Month: April 2023
CISA Warns of Critical Flaws in Illumina’s DNA Sequencing Instruments
29 April 2023Apr 29, 2023Ravie LakshmananHealthcare / Cybersecurity The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has released an Industrial Control Systems (ICS) medical advisory warning of a critical flaw impacting Illumina medical devices. The issues impact the Universal Copy Service (UCS) software in the Illumina MiSeqDx, NextSeq 550Dx, iScan, iSeq 100, MiniSeq, MiSeq, NextSeq 500, NextSeq […]
Read More
ChatGPT is Back in Italy After Addressing Data Privacy Concerns
29 April 2023Apr 29, 2023Ravie LakshmananData Safety / Privacy / AI OpenAI, the company behind ChatGPT, has officially made a return to Italy after the company met the data protection authority’s demands ahead of April 30, 2023, deadline. The development was first reported by the Associated Press. OpenAI’s CEO, Sam Altman, tweeted, “we’re excited ChatGPT is available […]
Read More
New Atomic macOS Malware Steals Keychain Passwords and Crypto Wallets
28 April 2023Apr 28, 2023Ravie LakshmananEndpoint Security / Cryptocurrency Threat actors are advertising a new information stealer for the Apple macOS operating system called Atomic macOS Stealer (or AMOS) on Telegram for $1,000 per month, joining the likes of MacStealer. “The Atomic macOS Stealer can steal various types of information from the victim’s machine, including Keychain passwords, […]
Read More
Why Your Detection-First Security Approach Isn’t Working
28 April 2023Stopping new and evasive threats is one of the greatest challenges in cybersecurity. This is among the biggest reasons why attacks increased dramatically in the past year yet again, despite the estimated $172 billion spent on global cybersecurity in 2022. Armed with cloud-based tools and backed by sophisticated affiliate networks, threat actors can develop new […]
Read More
Zyxel Firewall Devices Vulnerable to Remote Code Execution Attacks — Patch Now
28 April 2023Apr 28, 2023Ravie LakshmananNetwork Security / Vulnerability Networking equipment maker Zyxel has released patches for a critical security flaw in its firewall devices that could be exploited to achieve remote code execution on affected systems. The issue, tracked as CVE-2023-28771, is rated 9.8 on the CVSS scoring system. Researchers from TRAPA Security have been credited […]
Read More
ViperSoftX InfoStealer Adopts Sophisticated Techniques to Avoid Detection
28 April 2023Apr 28, 2023Ravie LakshmananData Security / Malware A significant number of victims in the consumer and enterprise sectors located across Australia, Japan, the U.S., and India have been affected by an evasive information-stealing malware called ViperSoftX. ViperSoftX was first documented in 2020, with cybersecurity company Avast detailing a campaign in November 2022 that leveraged the […]
Read More
Attention Online Shoppers: Don’t Be Fooled by Their Sleek, Modern Looks — It’s Magecart!
28 April 2023Apr 28, 2023Ravie LakshmananOnline Security / Website Hacking An ongoing Magecart campaign has attracted the attention of cybersecurity researchers for leveraging realistic-looking fake payment screens to capture sensitive data entered by unsuspecting users. “The threat actor used original logos from the compromised store and customized a web element known as a modal to perfectly hijack […]
Read More
Tonto Team Uses Anti-Malware File to Launch Attacks on South Korean Institutions
28 April 2023Apr 28, 2023Ravie LakshmananMalware / Cyber Threat South Korean education, construction, diplomatic, and political institutions are at the receiving end of new attacks perpetrated by a China-aligned threat actor known as the Tonto Team. “Recent cases have revealed that the group is using a file related to anti-malware products to ultimately execute their malicious attacks,” […]
Read More
Google Gets Court Order to Take Down CryptBot That Infected Over 670,000 Computers
27 April 2023Apr 27, 2023Ravie LakshmananBotnet / Cyber Crime Google on Wednesday said it obtained a temporary court order in the U.S. to disrupt the distribution of a Windows-based information-stealing malware called CryptBot and “decelerate” its growth. The tech giant’s Mike Trinh and Pierre-Marc Bureau said the efforts are part of steps it takes to “not only […]
Read More
Paperbug Attack: New Politically-Motivated Surveillance Campaign in Tajikistan
27 April 2023A little-known Russian-speaking cyber-espionage group has been linked to a new politically-motivated surveillance campaign targeting high-ranking government officials, telecom services, and public service infrastructures in Tajikistan. The intrusion set, dubbed Paperbug by Swiss cybersecurity company PRODAFT, has been attributed to a threat actor known as Nomadic Octopus (aka DustSquad). “The types of compromised machines range […]
Read More