North Korean APT43 Group Uses Cybercrime to Fund Espionage Operations
A new North Korean nation-state cyber operator has been attributed to a series of campaigns orchestrated to gather strategic intelligence...
Daily Vulnerability Trends: Wed Mar 29 2023
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2023-20963In WorkSource, there is a possible parcel mismatch. This could lead to...
Karakurt Ransomware Victim: MICROFINANCE INSTITUTION
KARAKURT RANSOMWARE NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
Latitude Financial data breach now impacts 14 million customers
Australian loan giant Latitude Financial Services (Latitude) is warning customers that its data breach is much more significant than initially...
WiFi protocol flaw allows attackers to hijack network traffic
Cybersecurity researchers have discovered a fundamental security flaw in the design of the IEEE 802.11 WiFi protocol standard, allowing attackers to...
The End-User Password Mistakes Putting Your Organization at Risk
Businesses rely on their end-users, but those same users often don't follow the best security practices. Without the right password...
Newly exposed APT43 hacking group targeting US orgs since 2018
A new North Korean hacking group has been revealed to be targeting government organizations, academics, and think tanks in the...
Crown Resorts confirms ransom demand after GoAnywhere breach
Crown Resorts, Australia's largest gambling and entertainment company, has confirmed that it suffered a data breach after its GoAnywhere secure...
Trojanized Tor browsers target Russians with crypto-stealing malware
A surge of trojanized Tor Browser installers targets Russians and Eastern Europeans with clipboard-hijacking malware that steals infected users' cryptocurrency...
RansomHouse Ransomware Victim: AV Industries
RansomHouse Logo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
US-CERT Vulnerability Summary for the Week of March 20, 2023
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and...
Where SSO Falls Short in Protecting SaaS
Single sign-on (SSO) is an authentication method that allows users to authenticate their identity for multiple applications with just one...
Microsoft Introduces GPT-4 AI-Powered Security Copilot Tool to Empower Defenders
Microsoft on Tuesday unveiled Security Copilot in preview, marking its continued push to embed AI-oriented features in an attempt to...
HackerOne Bug Bounty Disclosure: path-traversal-in-a-tomcat-serverbytosun
Programme HackerOne LINE LINE Submitted by tosun tosun Report Path traversal in a Tomcat server Full Report A considerable...
HackerOne Bug Bounty Disclosure: stored-xss-via-filename-on-https://partners-line-me/byrioncool22
Programme HackerOne LINE LINE Submitted by rioncool22 rioncool22 Report Stored XSS Via Filename On https://partners.line.me/ Full Report A considerable...
HackerOne Bug Bounty Disclosure: debugging-panel-exposurebytosun
Programme HackerOne LINE LINE Submitted by tosun tosun Report Debugging panel exposure Full Report A considerable amount of time...
HackerOne Bug Bounty Disclosure: speedtest-8×8-com:-enabled-directory-listingbyshriyanss
Programme HackerOne 8x8 8x8 Submitted by shriyanss shriyanss Report speedtest.8x8.com: Enabled Directory Listing Full Report A considerable amount of...
Where SSO Falls Short in Protecting SaaS
Single sign-on (SSO) is an authentication method that allows users to authenticate their identity for multiple applications with just one...
Pakistan-Origin SideCopy Linked to New Cyberattack on India’s Ministry of Defence
An advanced persistent threat (APT) group that has a track record of targeting India and Afghanistan has been linked to...
IcedID Malware Shifts Focus from Banking Fraud to Ransomware Delivery
Multiple threat actors have been observed using two new variants of the IcedID malware in the wild with more limited...
Breaking the Mold: Pen Testing Solutions That Challenge the Status Quo
Malicious actors are constantly adapting their tactics, techniques, and procedures (TTPs) to adapt to political, technological, and regulatory changes quickly....
Where SSO Falls Short in Protecting SaaS
Single sign-on (SSO) is an authentication method that allows users to authenticate their identity for multiple applications with just one...
Stealthy DBatLoader Malware Loader Spreading Remcos RAT and Formbook in Europe
A new phishing campaign has set its sights on European entities to distribute Remcos RAT and Formbook via a malware...
President Biden Signs Executive Order Restricting Use of Commercial Spyware
U.S. President Joe Biden on Monday signed an executive order that restricts the use of commercial spyware by federal government...
