Europe urged to seize ‘opportunity’ by replacing US funding for Ukraine cyber defense 美国冻结对外援助导致乌克兰网络安全项目资金短缺，欧洲或借此支持本土科技企业。乌克兰去年遭遇4315起网络攻击，其中70%为严重事件。尽管攻击数量激增，但关键性高危事件减少70%。乌克兰正加强与国际合作伙伴合作以提升防御能力。... 2025-3-12 16:31:15 | 阅读: 3 | 收藏 | Over Security - Cybersecurity news aggregator - therecord.media ukraine funding kyiv aid malchenyuk

Spyware in bogus Android apps is attributed to North Korean group 朝鲜支持的黑客利用恶意软件KoSpy感染安卓设备，目标为韩语和英语使用者。该软件可窃取敏感数据如通话记录、短信及位置信息，并伪装成实用工具应用传播。Google已下架相关应用。该恶意软件与朝鲜骇客组织ScarCruft关联，主要针对韩国用户并波及多国。... 2025-3-12 15:16:33 | 阅读: 1 | 收藏 | Over Security - Cybersecurity news aggregator - therecord.media korean lookout kospy scarcruft north

Signal no longer cooperating with Ukraine on Russian cyber threats, official says 乌克兰官员称加密通讯应用Signal不再回应乌方关于俄网络威胁的请求，此举助长了俄情报活动。 Signal被指为俄针对乌军政人员的间谍行动提供便利。乌方曾通过正式渠道联系Signal未果。 Signal未对此置评。... 2025-3-12 15:1:28 | 阅读: 2 | 收藏 | Over Security - Cybersecurity news aggregator - therecord.media ukraine demediuk kyiv russia officials

Previously unidentified botnet infects unpatched TP-Link Archer home routers 研究人员发现名为Ballista的僵尸网络正利用TP-Link路由器的CVE-2023-1389漏洞传播。该恶意软件可远程控制设备并窃取数据，疑似由意大利黑客开发。已影响全球多个行业组织，超6,000台设备受威胁。... 2025-3-11 19:48:30 | 阅读: 5 | 收藏 | Over Security - Cybersecurity news aggregator - therecord.media routers security cato botnets

Trump nominates Plankey to run top US cyber agency Sean Plankey, a veteran of cybersecurity roles in the Trump administration, has been nominated to lead CISA. His nomination reflects his extensive experience in cybersecurity, including roles at the Department of Energy and National Security Council. CISA faces criticism for expanding its mission, and Plankey is seen as a potential reformer to refocus the agency on core objectives.... 2025-3-11 13:31:19 | 阅读: 2 | 收藏 | Over Security - Cybersecurity news aggregator - therecord.media plankey security trump served

Kansas healthcare provider says more than 220,000 impacted by cyberattack 堪萨斯一家医疗集团Sunflower Medical Group于去年12月遭遇网络攻击，约22.1万名患者的敏感信息被泄露。攻击者窃取了患者姓名、地址、出生日期、社保号等信息，并索要80万美元赎金。公司已通知相关部门并提供信用监控服务。... 2025-3-10 21:30:47 | 阅读: 3 | 收藏 | Over Security - Cybersecurity news aggregator - therecord.media sunflower facilities urgent healthcare ransomware

Musk blames X outages on alleged ‘massive’ cyberattack X平台遭遇全球性宕机，CEO马斯克称系大规模网络攻击所致，可能涉及国家或大型组织。监测显示持续六小时的中断符合DDoS攻击特征。黑客组织Dark Storm Team声称负责并提供此类服务。各国执法机构正打击相关犯罪活动。... 2025-3-10 20:15:48 | 阅读: 3 | 收藏 | Over Security - Cybersecurity news aggregator - therecord.media outages monday impacting arrested claimed

Trump administration ends FTC’s ransomware data breach case against MGM Resorts 美国联邦贸易委员会（FTC）关闭了对美高梅集团（MGM Resorts International）的调查案，该案件源于2023年的一次勒索软件攻击导致的数据泄露。美高梅拒绝配合调查，但在特朗普政府上台后，FTC撤销了调查请求。双方同意撤诉，结束了法律争议。此次攻击影响了美高梅旗下多个酒店，并导致超过3700万客户的资料被盗。... 2025-3-10 18:0:55 | 阅读: 5 | 收藏 | Over Security - Cybersecurity news aggregator - therecord.media ftc ransomware mgm resorts sides

Immigrant groups sue to block Trump administration from accessing IRS data for deportations 移民权益团体起诉IRS和财政部长Scott Bessent，阻止其向国土安全部提供无证移民的税务数据用于驱逐行动。起诉指出此举违反法律，并威胁到数百万纳税人的安全。... 2025-3-10 17:0:50 | 阅读: 3 | 收藏 | Over Security - Cybersecurity news aggregator - therecord.media irs lawsuit dhs immigration tax

Scam spoofs Binance website and uses TRUMP coin as lure for malware 黑客伪装成Binance平台发送钓鱼邮件，诱导用户下载恶意远程访问工具ConnectWise以窃取信息。邮件声称提供购买特朗普加密货币的机会，并通过仿冒网站和下载链接实施攻击。攻击者能在两分钟内控制感染设备并窃取密码等敏感数据。... 2025-3-10 16:45:44 | 阅读: 1 | 收藏 | Over Security - Cybersecurity news aggregator - therecord.media connectwise cofense trump malicious remote

Bug affecting PHP scripts demands ‘immediate action from defenders globally’ 研究人员指出，最初主要针对日本组织的漏洞CVE-2024-4577已在全球范围内引发关注。攻击者利用该漏洞窃取凭证并可能长期控制系统，已知有79种利用方式，攻击活动在多国出现。... 2025-3-7 21:30:43 | 阅读: 1 | 收藏 | Over Security - Cybersecurity news aggregator - therecord.media talos attacker greynoise japan php

Texas border city declares state of emergency after cyberattack on government systems The government of Mission, Texas, filed a state of emergency declaration this week after a cyberatt... 2025-3-7 21:15:45 | 阅读: 0 | 收藏 | Over Security - Cybersecurity news aggregator - therecord.media texas mission declaration emergency

Malicious use of Cobalt Strike down 80% after crackdown, Fortra says Fortra联合微软和Health-ISAC在全球范围内打击非法使用的Cobalt Strike工具，过去两年中非法副本数量下降80%。通过Morpheus行动查封690个IP地址和域名，大幅减少网络攻击可能性。... 2025-3-7 19:15:48 | 阅读: 8 | 收藏 | Over Security - Cybersecurity news aggregator - therecord.media cobalt fortra microsoft ransomware district

Two US Army soldiers charged with selling military secrets to China 三名美国陆军士兵被指控窃取机密材料并出售给中国共谋者。其中两人现役，一人退伍。他们涉嫌从2021年底至2024年底非法获取并出售涉及美国军事武器系统的技术资料，并涉及敏感军事演习信息。这是该基地近年来发生的第二起类似案件。... 2025-3-7 19:0:50 | 阅读: 2 | 收藏 | Over Security - Cybersecurity news aggregator - therecord.media tian allegedly zhao military army

Home appliance company Presto says cyberattack causing delivery delays A company that produces widely sold air fryers and pressure cookers said a cyberattack was hamperin... 2025-3-7 16:31:17 | 阅读: 2 | 收藏 | Over Security - Cybersecurity news aggregator - therecord.media presto registrant filing industries fryers

White House cyber director’s office set for more power under Trump, experts say The Office of the National Cyber Director (ONCD) is poised to become a stronger force in the second... 2025-3-7 15:31:22 | 阅读: 6 | 收藏 | Over Security - Cybersecurity news aggregator - therecord.media oncd nsc security trump lewis

Canadian intelligence agency warns of threat AI poses to upcoming elections 加拿大通信安全机构警告称，敌对势力可能利用人工智能工具干扰即将举行的选举。尽管AI导致选举根本性破坏的可能性很低，但中国的大规模数据窃取可能增强其干扰能力。此外，AI生成的深度伪造色情内容也被用来破坏政治人物的竞选活动。... 2025-3-7 13:16:11 | 阅读: 2 | 收藏 | Over Security - Cybersecurity news aggregator - therecord.media cse elections election politicians

CISA, FBI warn of BianLian mail scam targeting executives with $500k ransom note 美国联邦执法机构警告企业高管警惕冒充俄罗斯BianLian勒索团伙的诈骗活动。骗子通过邮寄威胁信件索取比特币赎金，并声称将公开敏感数据。FBI正在调查此事，尚不清楚是否与BianLian有关。... 2025-3-7 01:31:21 | 阅读: 8 | 收藏 | Over Security - Cybersecurity news aggregator - therecord.media letters bianlian ransomware letter

Russian crypto exchange Garantex’s website taken down in apparent law enforcement operation Russian cryptocurrency exchange Garantex was taken down in an apparent seizure by U.S. and European... 2025-3-6 20:31:15 | 阅读: 6 | 收藏 | Over Security - Cybersecurity news aggregator - therecord.media garantex european police tether criminal

Thousands of public school workers impacted by cyberattack on retirement plan administrator 2024年12月，一起针对退休计划管理机构的网络攻击导致美国数千名公立学校教师和员工的信息泄露。黑客窃取了姓名、社保号等敏感数据，受影响人数超4万。黑客组织Skira Team声称对此负责。涉事公司已聘请第三方调查，并面临多起集体诉讼。... 2025-3-6 18:1:21 | 阅读: 3 | 收藏 | Over Security - Cybersecurity news aggregator - therecord.media schools carruth districts consulting dozens