Dark Pink APT targets Govt entities in South AsiaResearchers reported that Dark Pink APT employed a malware dubbed KamiKakaBot against Southeast Asian targets. In February 2023,...
Day: March 14, 2023
CISA adds Plex Media Server bug, exploited in LastPass attack, to Known Exploited Vulnerabilities Catalog
CISA adds Plex Media Server bug, exploited in LastPass attack, to Known Exploited Vulnerabilities CatalogUS CISA added remote code execution vulnerability in Plex Media Server to...
Golang-Based Botnet GoBruteforcer targets web servers
Golang-Based Botnet GoBruteforcer targets web serversA recently discovered Golang-based botnet, dubbed GoBruteforcer, is targeting web servers running FTP, MySQL, phpMyAdmin, and Postgres services Researchers from Palo...
Air-Gapped Computers Vulnerable to Data Stealing Through Internal Speakers
Air-Gapped Computers Vulnerable to Data Stealing Through Internal SpeakersSouth Korean researchers presented a new covert channel attack named CASPER. It uses internal speakers to leak data...
Fake Job Proposals Used to Deploy Malware – Security Researchers Targeted
Fake Job Proposals Used to Deploy Malware – Security Researchers TargetedNorth Korean based threat actors are believed to be actively seeking security researchers and media outlets with...
The Dark Side of Eurovision 2023: How Scammers Are Targeting Fans
The Dark Side of Eurovision 2023: How Scammers Are Targeting FansTickets for the Eurovision Song Contest in Liverpool sold out in less than an hour on...
ScrubCrypt Attack Detection: 8220 Gang Applies Novel Malware in Cryptojacking Operations Exploiting Oracle WebLogic Servers
ScrubCrypt Attack Detection: 8220 Gang Applies Novel Malware in Cryptojacking Operations Exploiting Oracle WebLogic Servers Threat actors tracked as 8220 Gang have been observed leveraging a...
Emotet Returns, Now Adopts Binary Padding for Evasion
Emotet Returns, Now Adopts Binary Padding for EvasionFollowing a three-month hiatus, Emotet spam activities resumed in March 2023, when a botnet known as Epoch 4 began...
SYS01 stealer targets Facebook business accounts and browser credentials
SYS01 stealer targets Facebook business accounts and browser credentialsThe SYS01 infection chain uses DLL sideloading to steal information. Learn how to protect your business from this...
How internet-facing webcams could put your organization at risk
How internet-facing webcams could put your organization at riskBy exploiting webcams and other IoT devices, hackers can spy on private and professional conversations, potentially giving them...
New Hiatus malware campaign targets routers
New Hiatus malware campaign targets routersA new malware dubbed HiatusRAT infects routers to spy on its targets, mostly in Europe and in the U.S. Learn which...
STALKER 2 game developer hacked by Russian hacktivists, data stolen
STALKER 2 game developer hacked by Russian hacktivists, data stolenGSC Game World, the developer of the highly-anticipated 'STALKER 2: Heart of Chornobyl' game, warned their systems...
Hackers steal $197 million in crypto in Euler Finance attack
Hackers steal $197 million in crypto in Euler Finance attackLending protocol Euler Finance was hit by a cryptocurrency flash loan attack on Sunday, with the threat...
Outlook app to get built-in Microsoft 365 MFA on Android, iOS
Outlook app to get built-in Microsoft 365 MFA on Android, iOSMicrosoft will soon fast-track multi-factor authentication (MFA) adoption for its Microsoft 365 cloud productivity platform by...
CISA now warns critical infrastructure of ransomware-vulnerable devices
CISA now warns critical infrastructure of ransomware-vulnerable devicesToday, the U.S. Cybersecurity & Infrastructure Security Agency (CISA) announced a new pilot program designed to help critical infrastructure entities...
Kali Linux 2023.1 introduces ‘Purple’ distro for defensive security
Kali Linux 2023.1 introduces 'Purple' distro for defensive securityOffensive Security has released Kali Linux 2023.1, the first version of 2023 and the project's 10th anniversary, with...
LA housing authority discloses data breach after ransomware attack
LA housing authority discloses data breach after ransomware attackThe Housing Authority of the City of Los Angeles (HACLA) is warning of a "data security event" after...
Fortinet: New FortiOS bug used as zero-day to attack govt networks
Fortinet: New FortiOS bug used as zero-day to attack govt networksUnknown attackers used zero-day exploits to abuse a new FortiOS bug patched this month in attacks...
NordVPN makes its Meshnet private tunnel free for everyone
NordVPN makes its Meshnet private tunnel free for everyoneNordVPN's Meshnet private tunnel feature for Windows, macOS, and Linux is now free for everyone, even users who...
The 2 biggest regulatory challenges for the internet of “any” thing (IoT)
The 2 biggest regulatory challenges for the internet of “any” thing (IoT)By Antoinette Hodes, a Check Point Global Solutions Architect for the EMEA region and an...
A shocking truth: One in five government employees, indifferent to workplace hacks
A shocking truth: One in five government employees, indifferent to workplace hacksEXECUTIVE SUMMARY: Around the globe, cyber risks are intensifying. Responding to these growing challenges requires...
GUEST ESSAY: Could CISOs be on the verge of disproving the ‘security-as-a-cost-center’ fallacy?
GUEST ESSAY: Could CISOs be on the verge of disproving the ‘security-as-a-cost-center’ fallacy?This year has kicked off with a string of high-profile layoffs — particularly in...
Ukraine Tracks Increased Russian Focus on Cyberespionage
Ukraine Tracks Increased Russian Focus on CyberespionageMilitary Stalemate Has Driven Moscow to Also Pursue Data Theft, Psychological OpsAs Russia's full-scale invasion of Ukraine last year stalled,...
North Korean Hackers Find Value in LinkedIn
North Korean Hackers Find Value in LinkedInGroup Lures Victims Into Opening Phishing Payload Disguised as Job-Related InfoBusiness social media platform LinkedIn continues to pay dividends for...
Heart Device Maker Says Hack Affected 1 Million Patients
Heart Device Maker Says Hack Affected 1 Million PatientsPHI of Former and Current Patients Using Wearable Cardiac Defibrillator CompromisedEmergency medical device provider Zoll Medical Corp. is...
Dark Pink APT Group ‘Very Likely’ Back in Action
Dark Pink APT Group 'Very Likely' Back in ActionRecently-Emerged Threat Actor Focuses on Asia PacificCybersecurity researchers say they've almost certainly spotted traces of the recently-emerged advanced...
Acer sufre una brecha de datos que se ponen a la venta
Acer sufre una brecha de datos que se ponen a la ventaAcer, el fabricante de productos electrónicos y gigante informático con sede en Taiwán, confirmó recientemente...