A new advanced Remote Access Tool (RAT) named Xeno RAT has been published on GitHub. This Trojan, crafted in the C# programming language and compatible with Windows 10 and Windows 11 operating systems, offers...
In the expansive phishing operation dubbed “SubdoMailing,” uncovered by experts from Guardio Labs, over 8,000 subdomains of renowned brands and institutions were compromised by malefactors, including entities such as eBay, VMware, McAfee, The Economist,...
Cybercriminals are exploiting an obsolete content management system (CMS) editor, discontinued 14 years ago, to manipulate search results and direct users to malicious or fraudulent websites. The primary strategy of these malefactors involves the...
According to a report by Morphisec, Ukrainian organizations based in Finland have been targeted by a malicious campaign distributing the Remcos Remote Access Trojan (RAT). The attack has been attributed to the group UAC-0184....
Over the past year, cybercriminals have increasingly harnessed generative artificial intelligence (GenAI), notably ChatGPT and Gemini, to refine their attacks, positioning GenAI as a principal threat in the realm of cybersecurity. Experts emphasize that...
The Chinese hacking group Earth Lusca has once again garnered attention through a recent report by Trend Micro specialists, who have unveiled the latest tactics employed by these malefactors, as well as their interests...
The United States National Institute of Standards and Technology (NIST) has issued an updated edition of its seminal cybersecurity document, the Cybersecurity Framework (CSF), now reaching version 2.0. This constitutes the first significant update...
Recently, a group of hackers from China, known as the “8220 Gang,” has significantly intensified their assaults on cloud infrastructure, targeting both Linux and Windows users with the aim of illicit cryptocurrency mining. The...
In a recent report by Trend Micro, it was revealed that the Chinese cyber espionage group Mustang Panda has intensified its operations across Asia, employing a modified variant of the PlugX malware named DOPLUGS....
In response to the escalating threat of cyberattacks on critical infrastructure, the United States agencies CISA, the FBI, and the Environmental Protection Agency (EPA) have issued guidelines to enhance the cybersecurity of Water and...
Analysts warn that hackers have increasingly exploited the Google Cloud Run service for the widespread distribution of banking trojans such as Astaroth, Mekotio, and Ousaban. Google Cloud Run enables users to deploy front-end and...
Cybersecurity specialists at Sysdig have unveiled a new malicious entity dubbed SSH-Snake, designed to stealthily search for private keys and navigate through a victim’s infrastructure, rendering it significantly more perilous than conventional viruses that...
Experts from Cado Security have uncovered a new malicious campaign targeting Redis servers. Once initial access to the systems is secured, the attackers mine cryptocurrency on the compromised Linux-operated hosts. According to Matt Muir,...
In a recent investigation conducted by security specialists from ReversingLabs, two malicious packages were identified within the Python Package Index (PyPI) repository, utilizing the DLL Sideloading technique to circumvent antivirus detection and execute malicious...
PSI Software SE, a German developer of software for intricate manufacturing and logistics processes, confirmed it fell victim to a cyberattack involving ransomware, which compromised its internal infrastructure. Operating globally with a workforce exceeding...
In November of last year, researchers discovered the expansion of malicious activity by an Android trojan named Anatsa into Slovakia, Slovenia, and the Czech Republic. This expansion is part of a new campaign which,...
