A new SharkBot variant bypassed Google Play checks again
Experts spotted an upgraded version of the SharkBot malware that was uploaded to the official Google Play Store. Fox IT...
News
A new phishing scam targets American Express cardholders
Cybersecurity firm Armorblox discovered a new phishing campaign aimed at American Express customers. Armorblox researchers uncovered a new phishing campaign that is targeting American...
Anonymous hacked Yandex taxi causing a massive traffic jam in Moscow
The popular collective Anonymous and the IT Army of Ukraine hacked the Yandex Taxi app causing a massive traffic jam...
IRS mistakenly published confidential info for roughly 120K taxpayers
The Internal Revenue Service (IRS) mistakenly leaked confidential information for approximately 120,000 taxpayers. Bad news for approximately 120,000 taxpayers who...
Alleged Iranian threat actors leak the code of their CodeRAT malware
The author of the remote access trojan (RAT) CodeRAT has leaked the source code of its malware on GitHub. The...
Security Affairs newsletter Round 382
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for...
Google rolled out emergency fixes to address actively exploited Chrome zero-day
Google rolled out emergency fixes to address a vulnerability in the Chrome web browser that is being actively exploited in...
Samsung discloses a second data breach this year
Electronics giant Samsung has confirmed a new data breach after some of its US systems were compromised in July. After...
Buzzing in the Background: BumbleBee, a New Modular Backdoor Evolved From BookWorm
In March 2021, we investigated a backdoor with a unique modular architecture and called it BumbleBee due to a string...
The Prynt Stealer malware contains a secret backdoor. Crooks steal data from other cybercriminals
The information-stealing malware Prynt Stealer contains a backdoor that allows stealing the data it has infiltrated from victims. Zscaler researchers...
Another Ransomware For Linux Likely In Development
Uptycs researchers recently spotted a new Linux ransomware that appears to be under active development. The Uptycs Threat Research team...
Experts link Raspberry Robin Malware to Evil Corp cybercrime gang
Researchers attribute the Raspberry Robin malware to the Russian cybercrime group known as Evil Corp group. IBM Security X-Force researchers...
Google Chrome issue allows overwriting the clipboard content
A security issue in the Google Chrome browser could allow malicious web pages to automatically overwrite clipboard content. A vulnerability...
Attack infrastructure used in Cisco hack linked to Evil Corp affiliate
Researchers discovered that the infrastructure used in Cisco hack was the same used to target a Workforce Management Solution firm....
Researchers analyzed a new JavaScript skimmer used by Magecart threat actors
Researchers from Cyble analyzed a new, highly evasive JavaScript skimmer used by Magecart threat actors. Cyble Research & Intelligence Labs...
Metaverse Broadband Infrastructure Security
The metaverse is coming—but what does that mean for network infrastructure? We explore expected changes, network challenges, and tips for...
Ragnar Locker ransomware gang claims to have stolen data from TAP Air Portugal
The Ragnar Locker ransomware gang claims to have hacked the Portuguese state-owned flag carrier airline TAP Air Portugal and stolen...
1,859 Android and iOS apps were containing hard-coded Amazon AWS credentials
Researchers discovered 1,859 Android and iOS apps containing hard-coded Amazon Web Services (AWS) credentials. Researchers from Broadcom Symantec’s Threat Hunter...
FBI is helping Montenegro in investigating the ongoing cyberattack
A team of cybersecurity experts from the US FBI will help the authorities in Montenegro to investigate the recent massive...
Apple released patches for recently disclosed WebKit zero-day in older iPhones and iPads
Apple released new security updates for older iPhone and iPad devices addressing recently fixed WebKit zero-day. Apple has released new updates...
A flaw in TikTok Android app could have allowed the hijacking of users’ accounts
Microsoft discovered a vulnerability in the TikTok app for Android that could lead to one-click account hijacking. Microsoft researchers discovered...
Tackling the Growing and Evolving Digital Attack Surface: 2022 Midyear Cybersecurity Report
This blog entry highlights the threats that dominated the first six months of the year, which we discussed in detail...
Threat actors breached the network of the Italian oil company ENI
Italian oil giant Eni was hit by a cyber attack, attackers compromised its computer networks, but the consequences appear to...
GO#WEBBFUSCATOR campaign hides malware in NASA’s James Webb Space Telescope image
A malware campaign tracked as GO#WEBBFUSCATOR used an image taken from NASA’s James Webb Space Telescope (JWST) as a lure....
