Security Archives

CryptoCurrency, Security

Germany takes down eXch cryptocurrency exchange, seizes servers

Posted on May 9, 2025 by Onsite Computing, Inc.

The Federal police in Germany (BKA) seized the server infrastructure and shut down the ‘eXch’ cryptocurrency exchange platform for alleged money laundering cybercrime proceeds. […] Go to Source Author: Bill Toulas

Continue reading →

Hardware, Security

FBI: End-of-life routers hacked for cybercrime proxy networks

Posted on May 8, 2025 by Onsite Computing, Inc.

The FBI warns that threat actors are deploying malware on end-of-life (EoL) routers to convert them into proxies sold on the 5Socks and Anyproxy networks. […] Go to Source Author: Bill Toulas

Continue reading →

Security

Cisco fixes max severity IOS XE flaw letting attackers hijack devices

Posted on May 8, 2025 by Onsite Computing, Inc.

Cisco has fixed a maximum severity flaw in IOS XE Software for Wireless LAN Controllers by a hard-coded JSON Web Token (JWT) that allows an unauthenticated remote attacker to take over devices. […] Go to Source Author: Bill Toulas

Continue reading →

Education, Security

Education giant Pearson hit by cyberattack exposing customer data

Posted on May 8, 2025 by Onsite Computing, Inc.

Education giant Pearson suffered a cyberattack, allowing threat actors to steal corporate data and customer information, BleepingComputer has learned. […] Go to Source Author: Lawrence Abrams

Continue reading →

Security

Supply chain attack hits npm package with 45,000 weekly downloads

Posted on May 8, 2025 by Onsite Computing, Inc.

An npm package named ‘rand-user-agent’ has been compromised in a supply chain attack to inject obfuscated code that activates a remote access trojan (RAT) on the user’s system. […] Go to Source Author: Bill Toulas

Continue reading →

Security

Malicious PyPi package hides RAT malware, targets Discord devs since 2022

Posted on May 8, 2025 by Onsite Computing, Inc.

A malicious Python package targeting Discord developers with remote access trojan (RAT) malware was spotted on the Python Package Index (PyPI) after more than three years. […] Go to Source Author: Sergiu Gatlan

Continue reading →

Security

Kickidler employee monitoring software abused in ransomware attacks

Posted on May 8, 2025 by Onsite Computing, Inc.

Ransomware operations are using legitimate Kickidler employee monitoring software for reconnaissance, tracking their victims’ activity, and harvesting credentials after breaching their networks. […] Go to Source Author: Sergiu Gatlan

Continue reading →

Security

VC giant Insight Partners confirms investor data stolen in breach

Posted on May 8, 2025 by Onsite Computing, Inc.

Venture capital firm Insight Partners has confirmed that sensitive data for employees and limited partners was stolen in a January 2025 cyberattack. […] Go to Source Author: Bill Toulas

Continue reading →

Security

Google links new LostKeys data theft malware to Russian cyberspies

Posted on May 8, 2025 by Onsite Computing, Inc.

Since the start of the year, the Russian state-backed ColdRiver hacking group has been using new LostKeys malware to steal files in espionage attacks targeting Western governments, journalists, think tanks, and non-governmental organizations. […] Go to Source Author: Sergiu Gatlan

Continue reading →

Security

SonicWall urges admins to patch VPN flaw exploited in attacks

Posted on May 8, 2025 by Onsite Computing, Inc.

SonicWall has urged its customers to patch three security vulnerabilities affecting its Secure Mobile Access (SMA) appliances, one of them tagged as exploited in attacks […] Go to Source Author: Sergiu Gatlan

Continue reading →