LabHost has emerged as a pivotal tool for cybercriminals in their assaults on North American banks, particularly targeting financial institutions in Canada. This Phishing-as-a-Service (PHaaS) provides malefactors with an array of tools for orchestrating...
Cybersecurity firm HiddenLayer has uncovered a vulnerability in the Safetensors conversion service by Hugging Face, which permits an attacker to intercept AI models uploaded by users, thereby compromising the supply chain. According to HiddenLayer’s...
Cybercriminal groups Black Basta and Bl00dy have joined the mass attacks on vulnerable ScreenConnect servers, targeting all users who have not yet updated their systems. A fix for the critical authentication bypass vulnerability (CVE-2024-1709)...
A new advanced Remote Access Tool (RAT) named Xeno RAT has been published on GitHub. This Trojan, crafted in the C# programming language and compatible with Windows 10 and Windows 11 operating systems, offers...
In the expansive phishing operation dubbed “SubdoMailing,” uncovered by experts from Guardio Labs, over 8,000 subdomains of renowned brands and institutions were compromised by malefactors, including entities such as eBay, VMware, McAfee, The Economist,...
Cybercriminals are exploiting an obsolete content management system (CMS) editor, discontinued 14 years ago, to manipulate search results and direct users to malicious or fraudulent websites. The primary strategy of these malefactors involves the...
According to a report by Morphisec, Ukrainian organizations based in Finland have been targeted by a malicious campaign distributing the Remcos Remote Access Trojan (RAT). The attack has been attributed to the group UAC-0184....
Over the past year, cybercriminals have increasingly harnessed generative artificial intelligence (GenAI), notably ChatGPT and Gemini, to refine their attacks, positioning GenAI as a principal threat in the realm of cybersecurity. Experts emphasize that...
The Chinese hacking group Earth Lusca has once again garnered attention through a recent report by Trend Micro specialists, who have unveiled the latest tactics employed by these malefactors, as well as their interests...
The United States National Institute of Standards and Technology (NIST) has issued an updated edition of its seminal cybersecurity document, the Cybersecurity Framework (CSF), now reaching version 2.0. This constitutes the first significant update...
Recently, a group of hackers from China, known as the “8220 Gang,” has significantly intensified their assaults on cloud infrastructure, targeting both Linux and Windows users with the aim of illicit cryptocurrency mining. The...
In a recent report by Trend Micro, it was revealed that the Chinese cyber espionage group Mustang Panda has intensified its operations across Asia, employing a modified variant of the PlugX malware named DOPLUGS....
In response to the escalating threat of cyberattacks on critical infrastructure, the United States agencies CISA, the FBI, and the Environmental Protection Agency (EPA) have issued guidelines to enhance the cybersecurity of Water and...
Analysts warn that hackers have increasingly exploited the Google Cloud Run service for the widespread distribution of banking trojans such as Astaroth, Mekotio, and Ousaban. Google Cloud Run enables users to deploy front-end and...
Cybersecurity specialists at Sysdig have unveiled a new malicious entity dubbed SSH-Snake, designed to stealthily search for private keys and navigate through a victim’s infrastructure, rendering it significantly more perilous than conventional viruses that...
Experts from Cado Security have uncovered a new malicious campaign targeting Redis servers. Once initial access to the systems is secured, the attackers mine cryptocurrency on the compromised Linux-operated hosts. According to Matt Muir,...
