Author: shortenage
Zero-Day Alert: Google Issues Patch for New Chrome Vulnerability – Update Now!
6 June 2023Jun 06, 2023Ravie LakshmananBrowser Security / Vulnerability Google on Monday released security updates to patch a high-severity flaw in its Chrome web browser that it said is being actively exploited in the wild. Tracked as CVE-2023-3079, the vulnerability has been described as a type confusion bug in the V8 JavaScript engine. Clement Lecigne of Google’s […]
Read More
Cyclops Ransomware Gang Offers Go-Based Info Stealer to Cybercriminals
6 June 2023Jun 06, 2023Ravie LakshmananEndpoint Security / Data Security Threat actors associated with the Cyclops ransomware have been observed offering an information stealer malware that’s designed to capture sensitive data from infected hosts. “The threat actor behind this [ransomware-as-a-service] promotes its offering on forums,” Uptycs said in a new report. “There it requests a share of […]
Read More
Chinese PostalFurious Gang Strikes UAE Users with Sneaky SMS Phishing Scheme
6 June 2023Jun 06, 2023Ravie Lakshmanan A Chinese-speaking phishing gang dubbed PostalFurious has been linked to a new SMS campaign that’s targeting users in the U.A.E. by masquerading as postal services and toll operators, per Group-IB. The fraudulent scheme entails sending users bogus text messages asking them to pay a vehicle trip fee to avoid additional fines. […]
Read More
Zyxel Firewalls Under Attack! Urgent Patching Required
6 June 2023Jun 06, 2023Ravie LakshmananNetwork Security / Vulnerability The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday placed two recently disclosed flaws in Zyxel firewalls to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation. The vulnerabilities, tracked as CVE-2023-33009 and CVE-2023-33010, are buffer overflow vulnerabilities that could enable an unauthenticated attacker […]
Read More
Microsoft: Peretas Lace Tempest Di Balik Eksploitasi Aktif Aplikasi Transfer MOVEit
5 June 2023Jun 05, 2023Ravie LakshmananNol Hari / Cyber Serang Microsoft memiliki secara resmi terkait the sedang berlangsung aktif eksploitasi dari a kritis cacat dalam the Kemajuan Perangkat lunak MOVEit Transfer aplikasi untuk a ancaman aktor ini trek sebagai Renda Tempest. “Eksploitasi adalah sering diikuti oleh penyebaran dari a web shell dengan data eksfiltrasi kemampuan,” the Microsoft […]
Read More
The Annual Report: 2024 Plans and Priorities for SaaS Security
5 June 2023Jun 05, 2023The Hacker NewsSaaS Security / Cyber Threat Over 55% of security executives report that they have experienced a SaaS security incident in the past two years — ranging from data leaks and data breaches to SaaS ransomware and malicious apps (as seen in figures 1 and 2). Figure 1. How many organizations have […]
Read More
Magento, WooCommerce, WordPress, and Shopify Exploited in Web Skimmer Attack
5 June 2023Jun 05, 2023Ravie LakshmananWebsite Security / Magecart Cybersecurity researchers have unearthed a new ongoing Magecart-style web skimmer campaign that’s designed to steal personally identifiable information (PII) and credit card data from e-commerce websites. A noteworthy aspect that sets it apart from other Magecart campaigns is that the hijacked sites further serve as “makeshift” command-and-control (C2) […]
Read More
Brazilian Cybercriminals Using LOLBaS and CMD Scripts to Drain Bank Accounts
5 June 2023Jun 05, 2023Ravie LakshmananBanking Security / Malware An unknown cybercrime threat actor has been observed targeting Spanish- and Portuguese-speaking victims to compromise online banking accounts in Mexico, Peru, and Portugal. “This threat actor employs tactics such as LOLBaS (living-off-the-land binaries and scripts), along with CMD-based scripts to carry out its malicious activities,” the BlackBerry Research […]
Read More
GoldenJackal: New Threat Group Targeting Middle Eastern and South Asian Governments
23 May 2023May 23, 2023Ravie LakshmananCyber Threat / APT Government and diplomatic entities in the Middle East and South Asia are the target of a new advanced persistent threat actor named GoldenJackal. Russian cybersecurity firm Kaspersky, which has been keeping tabs on the group’s activities since mid-2020, characterized the adversary as both capable and stealthy. The targeting […]
Read More
North Korean Kimsuky Hackers Strike Again with Advanced Reconnaissance Malware
23 May 2023May 23, 2023Ravie LakshmananCyber Threat / Malware The North Korean advanced persistent threat (APT) group known as Kimsuky has been observed using a piece of custom malware called RandomQuery as part of a reconnaissance and information exfiltration operation. “Lately, Kimsuky has been consistently distributing custom malware as part of reconnaissance campaigns to enable subsequent attacks,” […]
Read More