An obscure hacking collective, christened SPIKEDWINE, has launched attacks against diplomats across several European nations where Indian diplomatic missions are operational. To achieve their nefarious objectives, the culprits have deployed a novel malicious backdoor...
A new Linux version of the Bifrost remote access trojan has emerged, employing a suite of novel camouflage techniques. Among its primary tools is a deceptive domain, mimicking the legitimate VMware. First identified two...
Information has surfaced online that internet-connected 3D printers by Anycubic have been hacked to alert users to a critical vulnerability within the devices. The hacker added a file named “hacked_machine_readme.gcode,” which typically contains instructions...
North Korean hackers from the Lazarus group exploited a vulnerability in the Windows AppLocker driver to gain kernel-level access and disable security measures, avoiding detection. Avast analysts identified and reported the hackers’ activities to...
Last week, a cyberattack on a UnitedHealth Group division disrupted medication distribution and insurance processes in pharmacies across the United States, causing significant challenges for healthcare workers. Experts warn that the incident could lead...
In Australia, the threat of espionage and foreign interference has escalated to unprecedented levels, warns Mike Burgess, the Director-General of the Australian Security Intelligence Organisation (ASIO). He expressed his concern that an increasing number...
According to the latest insights from analysts at Mandiant, the Middle East has become the focal point of an ongoing cyber espionage operation utilizing distinctive malware targeting the aerospace, aviation, and defense industries. The...
The North Korea-supported hacker group Lazarus has uploaded four malicious packages to the Python Package Index (PyPI) repository, aiming to infect developers’ systems with malevolent software. The implicated packages—“pycryptoenv,” “pycryptoconf,” “quasarlib,” and “swapmempool”—have been...
Since the outset of November 2023, Cisco Talos has reported that Mexican users have been targeted by a sophisticated phishing campaign distributing a novel Windows malware dubbed TimbreStealer. This phishing initiative employs tax-themed decoy...
U.S. federal agencies, along with their international counterparts, have issued an advisory urging users to be vigilant of the risks associated with using Ubiquiti EdgeRouter devices. This warning follows the dismantling of the MooBot...
Specialists at Bitdefender have discovered a new variant of the malicious software AMOS Stealer (or Atomic Stealer), one of the most prevalent cyber threats for macOS users over the past year. According to Bitdefender...
A hacking collective known as Mogilevich has announced the breach of the servers of Epic Games, famed for developing popular games such as Fortnite, Unreal Tournament, and Gears of War, as well as for...
Extortionists demanded a ransom of $3.4 million following a cyberattack on a children’s hospital in Chicago, which resulted in the shutdown of specialized equipment designed to assist patients. The attack on Lurie Children’s Hospital...
LabHost has emerged as a pivotal tool for cybercriminals in their assaults on North American banks, particularly targeting financial institutions in Canada. This Phishing-as-a-Service (PHaaS) provides malefactors with an array of tools for orchestrating...
Cybersecurity firm HiddenLayer has uncovered a vulnerability in the Safetensors conversion service by Hugging Face, which permits an attacker to intercept AI models uploaded by users, thereby compromising the supply chain. According to HiddenLayer’s...
Cybercriminal groups Black Basta and Bl00dy have joined the mass attacks on vulnerable ScreenConnect servers, targeting all users who have not yet updated their systems. A fix for the critical authentication bypass vulnerability (CVE-2024-1709)...
