US govt sanctions North Korea’s Kimsuky hacking group
The Treasury Department's Office of Foreign Assets Control (OFAC) has sanctioned the North Korean-backed Kimsuky hacking group for stealing intelligence...
Year: 2023
LogoFAIL bugs in UEFI code allow planting bootkits via images
Multiple security vulnerabilities collectively named LogoFAIL affect image-parsing components in the UEFI code from various vendors. Researchers warn that they...
WhatsApp’s new Secret Code feature hides your locked chats
WhatsApp has introduced a new Secret Code feature that allows users to hide their locked chats by setting a custom...
Microsoft Edge Multiple Vulnerabilities
Multiple vulnerabilities were identified in Microsoft Edge. A remote attacker could exploit some of these vulnerabilities to trigger security restriction bypass,...
Booking.com Customers Scammed in Novel Social Engineering Campaign
Booking.com customers are being targeted by a novel social engineering campaign, which is “paying serious dividends” for cybercriminals, according to...
Okta Admits All Customer Support Users Impacted By Breach
Okta has revealed that an October security breach compromised all users of its customer support system rather than a small...
Black Basta Ransomware Group Makes $100m Since 2022
A prolific Russian-speaking ransomware group has made over $100m from dozens of victims since April 2022, new analysis has revealed.Corvus...
Thousands of Dollar Tree Staff Hit By Supplier Breach
A major data breach at IT provider Zeroed-In Technologies has impacted two million end users, including thousands of Dollar Tree...
FjordPhantom Android Malware Targets Banks With Virtualization
Security researchers have discovered a new Android malware, known as FjordPhantom, notable for its elusive nature and covert spreading tactics.The...
Manufacturing Top Targeted Industry in Record-Breaking Cyber Extortion Surge
The year 2023 has been a record-breaking year for cyber extortion, according to Orange Cyberdefense (OCD).The cybersecurity branch of the...
North Korean Hackers Amass $3bn in Cryptocurrency Heists
North Korean hackers have reportedly stolen a total of $3bn in cryptocurrency since 2017, as revealed in a recent report...
RedLine Stealer Malware Deployed Via ScrubCrypt Evasion Tool
A new version of the ScrubCrypt obfuscation tool is being used to target organizations with the RedLine Stealer malware, fraud...
Go Ninja – 4,999,001 breached accounts
HIBP In December 2019, the now defunct German gaming website Go Ninja suffered a data breach that exposed 5M unique...
US-CERT Vulnerability Summary for the Week of November 20, 2023
High VulnerabilitiesPrimary Vendor -- ProductDescriptionPublishedCVSS ScoreSource & Patch Infoadobe -- after_effectsAdobe After Effects version 24.0.2 (and earlier) and 23.6 (and...
Windiff – Web-based Tool That Allows Comparing Symbol, Type And Syscall Information Of Microsoft Windows Binaries Across Different Versions Of The OS
WinDiff is an open-source web-based tool that allows browsing and comparing symbol, type and syscall information of Microsoft Windows binaries...
Google Unveils RETVec – Gmail’s New Defense Against Spam and Malicious Emails
Google has revealed a new multilingual text vectorizer called RETVec (short for Resilient and Efficient Text Vectorizer) to help detect...
North Korea’s Lazarus Group Rakes in $3 Billion from Cryptocurrency Hacks
Threat actors from the Democratic People's Republic of Korea (DPRK) are increasingly targeting the cryptocurrency sector as a major revenue...
North Korea’s Lazarus Group Rakes in $3 Billion from Cryptocurrency Hacks
Threat actors from the Democratic People's Republic of Korea (DPRK) are increasingly targeting the cryptocurrency sector as a major revenue...
Google Unveils RETVec – Gmail’s New Defense Against Spam and Malicious Emails
Google has revealed a new multilingual text vectorizer called RETVec (short for Resilient and Efficient Text Vectorizer) to help detect...
Medusa Locker Ransomware Victim: Chetu
Medusa Locker Logo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
CISA: CISA Releases Five Industrial Control Systems Advisories
CISA Releases Five Industrial Control Systems Advisories CISA released five Industrial Control Systems (ICS) advisories on November 21, 2023. These...
CISA: CISA Releases The Mitigation Guide: Healthcare and Public Health (HPH) Sector
CISA Releases The Mitigation Guide: Healthcare and Public Health (HPH) Sector Today, CISA released the Mitigation Guide: Healthcare and Public...
CISA: Adobe Releases Security Updates for ColdFusion
Adobe Releases Security Updates for ColdFusion On Nov. 14, 2023, Adobe released security updates addressing vulnerabilities affecting unpatched ColdFusion software....
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
