Vault 33: Cyber News - Intel - Research

New Linux Threats Two newly identified malware strains, WolfsBane and FireWood, have been detected targeting Linux systems, as revealed in recent research by cybersecurity firm ESET. These sophisticated tools have been linked to the Gelsemium Advanced Persistent Threat (APT) group, known for cyber espionage activities in sectors such as government,

In a significant cybersecurity incident, a French hospital has suffered a data breach compromising the medical records of over 750,000 patients. This alarming event highlights the vulnerabilities in protecting sensitive healthcare information. Details of the Breach A hacker, self-identified as "nears," claims responsibility for infiltrating multiple healthcare

A recent leak reveals detailed insights into the capabilities of Graykey, a forensic tool widely utilized by law enforcement to unlock smartphones. According to documents acquired by 404 Media, Graykey can only partially access data on Apple's latest iPhone models running iOS 18 or iOS 18.0.1.

The BianLian ransomware group has pivoted its strategy to concentrate exclusively on data theft extortion, according to a recent update from the U.S. Cybersecurity & Infrastructure Security Agency (CISA). This development aligns with input from the FBI and the Australian Cyber Security Centre in an advisory that sheds light

A recent investigation has unveiled the alarming exposure of over 145,000 Industrial Control Systems (ICS) on the internet, spanning 175 countries. The United States leads with the highest number of exposed systems, constituting more than a third of the total. Regional Exposure: North America: 38% - Europe: 35.4%

The rapid growth of BlueSky, driven by users migrating from other social networks like X (formerly Twitter), is attracting not just individuals but also cybercriminals. Recently surpassing the 20 million user mark, BlueSky has become a new target for cryptocurrency scams, according to observations by BleepingComputer. Emergence of Scams As

North Korean-linked cyber actors are posing as U.S.-based software and technology firms to secure funds for national objectives, according to a recent report by security researchers from SentinelOne, Tom Hegel, and Dakota Cary. Deceptive Tactics and Global Network In a coordinated global campaign identified as Wagemole by Palo

Google has announced that its AI-enhanced fuzzing tool, OSS-Fuzz, has uncovered 26 vulnerabilities in various open-source projects. Among these is a medium-severity flaw in the widely used OpenSSL cryptographic library. According to Google's open-source security team, these discoveries mark a significant achievement in automated vulnerability detection, all identified

An advanced version of the NodeStealer malware, previously identified by Meta in May 2023, has evolved to aggressively target Facebook Ads Manager accounts, escalating its threat by extracting credit card information directly from web browsers. Research Findings According to a Netskope Threat Labs report shared with The Hacker News, NodeStealer