Hackers are employing malware disguised as the Palo Alto GlobalProtect tool, which can steal data and execute remote PowerShell commands to further infiltrate internal networks. Organizations in the Middle East have fallen victim to...
The city of Columbus, Ohio, has filed a lawsuit against cybersecurity researcher David Leroy Ross, known as Connor Goodwolf. He is accused of illegally downloading and distributing data stolen from the city’s IT network...
Intrinsec has unveiled a report on the burgeoning market for the use of Extended Validation (EV) certificates in cybercriminal schemes. The report delves into the methods employed by malicious actors to obtain and exploit...
Akamai has detected a new wave of attacks targeting outdated surveillance cameras produced by the Taiwanese manufacturer AVTECH. Cybercriminals are exploiting a critical vulnerability in the AVM1203 model to disseminate malware from the Mirai...
Microsoft has addressed critical vulnerabilities in its AI assistant Copilot that allowed attackers to steal emails and other personal user information. This was reported by security researcher Johann Rehberger, who previously discovered and disclosed...
Securonix has uncovered a major espionage operation named “Slow#Tempest,” targeting individuals and organizations in China. The hackers aimed to gain prolonged access to systems for espionage and potential sabotage, with the capability to launch...
Chainalysis has unveiled the vast scale of cryptocurrency operations on the Huione Guarantee platform, which is allegedly closely linked to cybercrime and the Cambodian government. According to the report, over $49 billion in cryptocurrency...
The GuidePoint Research and Intelligence Team (GRIT) has observed the activities of a highly sophisticated hacking group, possessing advanced skills in social engineering and network infiltration, including proficiency in communicating in English at a...
Cybersecurity experts from the QiAnXin Cyber Intelligence Center have reported the discovery of a new threat posed by the APT-Q-12 group, also known as “Pseudo Hunter.” This cyber-espionage group, rooted in Northeast Asia, targets...
A study by Cracked Labs has revealed that cybersecurity and compliance software often perceive employees as threats, leading to the normalization of workplace surveillance. The report, “Employees as Risk,” examines SIEM and UEBA systems...
Recently, a critical security vulnerability (CVE-2024-38063) was discovered in Windows 10/11 and Windows Server systems, located within the IPv6 network stack. Exploiting this vulnerability, an attacker can trigger remote code execution merely by sending...
A critical security vulnerability in Kingsoft’s WPS Office, which has already been weaponized by hacker groups. The official statement from WPS claimed that only the international version of WPS 2023 was affected, while other...
Android / Apple / Technology
Android-iOS Messaging Gets Security Boost with RCS E2EE
September 20, 2024
