RATDispenser, a new stealthy JavaScript loader used to distribute RATs
RATDispenser is a new stealthy JavaScript loader that is being used to spread multiple remote access trojans (RATs) into the...
News
North Korea-linked Zinc group posed as Samsung recruiters to target security firms
North Korea-linked threat actors posed as Samsung recruiters in a spear-phishing campaign aimed at employees at South Korean security firms....
0patch releases unofficial patches for CVE-2021-24084 Windows 10 zero-day
0patch released free unofficial patches for Windows local privilege escalation zero-day (CVE-2021-24084) in Windows 10, version 1809 and later. 0patch...
Security Affairs newsletter Round 342
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free...
Italy’s Antitrust Agency fines Apple and Google for aggressive practices of data acquisition
Italy’s antitrust regulator, Autorità Garante della Concorrenza e del Mercato (AGCM), has fined Apple and Google €10 million each their...
HAEICHI-II: Interpol arrested +1,000 suspects linked to various cybercrimes
HAEICHI-II: Interpol arrested 1,003 individuals charged for several cybercrimes, including romance scams, investment frauds, and online money laundering. Interpol has...
IKEA hit by a cyber attack that uses stolen internal reply-chain emails
Threat actors are targeting IKEA employees in an internal phishing campaign leveraging stolen reply-chain emails. According to BleepingComputer, threat actors...
IT threat evolution in Q3 2021. Mobile statistics
IT threat evolution Q3 2021 IT threat evolution in Q3 2021. PC statistics IT threat evolution in Q3 2021. Mobile...
IT threat evolution in Q3 2021. PC statistics
IT threat evolution Q3 2021 IT threat evolution in Q3 2021. PC statistics IT threat evolution in Q3 2021. Mobile...
IT threat evolution Q3 2021
IT threat evolution Q3 2021 IT threat evolution in Q3 2021. PC statistics IT threat evolution in Q3 2021. Mobile...
Marine services provider Swire Pacific Offshore (SPO) hit by Clop ransomware
Marine services provider Swire Pacific Offshore (SPO) has suffered a Clop ransomware attack that resulted in the theft of company...
ICO challenges adtech to step up privacy protection
The UK Information Commissioner’s Office (ICO) wants the advertising industry to come up with new initiatives that address the risks...
Threat actors target crypto and NFT communities with Babadeda crypter
Morphisec researchers spread cryptocurrency malware dubbed Babadeda in attacks aimed at crypto and NFT communities. Morphisec researchers spotted a new...
Exclusive: Resecurity discovered 0-day vulnerability in TP-Link Wi-Fi 6 devices
Resecurity researchers found a zero-day vulnerability in the TP-Link enterprise device with model number TL-XVR1800L. Resecurity, a Los Angeles-based cybersecurity...
APT C-23 group targets Middle East with an enhanced Android spyware variant
A threat actor, tracked as APT C-23, is using new powerful Android spyware in attacks aimed at targets in the...
New Linux CronRAT hides in cron jobs to evade detection in Magecart attacks
Security researchers discovered a new Linux RAT, tracked as CronRAT, that hides in scheduled cron jobs to avoid detection. Security...
Google’s Threat Horizons report: Will the straightforward approach get results?
Google’s Cybersecurity Action Team has released a Threat Horizons report focusing on cloud security. It’s taken some criticism for being...
Improving security for mobile devices: CISA issues guides
The Cybersecurity and Infrastructure Security Agency (CISA) has released two actionable Capacity Enhancement Guides (CEGs) to help users and organizations...
Several GoDaddy brands impacted in recent data breach
Recently disclosed data breach impacted several of its brands, including Domain Factory, Heart Internet, Host Europe, Media Temple, tsoHost and...
New law will issue bans, fines for using default passwords on smart devices
The idea of connecting your entire home to the internet was once a mind-blowing concept. Thanks to smart devices, that...
Iranian threat actors exploit MS MSHTML bug to steal Google and Instagram credentials
An Iranian threat actor is stealing Google and Instagram credentials of Farsi-speaking targets by exploiting a Microsoft MSHTML bug. Researchers...
Beware card skimmers this Black Friday
The UK’s top cybercops are urging owners of small online shops to “protect their customers and profits” by guarding against...
FBI warns of crooks targeting online shoppers during the holiday season
The Federal Bureau of Investigation (FBI) warns of cybercriminals targeting online shoppers during the holiday season. The FBI warns of...
VMware addresses File Read and SSRF flaws in vCenter Server
VMware addressed arbitrary file read and server-side request forgery (SSRF) vulnerabilities in its vCenter Server product. VMware this week addressed...
