Cybersecurity researchers have uncovered a new digital infrastructure linked to the financially motivated cybercriminal group known as FIN7. This discovery emerged from a collaborative investigation conducted by Team Cymru, Silent Push, and Stark Industries...
In July 2024, cybersecurity experts uncovered a new vulnerability in the MIFARE Classic contactless card technology, which is widely used in transportation systems, access control, and other critical areas. This technology has long attracted...
Google has joined Microsoft in disclosing information about Iran’s cyber activities following a recent wave of attacks that led to a data breach from Donald Trump’s campaign headquarters. Google’s Threat Analysis Group (TAG) confirmed...
Recently, FortiGuard Labs uncovered a new ValleyRAT malware campaign targeting Chinese-speaking users. Historically, this malware has primarily targeted businesses in the e-commerce, finance, sales, and management sectors. ValleyRAT is a multi-stage malware that employs...
The RansomHub group has begun deploying new malicious software designed to disable EDR solutions on devices, circumvent security mechanisms, and gain full control over the system. The tool, named EDRKillShifter, was uncovered by Sophos...
iVerify has identified a vulnerability in the Showcase.apk application, which has been pre-installed on millions of Pixel devices worldwide since September 2017. The application’s excessive system privileges enable the possibility of remote code execution...
In July, a new ransomware group known as Mad Liberator emerged in cyberspace, utilizing the Anydesk application and social engineering techniques to infiltrate company systems, steal data, and demand ransom. Sophos experts uncovered the...
The White House is developing a new cyber insurance policy aimed at protecting against catastrophic cyber incidents. The new policy is expected to be unveiled by the end of the year, as announced by...
macOS devices are increasingly becoming targets for cybercriminals. Intel 471, a company specializing in cyber intelligence, has identified over 40 hacker groups showing a keen interest in malware and exploits for Apple’s platform. Since...
Experts at Aqua Security have discovered a new variant of the Gafgyt botnet, which is actively targeting servers with weak SSH passwords operating in cloud environments. The malware exploits the computational power of the...
Palo Alto Networks has discovered vulnerabilities within the CI/CD processes of several prominent open-source projects, including those developed by Google, Microsoft, AWS, and Red Hat. The issue pertains to the leakage of GitHub tokens,...
Microsoft has alerted users to a critical TCP/IP vulnerability that enables remote code execution (RCE) on all Windows systems with the IPv6 protocol enabled by default. The vulnerability, identified as CVE-2024-38063 (CVSS score: 9.8),...
