In July of this year, Trend Micro uncovered a cyberattack on Taiwanese government structures, allegedly linked to the Chinese group Earth Baxia. The attackers exploited a recently discovered vulnerability in GeoServer (CVE-2024-36401, CVSS: 9.8),...
In the realm of cybersecurity, threats are constantly evolving, with malicious actors devising new methods to target users. One of the latest threats is a variant of AsyncRAT, which is actively spreading under the...
Researchers from Unit 42 have uncovered a new malicious campaign orchestrated by the North Korean group Gleaming Pisces, targeting Linux and macOS systems through infected Python packages. The attackers are distributing compromised packages via...
During an ethical hacking competition in China held late last year, participants were allowed to operate within a real network rather than a virtual platform, raising serious concerns among researchers. The unusual conditions and...
Europol, in collaboration with law enforcement agencies across Europe and Latin America, conducted a successful operation to dismantle an international criminal network. This group specialized in illegally unlocking stolen or lost mobile phones using...
Cybersecurity experts are increasingly gathering information about suspected criminals from unexpected sources—vast troves of compromised credentials, browser profiles, and other system data available on Telegram. The perpetrators themselves are being ensnared, as their devices...
The Iranian hacker group UNC1860, allegedly linked to the Iranian Ministry of Intelligence and Security (MOIS), continues to carry out cyberattacks on government and telecommunications networks across the Middle East. According to Mandiant, the...
The United States Federal Trade Commission (FTC) has released a new report examining the data collection and usage practices of major social networks and video platforms. According to the report, companies engage in extensive...
The cybercriminal group TeamTNT has resurfaced, launching a new cryptojacking campaign targeting servers running the CentOS operating system. According to Group-IB, the attackers are employing brute-force SSH attacks to infiltrate virtual servers. Once access...
Criminal groups across Europe are increasingly exploiting QR code fraud (known as quishing) to deceive tourists. Researchers at Netcraft have reported that two major gangs of cybercriminals are deploying QR code schemes for parking...
CISA and the FBI have urged technology companies to reassess their software development processes to prevent the inclusion of XSS vulnerabilities in future releases. Cross-site scripting vulnerabilities continue to pose a challenge for many...
During a large-scale operation codenamed “Final Exchange,” German law enforcement authorities shut down 47 illegal cryptocurrency exchanges. These platforms offered digital asset exchange services without adhering to mandatory customer identification procedures, creating ideal conditions...
