Forever 21 data breach: hackers accessed info of 500,000
Forever 21 clothing and accessories retailer is sending data breach notifications to more than half a million individuals who had...
News
Lazarus hackers deploy fake VMware PyPI packages in VMConnect attacks
North Korean state-sponsored hackers have uploaded malicious packages to the PyPI (Python Package Index) repository, camouflaging one of them as...
Golf gear giant Callaway data breach exposes info of 1.1 million
Topgolf Callaway (Callaway) suffered a data breach at the start of August, which exposed the sensitive personal and account data...
Sourcegraph website breached using leaked admin access token
AI-powered coding platform Sourcegraph revealed that its website was breached this week using a site-admin access token accidentally leaked online...
Russian APT Intensifies Cyber Espionage Activities Amid Ukrainian Counter-Offensive
Russian APT group Gamaredon has intensified its cyber espionage activities ahead of and during Ukraine’s counter-offensive operations, according to a...
Classiscam Spreads: $64.5M Scheme Targets 79 Countries
The Classiscam scam-as-a-service operation has grown into a $64.5 million worldwide threat, infiltrating 79 countries, according to cybersecurity experts at...
GRU Blamed for Infamous Chisel Malware Targeting Ukraine’s Military Phones
The UK and its Five Eyes partners (Australia, Canada, New Zealand and the US) officially support Ukraine’s attribution of Infamous...
BYOD Security Gap: Survey Finds 49% of European Firms Unprotected
A recent survey conducted by Jamf, a provider of enterprise-level management and security solutions for Apple ecosystems, has revealed that...
New Research Exposes Airbnb as Breeding Ground For Cybercrime
Cyber-criminals have been increasingly exploiting the Airbnb platform for fraudulent endeavors. A new analysis by cybersecurity experts at SlashNext highlighted...
Facebook Accounts Targeted by Vietnamese Threat Groups
Cyber-attacks targeting Meta Business and Facebook accounts are gaining popularity among criminals in Vietnam, according to a new report published...
Smishing Triad: China-Based Fraud Network Exposed
A Chinese-speaking cyber-criminal group named “Smishing Triad” has been observed conducting a large-scale smishing campaign targeting US citizens.This campaign has skillfully...
Sophisticated Cyber-Espionage Group Earth Estries Exposed
A sophisticated cyber-espionage group named “Earth Estries” has been exposed by cybersecurity firm Trend Micro. Operating since at least 2020, the group...
Adobe ColdFusion Critical Vulnerabilities Exploited Despite Patches
Fortinet has observed significant threat exploitation targeting Adobe ColdFusion, a web development computing platform.This is despite a series of security...
Open-Source Malware SapphireStealer Expands
SapphireStealer, an open-source information stealer, has emerged as a growing threat since its public debut last year. This malware is...
US-CERT Vulnerability Summary for the Week of August 21, 2023
High VulnerabilitiesPrimary Vendor -- ProductDescriptionPublishedCVSS ScoreSource & Patch Infoqemu -- qemuThe hardware emulation in the of_dpa_cmd_add_l2_flood of rocker device model...
Threat Actors Targeting Microsoft SQL Servers to Deploy FreeWorld Ransomware
Threat actors are exploiting poorly secured Microsoft SQL (MS SQL) servers to deliver Cobalt Strike and a ransomware strain called...
New SuperBear Trojan Emerges in Targeted Phishing Attack on South Korean Activists
A new phishing attack likely targeting civil society groups in South Korea has led to the discovery of a novel...
It’s a Zero-day? It’s Malware? No! It’s Username and Password
As cyber threats continue to evolve, adversaries are deploying a range of tools to breach security defenses and compromise sensitive...
Russian State-Backed ‘Infamous Chisel’ Android Malware Targets Ukrainian Military
Cybersecurity and intelligence agencies from Australia, Canada, New Zealand, the U.K., and the U.S. on Thursday disclosed details of a...
Classiscam Scam-as-a-Service Raked $64.5 Million During the COVID-19 Pandemic
The Classiscam scam-as-a-service program has reaped the criminal actors $64.5 million in illicit earnings since its emergence in 2019. "Classiscam...
North Korean Hackers Deploy New Malicious Python Packages in PyPI Repository
Three additional rogue Python packages have been discovered in the Package Index (PyPI) repository as part of an ongoing malicious...
SapphireStealer Malware: A Gateway to Espionage and Ransomware Operations
An open-source .NET-based information stealer malware dubbed SapphireStealer is being used by multiple entities to enhance its capabilities and spawn...
US-CERT Vulnerability Summary for the Week of August 21, 2023
High VulnerabilitiesPrimary Vendor -- ProductDescriptionPublishedCVSS ScoreSource & Patch Infoqemu -- qemuThe hardware emulation in the of_dpa_cmd_add_l2_flood of rocker device model...
Numbers Don’t Lie: Exposing the Harsh Truths of Cyberattacks in New Report
How often do cyberattacks happen? How frequently do threat actors target businesses and governments around the world? The BlackBerry® Threat...
