Crooks target Kubernetes installs via Argo Workflows to deploy miners
Threat actors target Kubernetes installs via Argo Workflows to cryptocurrency miners, security researchers from Intezer warn. Researchers from Intezer uncovered...
OSINT
XCSSET MacOS malware targets Telegram, Google Chrome data and more
XCSSET macOS malware continues to evolve, now it is able to steal login information from multiple apps, including Telegram and...
Security Affairs newsletter Round 324
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for...
Japanese computers hit by a wiper malware ahead of 2021 Tokyo Olympics
Japanese researchers spotted an Olympics-themed wiper targeting Japanese users ahead of the 2021 Tokyo Olympics. Tokyo Olympics could be a...
XCSSET, a MacOS malware, Targets Google Chrome and Telegram Software
As part of further "refinements in its tactics," a malware notorious for targeting the macOS operating system has been updated...
Wi-Fi Routers with Default Passwords are Vulnerable to Attacks
Cybersecurity researchers have advised the users to change the manufacturer’s default access credentials of their Wi-Fi home router to minimize...
Researchers Embedded Malware into an AI’s ‘Neurons’ and it Worked Scarily Well
According to a new study, as neural networks become more popularly used, they may become the next frontier for malware...
Hacker Employ Milanote App for Spreading Phishing Email
The usage of collaborative applications had been a major victory with the pandemic. That incorporates Microsoft Teams, Google Meets, Zoom,...
USD 50 Million Ransom Demanded from Saudi Aramco Over Leaked Data
Saudi Arabia's state oil firm admitted on Wednesday that data from the corporation was leaked and that the files are...
Terraguard – Create And Destroy Your Own VPN Service Using WireGuard
This project's goal is to be simple to create and destroy your own VPN service using WireGuard.PrerequisitesTerraform >= 1.0.0 Ansible...
Pathprober – Probe And Discover HTTP Pathname Using Brute-Force Methodology And Filtered By Specific Word Or 2 Words At Once
Probe and discover HTTP pathname using brute-force methodology and filtered by specific word or 2 words at once. PurposeBrute-forcing website...
Obtaining password hashes of Windows systems with PetitPotam attack
A researcher found a flaw in Windows OS, tracked as PetitPotam, that can be exploited to force remote Windows machines...
Estonian hacker Pavel Tsurkan pleads guilty for operating a proxy botnet.
Estonian hacker Pavel Tsurkan has pleaded guilty in a United States court to the counts of computer fraud and of...
Over 80 US Municipalities’ Sensitive Information, Including Resident’s Personal Data, Left Vulnerable in Massive Data Breach
WizCase’s team of ethical hackers, led by Ata Hakçıl, has found a major breach exposing a number of US cities, all...
What Is An Identity and Access Management So-lution and How Can Businesses Benefit From It?
How businesses can benefit from the adoption of an identity and access management solution. Businesses that use outdated manual processes...
Kaseya obtained a universal decryptor for REvil ransomware attack
The software provider Kaseya announced to have obtained a universal decryptor for the REvil ransomware. Earlier this month, a massive...
Threat Report Portugal: Q2 2021
The Threat Report Portugal: Q1 2021 compiles data collected on the malicious campaigns that occurred from April to June, Q2,...
AvosLocker enters the ransomware scene, asks for partners
This blog post was authored by Hasherezade In mid-July we responded to an incident that involved an attack on a...
CNA legal filings lift the curtain on a Phoenix CryptoLocker ransomware attack
Two months after fully restoring its systems, CNA Financial, the leading US insurance company that was attacked by a group...
Busted! Fraud-as-a-Service gang that sold 2FA-proof phishing arrested
The Dutch police announced that they arrested two Dutch citizens, aged 24 and 15, for developing and selling phishing panels....
The work of the Runet was tested in the exercise of disconnection from the global network
In June—July, regular exercises on the stability of the Runet were held. This time the possibility of working in conditions...
Global Outage Disrupts the Services of Major Websites
Several major websites faced outages on Thursday due to a glitch in Akamai Technologies Inc's (AKAM.O) systems, the second widespread...
New Windows and Linux Flaws: Provide Attackers Highest System Privileges
Two new vulnerabilities, one in Windows and the other in Linux, were discovered on Tuesday, allowing hackers with a presence...
Pulse Security Devices Identified with Malware: Alerts CISA
A detailed warning concerning almost 13 malware samples associated with Pulse Secure operated devices has been issued by the Cybersecurity...
