New Windows Backdoor BITSLOTH Exploits BITS for Stealthy Communication
Cybersecurity researchers have discovered a previously undocumented Windows backdoor that leverages a built-in feature called Background Intelligent Transfer Service (BITS)...
News
Mirai Botnet targeting OFBiz Servers Vulnerable to Directory Traversal
Enterprise Resource Planning (ERP) Software is at the heart of many enterprising supporting human resources, accounting, shipping, and manufacturing. These...
Cybercriminals Abusing Cloudflare Tunnels to Evade Detection and Spread Malware
Cybersecurity companies are warning about an uptick in the abuse of Clouflare's TryCloudflare free service for malware delivery. The activity,...
U.S. Releases High-Profile Russian Hackers in Diplomatic Prisoner Exchange
In a historic prisoner exchange between Belarus, Germany, Norway, Russia, Slovenia, and the U.S., two Russian nationals serving time for...
BEC Attacks Surge 20% Annually Thanks to AI Tooling
Business email compromise (BEC) attacks have risen sharply over the past year thanks to the use of AI tools to...
Scam Platform Shut Down by UK Authorities After 1.8 Million Fraudulent Calls
Russian Coms, the scam platform behind 1.8 million fraudulent calls, has been shut down by the UK’s National Crime Agency...
Cencora Confirms Patient Data Stolen in Cyber-Attack
Pharmaceutical company Cencora has confirmed sensitive personal and health data was exfiltrated in the cyber-attack in February 2024 suffered by...
E-Commerce Fraud Campaign Uses 600+ Fake Sites
Security researchers have uncovered a sophisticated information-stealing fraud network that lures victims to fake web shops via malicious Facebook ads.Dubbed...
RansomEXX Group Targets Indian Banking With New Tactics
A significant ransomware attack has recently compromised India's banking sector, affecting banks and payment providers. The attack has primarily targeted...
Obfuscation: There Are Two Sides To Everything
How to detect and prevent attackers from using these various techniques Obfuscation is an important technique for protecting software that...
New Android Banking Trojan BingoMod Steals Money, Wipes Devices
Cybersecurity researchers have uncovered a new Android remote access trojan (RAT) called BingoMod that not only performs fraudulent money transfers...
Over 1 Million Domains at Risk of ‘Sitting Ducks’ Domain Hijacking Technique
Over a million domains are susceptible to takeover by malicious actors by means of what has been called a Sitting...
Hackers Distributing Malicious Python Packages via Popular Developer Q&A Platform
In yet another sign that threat actors are always looking out for new ways to trick users into downloading malware,...
Google Chrome Adds App-Bound Encryption to Protect Cookies from Malware
Google has announced that it's adding a new layer of protection to its Chrome browser through what's called app-bound encryption...
Facebook Ads Lead to Fake Websites Stealing Credit Card Information
Facebook users are the target of a scam e-commerce network that uses hundreds of fake websites to steal personal and...
DDoS Attack Triggers New Microsoft Global Outage
A global outage of Microsoft services was started by a Distributed Denial-of-Service (DDoS) attack, the tech giant has revealed.An error...
Researchers Uncover Largest Ever Ransomware Payment of $75m
Security researchers have discovered the largest ever publicly known ransomware payment and warned that multiple threat actors may look to copy...
Cost of a Data Breach Surges 10% on Shadow Data Challenge
The average total cost of a data breach has increased 10% annually to reach nearly $4.9m, and even higher ($5m)...
New SMS Stealer Malware Targets Over 600 Global Brands
Security researchers have identified a new threat known as SMS Stealer that has targeted over 600 global brands.Discovered by Zimperium’s...
New PyPI Package Zlibxjson Steals Discord, Browser Data
A dangerous package has been found on the PyPI repository. Named zlibxjson version 8.2, the malicious package was flagged by Fortinet’s AI-driven...
Urgent Blood Appeal Issued in US After Ransomware Attack
An urgent appeal for blood donations has been issued following a ransomware attack on US blood donation center OneBlood.The non-profit...
Meta to Pay Texas $1.4bn for Unlawful Biometric Data Capture
Meta has agreed a $1.4bn settlement with the State of Texas for unlawfully capturing and using biometric data of millions...
DigiCert to Revoke 83,000+ SSL Certificates Due to Domain Validation Oversight
Certificate authority (CA) DigiCert has warned that it will be revoking a subset of SSL/TLS certificates within 24 hours due...
North Korea-Linked Malware Targets Developers on Windows, Linux, and macOS
The threat actors behind an ongoing malware campaign targeting software developers have demonstrated new malware and tactics, expanding their focus...
