Security

Pwn2Own Automotive 2025 Day 1: $382,750 in Bounties, 16 Vulnerabilities Exposed

• Vulnerabilities

Pwn2Own Automotive 2025 Day 1: $382,750 in Bounties, 16 Vulnerabilities Exposed

Phan Kenny January 24, 2025

On the opening day of the Pwn2Own Automotive 2025 competition, held in Tokyo from January 22 to...

Read More Read more about Pwn2Own Automotive 2025 Day 1: $382,750 in Bounties, 16 Vulnerabilities Exposed

DrugHub Exposed: Critical Vulnerabilities Threaten Darknet Marketplace

• Vulnerabilities

DrugHub Exposed: Critical Vulnerabilities Threaten Darknet Marketplace

Phan Kenny January 24, 2025

One of the most prominent darknet marketplaces, DrugHub, has been found to have critical vulnerabilities that could...

Read More Read more about DrugHub Exposed: Critical Vulnerabilities Threaten Darknet Marketplace

Murdoc Botnet: New Mirai Variant Exploits AVTECH and Huawei Devices

• Malware
• Vulnerabilities

Murdoc Botnet: New Mirai Variant Exploits AVTECH and Huawei Devices

Phan Kenny January 24, 2025

Qualys has identified a new active campaign of the Mirai botnet, dubbed the Murdoc Botnet. The investigation...

Read More Read more about Murdoc Botnet: New Mirai Variant Exploits AVTECH and Huawei Devices

STAC5143 and STAC5777 Target Organizations via Teams

• Cyber Attack

STAC5143 and STAC5777 Target Organizations via Teams

Phan Kenny January 24, 2025

Sophos has identified two campaigns conducted by the groups STAC5143 and STAC5777, leveraging Microsoft Teams to infiltrate...

Read More Read more about STAC5143 and STAC5777 Target Organizations via Teams

Blogspot Abused: Cybercriminals Spread Malicious Links

• Cyber Attack

Blogspot Abused: Cybercriminals Spread Malicious Links

Phan Kenny January 24, 2025

Cybercriminals have re-emerged, exploiting the Blogspot platform to disseminate malicious links. These links, disguised as contextually relevant...

Read More Read more about Blogspot Abused: Cybercriminals Spread Malicious Links

AI & Social Engineering Fuel Record-Breaking Payment Fraud in 2024

• Cyber Attack

AI & Social Engineering Fuel Record-Breaking Payment Fraud in 2024

Phan Kenny January 24, 2025

According to the Payment Fraud Intelligence report, financial fraud underwent significant evolution in 2024. New tactics rooted...

Read More Read more about AI & Social Engineering Fuel Record-Breaking Payment Fraud in 2024

InvisibleFerret: New Malware Steals Source Code and Cryptocurrency

• Malware

InvisibleFerret: New Malware Steals Source Code and Cryptocurrency

Phan Kenny January 24, 2025

In October and November, there was a surge in activity from North Korean hackers employing an unconventional...

Read More Read more about InvisibleFerret: New Malware Steals Source Code and Cryptocurrency

Manifest V3 Fails: Malicious Chrome Extensions Remain a Threat

• Malware

Manifest V3 Fails: Malicious Chrome Extensions Remain a Threat

Phan Kenny January 24, 2025

Security researcher Wladimir Palant has uncovered numerous malicious extensions in the Chrome Web Store that bypass Google’s...

Read More Read more about Manifest V3 Fails: Malicious Chrome Extensions Remain a Threat

Banking Trojan QBot Linked to BlackBasta Ransomware Campaign

• Malware

Banking Trojan QBot Linked to BlackBasta Ransomware Campaign

Phan Kenny January 24, 2025

The QBot trojan (also known as Qakbot or Pinkslipbot) once again draws the attention of cybersecurity experts....

Read More Read more about Banking Trojan QBot Linked to BlackBasta Ransomware Campaign

OceanLotus Exposed: Zero-Day Exploits and Cross-Platform Trojans Uncovered

• Cyber Attack

OceanLotus Exposed: Zero-Day Exploits and Cross-Platform Trojans Uncovered

Phan Kenny January 24, 2025

The OceanLotus group has once again drawn the attention of cybersecurity experts at QiAnXin. After a hiatus...

Read More Read more about OceanLotus Exposed: Zero-Day Exploits and Cross-Platform Trojans Uncovered

CNCERT Exposes US Cyberattack on Chinese Research Institute

• Cyber Attack

CNCERT Exposes US Cyberattack on Chinese Research Institute

Phan Kenny January 24, 2025

The National Computer Emergency Response Team of China (CNCERT) has released a detailed report on a cyberattack...

Read More Read more about CNCERT Exposes US Cyberattack on Chinese Research Institute

Security Breach in Intel TDX: Virtual Machine Isolation Under Threat

• Vulnerabilities

Security Breach in Intel TDX: Virtual Machine Isolation Under Threat

Phan Kenny January 24, 2025

Researchers from the Indian Institute of Technology in Kharagpur, in collaboration with a representative from Intel, have...

Read More Read more about Security Breach in Intel TDX: Virtual Machine Isolation Under Threat