cybersecurity Archives

NPM Supply Chain Attack: Gluestack Packages Infected with RAT! npm

NPM Supply Chain Attack: Gluestack Packages Infected with RAT!

Do Son June 9, 2025

A large-scale supply chain attack has been identified on the NPM platform: threat actors compromised 17 widely...

Mirai Botnet Weaponizes TBK DVR Flaw (CVE-2024-3721) to Expand Its Army Data decryption routine

Mirai Botnet Weaponizes TBK DVR Flaw (CVE-2024-3721) to Expand Its Army

Do Son June 9, 2025

A newly modified strain of the Mirai botnet has weaponized the CVE-2024-3721 vulnerability found in TBK DVR-4104...

Qilin Ransomware Exploiting Critical Fortinet Flaws in New Attacks China Taiwan cyber conflict UAT-5918 CVE-2025-2783 Insight Partners

Qilin Ransomware Exploiting Critical Fortinet Flaws in New Attacks

Do Son June 9, 2025

Operators of the Qilin ransomware group—also known under the alias Phantom Mantis—have begun actively exploiting critical vulnerabilities...

PathWiper: New Destructive Malware Unleashed on Ukraine’s Critical Infrastructure Iran cyberattack Cyber operations Japan cyber defense

PathWiper: New Destructive Malware Unleashed on Ukraine’s Critical Infrastructure

Do Son June 9, 2025

A new wave of cyberattacks has been recorded in Ukraine, targeting the destruction of critical infrastructure. At...

Warning: Fake Crypto Wallet Apps on Google Play Are Stealing Private Keys! Malicious application impersonating SushiSwap wallet

Warning: Fake Crypto Wallet Apps on Google Play Are Stealing Private Keys!

Do Son June 9, 2025

Even if you download applications exclusively from Google Play, this does not always guarantee safety—particularly when it...

ClickFix: The Deceptive CAPTCHA Trap Stealing macOS Data An attack chain diagram for a typical sample in this campaign

ClickFix: The Deceptive CAPTCHA Trap Stealing macOS Data

Do Son June 9, 2025

At first glance, it appears to be nothing more than a routine security check. In reality, it...

Windows 10 End of Life: KDE Project Urges Users to Switch to Linux

Do Son June 6, 2025

The KDE Project, a prominent force in the world of Linux desktops, has launched a campaign titled...

New Vishing Campaign Targets Salesforce Users, Stealing Data Via Fake Data Loader Salesforce Security

New Vishing Campaign Targets Salesforce Users, Stealing Data Via Fake Data Loader

Do Son June 6, 2025

Hackers affiliated with the group UNC6040, tracked by Google’s Threat Intelligence Group, have been implicated in a...

China Accuses Taiwan of “Ludicrous & Inept” Cyber Campaign, Alleges US Backing Taiwan Cyberattacks China Taiwan cyberattack DeBackdoor Disney hack SAP Vulnerability Cellcom cyberattack

Taiwan Cyberattacks China Taiwan cyberattack DeBackdoor Disney hack SAP Vulnerability Cellcom cyberattack

China Accuses Taiwan of “Ludicrous & Inept” Cyber Campaign, Alleges US Backing

Do Son June 6, 2025

Chinese state authorities have issued an unexpectedly harsh accusation against Taiwan, alleging that for several years, the...

$10M Reward: Hunt for RedLine Malware Creator & State-Sponsored Hackers Intensifies Cybercrime, RedLine Malware

$10M Reward: Hunt for RedLine Malware Creator & State-Sponsored Hackers Intensifies

Do Son June 6, 2025

The U.S. Department of State has announced a reward of up to $10 million for information leading...

Kettering Health Hit by Interlock Ransomware: Patient Data Stolen & Services Disrupted Kettering Health Malaysia WhatsApp hack Ascom Hacked - Scattered Spider Everest hacker group 4chan Data Breach Commvault breach Mirai botnet Ivanti Vulnerability Cetus Protocol hack