Vault 33: Cyber News - Intel - Research

The Department of Justice (DoJ) has successfully seized and dismantled PopeyeTools, an unlawful digital marketplace infamous for selling hacked credit card information and cybercrime tools. This operation led to charges against three alleged administrators, underscoring the DoJ's persistent efforts to fight cybercrime. Marketplace Overview PopeyeTools operated since at

In a concerning development for cybersecurity, thousands of Palo Alto Networks firewalls have been compromised via two recently patched zero-day vulnerabilities. These security flaws include an authentication bypass (CVE-2024-0012) within the PAN-OS management web interface, allowing unauthorized users to gain admin-level access, and a privilege escalation vulnerability (CVE-2024-9474) that enables

Microsoft Halts WinAppSDK Update Following Issues with Windows 10 App Management Since November 12, Microsoft has acknowledged a technical issue impacting some Windows 10 users, preventing them from updating or uninstalling certain applications like Microsoft Teams. This complication arises from the deployment of the WinAppSDK version 1.6.2 package,

In the wake of a recent system outage involving cybersecurity firm CrowdStrike, Microsoft has introduced its latest tool aimed at enhancing resilience and recovery for businesses. Dubbed ‘Quick Machine Recovery,’ this feature promises to streamline the process of restoring critical systems swiftly after unexpected disruptions. Background The move comes after

New Linux Threats Two newly identified malware strains, WolfsBane and FireWood, have been detected targeting Linux systems, as revealed in recent research by cybersecurity firm ESET. These sophisticated tools have been linked to the Gelsemium Advanced Persistent Threat (APT) group, known for cyber espionage activities in sectors such as government,

In a significant cybersecurity incident, a French hospital has suffered a data breach compromising the medical records of over 750,000 patients. This alarming event highlights the vulnerabilities in protecting sensitive healthcare information. Details of the Breach A hacker, self-identified as "nears," claims responsibility for infiltrating multiple healthcare

A recent leak reveals detailed insights into the capabilities of Graykey, a forensic tool widely utilized by law enforcement to unlock smartphones. According to documents acquired by 404 Media, Graykey can only partially access data on Apple's latest iPhone models running iOS 18 or iOS 18.0.1.

The BianLian ransomware group has pivoted its strategy to concentrate exclusively on data theft extortion, according to a recent update from the U.S. Cybersecurity & Infrastructure Security Agency (CISA). This development aligns with input from the FBI and the Australian Cyber Security Centre in an advisory that sheds light

A recent investigation has unveiled the alarming exposure of over 145,000 Industrial Control Systems (ICS) on the internet, spanning 175 countries. The United States leads with the highest number of exposed systems, constituting more than a third of the total. Regional Exposure: North America: 38% - Europe: 35.4%