Three malicious packages, uploaded to the npm repository in September 2024, contained the well-known BeaverTail malware—a JavaScript loader and data theft tool linked to a North Korean campaign named “Contagious Interview.” The Datadog Security...
Over three dozen vulnerabilities have been identified across various open-source artificial intelligence and machine learning models, some of which enable attackers to execute remote code and steal data. Through the Protect AI bounty platform...
Cybersecurity researchers at SonicWall have released an in-depth analysis of a critical remote code execution (RCE) vulnerability in VMware vCenter Server. The vulnerability, identified as CVE-2024-38812, is linked to a heap overflow flaw within...
Cisco has introduced new security features for its ASA and Firepower Threat Defense (FTD) devices, aimed at defending against brute-force and password spraying attacks. Password spraying attacks involve attempting a single password across multiple...
Hackers are exploiting a vulnerability in SonicWall VPN to launch ransomware attacks using the Fog and Akira strains. Experts believe they are taking advantage of CVE-2024-40766—a critical flaw in the SSL VPN access control...
The Italian police are investigating a case of unauthorized access to government databases, which has led to the house arrest of four individuals and inquiries involving dozens of others, including Leonardo Maria Del Vecchio,...
The TeamTNT group is preparing for a major new campaign targeting cloud environments to mine cryptocurrencies and rent compromised servers to third parties. Experts at AquaSec have observed the group’s activity, which exploits vulnerable...
The hacker group RansomHub has claimed responsibility for a cyberattack on the operator of 13 airports in Mexico. Grupo Aeroportuario del Centro Norte (OMA), which oversees airports in the central and northern regions of...
The FBI and CISA have reported that Chinese hackers breached the systems of American commercial telecommunications companies. The agencies notified the affected organizations of the security breach, offered technical assistance, and alerted other potential...
The Dutch National Police announced that they have gained full access to all servers used to distribute Redline and Meta malware—two of the most widely utilized cybercriminal tools on the web. Infostealers pose a...
Researchers at Halcyon have uncovered a new variant of the Qilin ransomware, designated as Qilin.B, which employs enhanced techniques to evade security defenses. This version utilizes AES-256-CTR encryption on AESNI-compatible systems, while preserving ChaCha20...
Researchers from ESET have uncovered new malware crafted by the Embargo group for deploying its namesake ransomware. Written in Rust, Embargo’s tools enable the creation of versatile cross-platform attack mechanisms targeting both Windows and...
