Microsoft Warns of New ‘FalseFont’ Backdoor Targeting the Defense Sector
Organizations in the Defense Industrial Base (DIB) sector are in the crosshairs of an Iranian threat actor as part of...
News
Decoy Microsoft Word Documents Used to Deliver Nim-Based Malware
A new phishing campaign is leveraging decoy Microsoft Word documents as bait to deliver a backdoor written in the Nim...
Microsoft Edge Remote Code Execution Vulnerability
A vulnerability has been identified in Microsoft Edge. A remote attacker could exploit this vulnerability to trigger remote code execution...
Hackers Exploiting MS Excel Vulnerability to Spread Agent Tesla Malware
Attackers are weaponizing an old Microsoft Office vulnerability as part of phishing campaigns to distribute a strain of malware called...
Chameleon Android Banking Trojan Variant Bypasses Biometric Authentication
Cybersecurity researchers have discovered an updated version of an Android banking malware called Chameleon that has expanded its targeting to...
Cost of a Data Breach Report 2023: Insights, Mitigators and Best Practices
John Hanley of IBM Security shares 4 key findings from the highly acclaimed annual Cost of a Data Breach Report...
Experts Detail Multi-Million Dollar Licensing Model of Predator Spyware
A new analysis of the sophisticated commercial spyware called Predator has revealed that its ability to persist between reboots is...
UAC-0099 Using WinRAR Exploit to Target Ukrainian Firms with LONEPAGE Malware
The threat actor known as UAC-0099 has been linked to continued attacks aimed at Ukraine, some of which leverage a...
Openai Rolls Out Imperfect Fix For Chatgpt Data Leak Flaw
OpenAI has mitigated a data exfiltration bug in ChatGPT that could potentially leak conversation details to an external URL. According...
Bidencash Darkweb Market Gives 19 Million Credit Cards For Free
The BidenCash stolen credit card marketplace is giving away 1.9 million credit cards for free via its store to promote...
Android Malware Chameleon Disables Fingerprint Unlock To Steal Pins
The Chameleon Android banking trojan has re-emerged with a new version that uses a tricky technique to take over devices...
First American Takes It Systems Offline After Cyberattack
First American Financial Corporation, the second-largest title insurance company in the United States, took some of its systems offline today...
Microsoft Deprecates Defender Application Guard For Some Edge Users
Microsoft is deprecating Defender Application Guard (including the Windows Isolated App Launcher APIs) for Edge for Business users. Microsoft Defender...
Lapsus Hacker Behind Gta 6 Leak Gets Indefinite Hospital Sentence
Lapsus$ cybercrime and extortion group member, Arion Kurtaj has been sentenced indefinitely in a 'secure hospital' by a UK judge. Kurtaj...
Microsoft Hackers Target Defense Firms With New Falsefont Malware
Microsoft says the APT33 Iranian cyber-espionage group is using recently discovered FalseFont backdoor malware to attack defense contractors worldwide. "Microsoft has...
Crypto Drainer Steals 59 Million From 63k People In Twitter Ad Push
Google and Twitter ads are promoting sites containing a cryptocurrency drainer named 'MS Drainer' that has already stolen $59 million...
Google Chrome Remote Code Execution Vulnerability
A vulnerability has been identified in Google Chrome. A remote attacker could exploit this vulnerability to trigger remote code execution...
Fake Delivery Websites Surge By 34% in December
Scammers are taking advantage of the last-minute rush to order Christmas gifts, with one threat intelligence vendor claiming to have...
German Police Take Down Kingdom Market Dark Web Marketplace
The German authorities have announced the takedown of a notorious dark web marketplace known for selling drugs, malware and other...
Healthcare Provider ESO Hit in Ransomware Attack, 2.7 Million Impacted
ESO Solutions, a data and software provider for emergency responders and healthcare entities, has commenced the notification process for 2.7...
Ivanti Urges Customers to Patch 13 Critical Vulnerabilities
Security vendor Ivanti has released an update to its Avalanche mobile device management (MDM) product which fixes 22 vulnerabilities, 13...
BattleRoyal Cluster Signals DarkGate Surge
Security researchers have warned against the DarkGate threat actor, who has recently gained notoriety in the realm of remote access...
Active Exploitation of Zero-Day Vulnerability in Google Chrome
Google has released security updates to address a high-severity zero-day vulnerability (CVE-2023-7024) in Google Chrome. The vulnerability is reportedly being...
Active Exploitation of Zero-Day Vulnerability in Google Chrome
Google has released security updates to address a high-severity zero-day vulnerability (CVE-2023-7024) in Google Chrome. The vulnerability is reportedly being...
