Impacts 171,000 People appeared first on SecurityWeek.

$4.5 Million Offered in New Cloud Hacking Competition

October 6, 2025

Wiz has teamed up with Microsoft, Google and AWS and is inviting cloud security researchers to its Zeroday.Cloud competition. The post $4.5 Million Offered in New Cloud Hacking Competition appeared first on SecurityWeek.

How we trained an ML model to detect DLL hijacking

October 6, 2025

DLL hijacking is a common technique in which attackers replace a library called by a legitimate process with a malicious one. It is used by both creators of mass-impact malware, like stealers and banking Trojans, and by APT and cybercrime groups behind targeted attacks. In recent years, the number ofRead More »How we trained an ML model to detect DLL hijacking

Detecting DLL hijacking with machine learning: real-world cases

October 6, 2025

Introduction Our colleagues from the AI expertise center recently developed a machine-learning model that detects DLL-hijacking attacks. We then integrated this model into the Kaspersky Unified Monitoring and Analysis Platform SIEM system. In a separate article, our colleagues shared how the model had been created and what success they hadRead More »Detecting DLL hijacking with machine learning: real-world cases

Beer Giant Asahi Says Data Stolen in Ransomware Attack

October 6, 2025

The brewing giant has reverted to manual order processing and shipment as operations at its Japanese subsidiaries are disrupted. The post Beer Giant Asahi Says Data Stolen in Ransomware Attack appeared first on SecurityWeek.

Oracle E-Business Suite Zero-Day Exploited in Cl0p Attacks

October 6, 2025

Oracle has informed customers that it has patched a critical remote code execution vulnerability tracked as CVE-2025-61882. The post Oracle E-Business Suite Zero-Day Exploited in Cl0p Attacks appeared first on SecurityWeek.

Zimbra Zero-Day Exploited to Target Brazilian Military via Malicious ICS Files

October 6, 2025

A now patched security vulnerability in Zimbra Collaboration was exploited as a zero-day earlier this year in cyber attacks targeting the Brazilian military. Tracked as CVE-2025-27915 (CVSS score: 5.4), the vulnerability is a stored cross-site scripting (XSS) vulnerability in the Classic Web Client that arises as a result of insufficientRead More »Zimbra Zero-Day Exploited to Target Brazilian Military via Malicious ICS Files

« Previous
1
…
70
71
72
73
74
…
296
Next »