New evolving Abcbot DDoS botnet targets Linux systems
Qihoo 360’s Netlab detailed a new evolving DDoS botnet called Abcbot with wormable capabilities that targets Linux systems. Researchers from...
News
Retail giant Costco discloses data breach, payment card data exposed
Costco Wholesale Corporation discloses a data breach, threat actors had access to customers’ payment card information. Retail giant Costco Wholesale...
A multi-stage PowerShell based attack targets Kazakhstan
This blog post was authored by Hossein Jazi. On November 10 we identified a multi-stage PowerShell attack using a document...
HTML Smuggling technique used in phishing and malspam campaigns
Threat actors are increasingly using the HTML smuggling technique in phishing campaigns, Microsoft researchers warn. Microsoft experts warn that threat actors are...
The importance of backing up
What does backing up something mean? Backing up is the act of making a copy or copies of a file....
macOS Zero-Day exploited in watering hole attacks on users in Hong Kong
Google revealed that threat actors recently exploited a zero-day vulnerability in macOS to deliver malware to users in Hong Kong....
Could Apple’s new MacBooks signal a change in direction on security?
Apple recently announced a new line of completely overhauled MacBook Pros. Much has been written about their new design, new...
How we broke the cloud with two lines of code: the full story of ChaosDB
Wiz Research Team disclosed technical details about the discovery of the ChaosDB vulnerability in Azure Cosmos DB database solution. In...
BotenaGo botnet targets millions of IoT devices using 33 exploits
Researchers at AT&T discovered a new BotenaGo botnet that is using thirty three exploits to target millions of routers and IoT devices....
Threat actors hacked a server of a Queensland water supplier and remained undetected for 9 months
Threat actors compromised a server managing customer data for a Queensland water supplier and remained undetected for nine months. A...
DoJ sentenced to 10 years Russian ‘King of Fraud’ behind the fraud scheme 3ve
The US DoJ sentenced a Russian man for operating a large-scale digital advertising fraud scheme called Methbot (‘3ve’). The US...
Murder-for-hire, money laundering, and more: How organised criminals work online
Europol has released an extensive report into serious and organized crime, including how these groups use the internet to aid...
Iranian threat actors attempt to buy stolen data of US organizations, FBI warns
The FBI warned private industry partners of attempts by an Iranian threat actor to buy stolen information belonging to US...
CVE-2021-3064: Easily exploitable RCE flaw in Palo Alto Networks in GlobalProtect VPN
Palo Alto Networks warns of an easy exploitable Remote Code Execution vulnerability in its GlobalProtect VPN product. Palo Alto Networks...
Sophisticated Android spyware PhoneSpy infected thousands of Korean phones
South Korean users have been targeted with a new sophisticated Android spyware, tracked as PhoneSpy, as part of an ongoing...
Streaming wars continue — what about cyberthreats?
Last year became a banner year for the online entertainment industry. Driven by the pandemic lockdown restrictions and imposed work-from-home...
VMware discloses a severe flaw in vCenter Server that has yet to fix
VMware announced it is working on patches for an important severity privilege escalation vulnerability affecting vCenter Server. VMware announced it’s...
A flaw in WP Reset PRO WordPress plugin allows wiping the installation DB
A critical vulnerability in the WP Reset PRO WordPress plugin can allow an authenticated user to wipe the entire database...
Citrix addresses a critical flaw in ADC, Gateway
Citrix addressed two vulnerabilities affecting Citrix ADC, Gateway, and SD-WAN, one of them is a critical issue leading to DoS....
Playstation 5 hacked—twice!
Over the weekend, hackers revealed that the Playstation 5 (PS5), Sony’s latest darling, has been broken into—not just once but twice....
Taiwan Government faces 5 Million hacking attempts daily
Taiwan ‘s government agencies face around five million cyberattacks and probes every day, most of them from China. Around five...
Patch now! Microsoft plugs actively exploited zero-days and other updates
On what might seem a relatively calm Patch Tuesday with 55 vulnerabilities being patched, the fact that six of them...
Experts found 14 new flaws in BusyBox, millions of devices at risk
Researchers have identified a total of 14 new vulnerabilities in BusyBox that expose million of Unix-based devices to cyberattacks. Researchers...
Are cybercriminals turning away from the US and targeting Europe instead?
Significant cyberattacks against critical targets in Europe have doubled in the past year, according to EU figures obtained by CNN....
