Ionut Arghire

Security Experts:

WRITE FOR US

Contact Ionut Arghire

Ionut Arghire is an international correspondent for SecurityWeek.

Recent articles by Ionut Arghire

Google, Apple Remove 'Scylla' Mobile Ad Fraud Apps After 13 Million Downloads

Cybersecurity firm Human disrupts Scylla ad fraud campaign consisting of 89 mobile applications that gathered over 13 million downloads.
New Infostealer Malware 'Erbium' Offered as MaaS for Thousands of Dollars

Security researchers are warning of a new information stealer named Erbium being distributed as Malware-as-a-Service (MaaS).
Samsung Sued Over Recent Data Breaches

A class action lawsuit filed against Samsung alleges that the company unnecessarily collected user data, then stored and sold it without proper security protections.
Breached American Airlines Email Accounts Abused for Phishing

American Airlines discovered it was breached after receiving reports of employee email accounts being used in phishing attacks.
Ukraine Cracks Down on Group Selling Hacked Accounts to Pro-Russia Propagandists

Ukrainian authorities take down a hacking group that compromised roughly 30 million user accounts and sold them on dark web portals.
Microsoft Dismantles Spam Campaign Abusing OAuth Applications

Microsoft has dismantled a malicious campaign in which OAuth applications deployed on compromised cloud tenants were used to distribute spam messages.
New 'Wolfi' Linux Distro Focuses on Software Supply Chain Security

Chainguard announces Wolfi, a stripped-down Linux OS distribution designed to improve the security of the software supply chain.
BIND Updates Patch High-Severity Vulnerabilities

ISC has announced patches for multiple high-severity vulnerabilities impacting the BIND DNS software.
CISA Warns of Zoho ManageEngine RCE Vulnerability Exploitation

CISA warns that threat actors are targeting a recently addressed remote code execution vulnerability in Zoho ManageEngine.
Malwarebytes Raises $100 Million From Vector Capital

Malwarebytes has announced a $100 million funding round that will help it advance products and channel partnerships.
Data Breach at Australian Telecoms Firm Optus Could Impact Up to 10 Million Customers

Australian wireless carrier Optus discloses data breach impacting the personal information of both former and current customers.
CISA, FBI Detail Iranian Cyberattacks Targeting Albanian Government

CISA and the FBI have provided information on the cyberattacks that Iranian APTs conducted against the Albanian government in July.
Oracle Cloud Infrastructure Vulnerability Exposed Sensitive Data

Wiz shares information on an Oracle Cloud Infrastructure vulnerability allowing attackers to modify users’ storage volumes without authorization.
Hundreds of eCommerce Domains Infected With Google Tag Manager-Based Skimmers

Recorded Future has identified 569 ecommerce domains infected with web skimmers, including 314 infected with a GTM-based skimmer variant.
Hackers Steal $160 Million From Crypto Market Maker Wintermute

Wintermute says hackers stole $160 million from its decentralized finance (DeFi) operation.
Russian Cyberspies Targeting Ukraine Pose as Telecoms Providers

Russian cyberespionage group UAC-0113 is using dynamic DNS domains masquerading as telecoms providers in ongoing attacks targeting entities in Ukraine.
VMware Warns of 'ChromeLoader' Delivering Ransomware, Destructive Malware

The ChromeLoader adware has evolved from targeting a victim’s browser credentials and displaying ads to dropping malware such as ZipBomb and the Enigma ransomware.
US Government Contractors Targeted in Evolving Phishing Campaign

US government contractors targeted in phishing campaigns claiming to invite them to bid for projects at various government departments.
New York Emergency Services Provider Says Patient Data Stolen in Ransomware Attack

The personal information of roughly 320,000 individuals was compromised following a ransomware attack at New York emergency services provider Empress EMS.
Eyeglass Reflections Can Leak Information During Video Calls

A group of academic researchers have devised a method of reconstructing text exposed via participants’ eyeglasses and other reflective objects during video conferences.
Free Decryptor Available for LockerGoga Ransomware Victims

Victims of the LockerGoga ransomware can recover their files with a free decryption tool available via the NoMoreRansom project’s website.
LastPass Found No Code Injection Attempts Following August Data Breach

LastPass says it has concluded its investigation into the August 2022 compromise of the LastPass development environment.
SOC Infrastructure Firm Cyrebro Raises $40 Million

Security Operations Center (SOC) platform provider Cyrebro has raised $40 million in Series C funding.
Game Acceleration Module Vulnerability Exposes Netgear Routers to Attacks

Multiple Netgear router models are vulnerable to arbitrary code execution via a third-party module designed for online game acceleration.
US Agencies Publish Security Guidance on Implementing Open RAN Architecture

CISA and the NSA have published considerations on the benefits and security of implementing an Open Radio Access Network (RAN) architecture.

SECURITYWEEK NETWORK:

Security Experts:

Ionut Arghire

Recent articles by Ionut Arghire

Get the Daily Briefing

Popular Topics

Security Community

Stay Intouch

About SecurityWeek