Russian investment platform confirms cyberattack by pro-Ukraine hackers 俄罗斯投资平台Investment Projects遭乌克兰支持的黑客组织Cyber Anarchy Squad攻击，网站下线，基础设施受损，内部数据泄露。黑客试图迫使监管机构罚款该平台。... 2025-8-20 13:33:1 | 阅读: 12 | 收藏 | Over Security - Cybersecurity news aggregator - therecord.media squad investment anarchy regulators russia

At least three UK organizations hit by SharePoint zero-day hacking campaign 微软SharePoint服务器被发现存在漏洞后，英国三家组织报告数据泄露事件。攻击者利用这些漏洞窃取个人信息，涉及中国支持的威胁集团。微软发布紧急警报，建议用户立即修复或断开服务器连接。英国政府和公共部门广泛使用该系统，潜在影响较大。... 2025-8-20 12:32:57 | 阅读: 14 | 收藏 | Over Security - Cybersecurity news aggregator - therecord.media premise microsoft exploited security

Business Council of New York State says nearly 50,000 had data leaked in February cyberattack 纽约州商业委员会遭遇网络攻击，超4.7万人的敏感信息被泄露，包括社保号、财务账户信息及医疗数据等。该组织代表数千家企业和小企业主，在州立法机构中为商业利益发声并推动经济发展。... 2025-8-19 19:15:44 | 阅读: 11 | 收藏 | Over Security - Cybersecurity news aggregator - therecord.media york cyberattack council insurance treatments

North Korea-linked hackers target embassies in Seoul in new espionage campaign 朝鲜相关黑客组织对韩国外国大使馆实施网络间谍活动，伪装成外交邮件传播恶意软件XenoRAT。该活动自3月起持续至今，疑似由朝鲜Kimsuky组织发动，并可能与中国有关。攻击者利用钓鱼邮件诱骗目标打开恶意附件以获取系统控制权。... 2025-8-19 14:30:50 | 阅读: 18 | 收藏 | Over Security - Cybersecurity news aggregator - therecord.media trellix north korea korean diplomatic

Drug development company Inotiv reports ransomware attack to SEC Indiana一家药物研发公司因近期遭遇勒索软件攻击导致业务中断和关键系统关闭。攻击于8月8日被发现，部分系统被加密，恢复时间未知。公司正使用离线替代方案维持运营，并已通知执法部门。该事件可能影响财务状况。... 2025-8-19 12:45:49 | 阅读: 16 | 收藏 | Over Security - Cybersecurity news aggregator - therecord.media ransomware drug inotiv regulators

UK ‘agrees to drop’ demand over Apple iCloud encryption, US intelligence head claims 英国政府已同意撤销要求苹果提供iCloud账户“后门”访问权限的法律命令。该命令旨在获取美国公民加密数据，但被指侵犯隐私。苹果曾通过Advanced Data Protection功能加密iCloud备份以阻止此类访问，并在接到命令后关闭了该功能。目前苹果正通过法律途径挑战这一要求。... 2025-8-19 12:15:44 | 阅读: 10 | 收藏 | Over Security - Cybersecurity news aggregator - therecord.media british citizens security tuesday

Ransomware gang masking PipeMagic backdoor as ChatGPT desktop app: Microsoft 黑客伪装ChatGPT桌面应用传播PipeMagic恶意软件，利用零日漏洞CVE-2025-29824进行勒索攻击，影响IT、金融和房地产等多个行业和地区。... 2025-8-18 20:30:43 | 阅读: 17 | 收藏 | Over Security - Cybersecurity news aggregator - therecord.media ransomware microsoft pipemagic chatgpt windows

Thai police arrest SMS blasting scammers allegedly hired by Chinese boss 泰国警方查获一辆白色斯柯达汽车内藏非法电信设备，用于发送钓鱼短信诈骗。犯罪嫌疑人受雇于中国老板，利用假基站伪装银行或政府机构发送诈骗信息。受害者账户被盗刷，案件涉及跨国犯罪网络。... 2025-8-18 18:30:45 | 阅读: 26 | 收藏 | Over Security - Cybersecurity news aggregator - therecord.media police blaster telecom bangkok suzuki

Casino gaming company Bragg says hackers accessed ‘internal computer environment’ Bragg Gaming Group遭遇黑客入侵,初步调查表明数据泄露仅限于内部环境,未影响个人数据及运营,已聘请专家处理。... 2025-8-18 18:30:43 | 阅读: 15 | 收藏 | Over Security - Cybersecurity news aggregator - therecord.media bragg casino gambling morning

Cryptomining group Kinsing expands operations to Russia, researchers warn Kinsing黑客组织对俄罗斯发起大规模网络攻击，利用恶意软件劫持计算机挖矿，并针对旧漏洞CVE-2017-9841。这是该组织首次在俄大规模活动，显示犯罪集团不受地域限制。... 2025-8-18 15:0:48 | 阅读: 12 | 收藏 | Over Security - Cybersecurity news aggregator - therecord.media kinsing f6 russia xmrig

Workday hit by social engineering data breach targeting its CRM platform Workday遭遇社会工程攻击，部分客户信息被获取。攻击者通过第三方CRM平台获取常见业务联系信息，并可能用于进一步诈骗。Workday迅速采取行动切断访问并加强防护措施。其他公司如Allianz Life、Qantas和Hawaiian Airlines也受到类似攻击影响。 Salesforce警告网络犯罪分子正针对其CRM工具发起攻击，并强调客户需加强数据保护措施。... 2025-8-18 12:15:48 | 阅读: 15 | 收藏 | Over Security - Cybersecurity news aggregator - therecord.media workday salesforce cloud security

UK telecom provider Colt says outages were due to cyber incident 伦敦科技公司Colt因内部系统遭受网络攻击导致部分服务中断，正在努力恢复自动化监控能力，并建议客户通过邮件或电话联系。近期多国电信公司也频遭网络攻击，行业面临高风险威胁。... 2025-8-15 18:45:44 | 阅读: 12 | 收藏 | Over Security - Cybersecurity news aggregator - therecord.media colt friday cloud telecom monitoring

Scammers turn to ‘ghost-tapping’ retail fraud to launder funds 东南亚的中国犯罪集团利用被盗支付卡信息和零售欺诈洗钱，通过“幽灵 tapping”技术购买并转售奢侈品。... 2025-8-15 17:45:43 | 阅读: 16 | 收藏 | Over Security - Cybersecurity news aggregator - therecord.media criminal tapping singapore guarantee luxury

US updates sanctions on Russian cryptocurrency exchange Garantex 美国延长对俄罗斯加密货币交易所Garantex的制裁,因其协助勒索软件团伙洗钱超1亿美元。该平台及其继任者Grinex、三名高管及六家关联公司被列为制裁对象,继续支持网络犯罪及规避制裁。FBI等机构查封其服务器,两名创始人被起诉并悬赏逮捕。... 2025-8-14 18:15:44 | 阅读: 11 | 收藏 | Over Security - Cybersecurity news aggregator - therecord.media garantex sanctions serda officials treasury

Turkish crypto exchange BTCTurk warns of security incident after $49 million leaves platform 土耳其加密货币平台BTCTurk因安全事件暂停交易和提现操作。追踪显示约49 million美元流出平台；公司称多数资产存于冷钱包且未受影响；执法部门已介入调查；今年上半年全球加密盗窃总额创纪录达21.7 billion美元。... 2025-8-14 17:0:49 | 阅读: 13 | 收藏 | Over Security - Cybersecurity news aggregator - therecord.media security turkey btcturk blockchain firms

Norway police believe pro-Russian hackers were behind April dam sabotage 挪威警方怀疑亲俄黑客破坏西南部一水坝控制系统，致大量泄洪。此次事件为挪威首次公开将网络攻击归咎于俄罗斯。尽管攻击手法简单，但鉴于挪威对水电依赖度高，具有象征意义。俄方否认指控并称其为政治操弄。... 2025-8-14 16:45:47 | 阅读: 11 | 收藏 | Over Security - Cybersecurity news aggregator - therecord.media norway russia water security dam

FCC’s data breach reporting rules for telecoms are upheld in appeals court 美国联邦通信委员会(FCC)要求电信公司报告客户个人信息泄露的法规在法庭挑战中胜出。该法规于2024年实施,要求涉及500人以上信息泄露事件须在7个工作日内上报,并首次将社会安全号码和电子邮件地址等信息纳入保护范围。尽管行业团体质疑FCC权限,法院多数法官支持其合法性。... 2025-8-14 15:15:45 | 阅读: 10 | 收藏 | Over Security - Cybersecurity news aggregator - therecord.media regulations telecom pii fcc court

Hackers reportedly compromise Canadian House of Commons through Microsoft vulnerability 加拿大国会遭遇网络攻击，黑客利用微软零日漏洞窃取员工信息及设备数据。事件发生后已通知员工，并与安全机构合作应对。... 2025-8-14 14:0:48 | 阅读: 18 | 收藏 | Over Security - Cybersecurity news aggregator - therecord.media security canadian database microsoft canada

Russia curbs WhatsApp, Telegram calls to counter cybercrime 俄罗斯限制WhatsApp和Telegram的语音及视频通话功能以防止欺诈，并推广本土即时通讯应用Max；用户转向传统电话网络；专家批评此举损害通信安全并违背网络中立原则。... 2025-8-14 13:45:46 | 阅读: 9 | 收藏 | Over Security - Cybersecurity news aggregator - therecord.media russia ukraine reporter kyiv

Tens of thousands of Italian hotel guests may be hit by cyber heist 意大利政府警告称，数万名曾在该国酒店住宿的游客身份文件被盗，并被非法在网上出售。这些高分辨率扫描件包括护照和其他官方身份证件，可能被用于伪造文件、开设银行账户等欺诈行为。政府呼吁受影响者警惕账户异常活动，并强调加强数据保护的重要性。... 2025-8-14 13:0:44 | 阅读: 16 | 收藏 | Over Security - Cybersecurity news aggregator - therecord.media agid hotels warned italian mydocs