Atlassian Confluence Vulnerability Exploited in Crypto Mining Campaigns
Threat actors are actively exploiting a now-patched, critical security flaw impacting the Atlassian Confluence Data Center and Confluence Server to...
News
North Korean Hackers Target Developers with Malicious npm Packages
Threat actors with ties to North Korea have been observed publishing a set of malicious packages to the npm registry,...
SANS Institute Unveils Critical Infrastructure Strategy Guide for 2024: A Call to Action for Securing ICS/OT Environments
A comprehensive guide authored by Dean Parsons emphasizes the growing need for specialized ICS security measures in the face of...
New Cyberattack Targets Chinese-Speaking Businesses with Cobalt Strike Payloads
Chinese-speaking users are the target of a "highly organized and sophisticated attack" campaign that is likely leveraging phishing emails to...
Ubuntu Linux Kernel Multiple Vulnerabilities
Multiple vulnerabilities were identified in Ubuntu Linux Kernel. A remote attacker could exploit some of these vulnerabilities to trigger denial...
RedHat Linux Kernel Multiple Vulnerabilities
Multiple vulnerabilities were identified in RedHat Linux Kernel. A remote attacker could exploit some of these vulnerabilities to trigger denial of...
SUSE Linux Kernel Multiple Vulnerabilities
Multiple vulnerabilities were identified in SUSE Linux Kernel. A remote attacker could exploit some of these vulnerabilities to trigger denial...
Unpatched CCTV Vulnerability Exploited to Spread Dangerous Mirai Variant
An unpatched CCTV vulnerability is being targeted to spread a variant of Mirai malware, raising significant security concerns. An unpatched...
BlackByte Targets ESXi Hypervisors: New Tactics Unveiled
BlackByte, a ransomware group connected to the notorious Conti group, is now exploiting VMware ESXi vulnerabilities to compromise systems and...
Pig Butchering Scams Surge: Rising Trends in Online Fraud
In recent months, the rise of pig butchering scams has highlighted alarming trends in online fraud, as scammers adapt their...
North Korean Hackers Exploit New npm Package Attacks to Target Developers
A recent analysis highlights a surge in attacks linked to North Korean hackers, focusing on the npm ecosystem to compromise...
Vietnamese Human Rights Group Targeted in Multi-Year Cyberattack by APT32
A non-profit supporting Vietnamese human rights has been the target of a multi-year campaign designed to deliver a variety of...
Russian Hackers Exploit Safari and Chrome Flaws in High-Profile Cyberattack
Cybersecurity researchers have flagged multiple in-the-wild exploit campaigns that leveraged now-patched flaws in Apple Safari and Google Chrome browsers to...
U.S. Agencies Warn of Iranian Hacking Group’s Ongoing Ransomware Attacks
U.S. cybersecurity and intelligence agencies have called out an Iranian hacking group for breaching multiple organizations across the country and...
Unpatched AVTECH IP Camera Flaw Exploited by Hackers for Botnet Attacks
A years-old high-severity flaw impacting AVTECH IP cameras has been weaponized by malicious actors as a zero-day to rope them...
How AitM Phishing Attacks Bypass MFA and EDR—and How to Fight Back
Attackers are increasingly using new phishing toolkits (open-source, commercial, and criminal) to execute adversary-in-the-middle (AitM) attacks. AitM enables attackers to...
Qilin Caught Stealing Credentials in Google Chrome: What You Need to Know
Discover how the Qilin malware has been stealthily stealing credentials from Google Chrome users, posing significant security risks. The emergence...
AI Tool by YouTube to Safeguard and Recover Hacked Accounts
YouTube has introduced a new AI tool to assist users in recovering hacked accounts, enhancing security measures for greater protection....
Liverpool Fans Targeted by Premier League Ticket Scams – Protect Yourself!
Liverpool fans have emerged as the top victims of ticket scams in the Premier League for the 2023/24 season, losing...
NSA’s Essential Guide to Combat Living Off the Land Attacks
The NSA has introduced a vital guide to help organizations defend against Living Off the Land (LOTL) cyber attacks. The...
Greasy Opal: The Newly Identified Group Providing CAPTCHA-Solving Services to Cybercriminals
A newly uncovered group, Greasy Opal, has been identified as a facilitator of cyber-attacks by providing CAPTCHA-solving services to threat...
Chinese Velvet Ant Exploits Cisco Zero-Day for Custom Malware Deployment
The Chinese Velvet Ant cyber espionage group is leveraging a Cisco zero-day vulnerability to deploy custom malware, raising significant security...
Cybersecurity Violations: Georgia Tech Faces Lawsuit from US Government
Georgia Tech is facing serious allegations of cybersecurity violations, prompting a lawsuit from the US government. This case highlights the...
FBI’s Flawed Data Handling: Security Risks Uncovered in Recent Audit
The FBI's flawed data handling practices raise serious security concerns, as revealed by a recent audit from the US Department...
