The United States is offering a reward of up to $5 million for information that helps disrupt the employment scheme of North Korean hackers in remote IT positions within American companies. The U.S. State...
The Kinsing cryptojacking group continues to evolve, posing a persistent threat in the digital realm. AquaSec reports that since 2019, Kinsing has been orchestrating illicit cryptocurrency mining campaigns, swiftly integrating new vulnerabilities to expand...
The Positive Technologies Expert Security Center (PT Expert Security Center) reported the discovery of a previously unknown keylogger embedded in the main page of Microsoft Exchange Server, which collected account input data in a...
Cybersecurity researchers have unveiled new details about a remote access Trojan called Deuterbear RAT, used by the China-affiliated hacker group BlackTech in a cyber-espionage campaign targeting the Asia-Pacific region. BlackTech, active since at least...
The Norwegian National Cyber Security Centre (NCSC) strongly advises organizations to replace SSL VPN/WebVPN with more secure alternatives due to the frequent exploitation of vulnerabilities in network devices. This measure aims to protect corporate...
The Cybersecurity and Infrastructure Security Agency (CISA) has added two new vulnerabilities in D-Link routers to its Known Exploited Vulnerabilities (KEV) catalog based on evidence of their active exploitation. The CSRF vulnerability CVE-2014-100005 affects...
Security researchers from Proofpoint have discovered that a hacker group, presumably operating in the interest of China, is using a new version of the SugarGh0st RAT malware to steal information from artificial intelligence experts...
In March, North Korea laundered $147.5 million through the cryptocurrency mixer Tornado Cash, stolen from the cryptocurrency exchange HTX in 2023. This was reported by Reuters, citing confidential UN sanctions monitoring documents. According to...
The cybersecurity firm Symantec has identified a new tool employed by the North Korean group Kimsuki, targeting governmental and commercial organizations in South Korea. This new malware, named Gomir, is the Linux version of...
On May 14, 2024, a new version of Git, v2.45.1, was released, addressing five security vulnerabilities. This update impacts all major platforms: Windows, macOS, Linux, and BSD. Corresponding updates have also been released for...
The Microsoft Threat Intelligence team has uncovered a new campaign by the group Storm-1811, utilizing the Quick Assist tool to conduct social engineering attacks on users. Quick Assist is a legitimate Microsoft application that...
The Check Point Research team has discovered an exploit targeting Foxit Reader users, which leverages user inattention to execute malicious code. Numerous cybercriminals are actively exploiting this vulnerability, which exploits weaknesses in Foxit Reader’s...
The Belgian university KU Leuven has identified a vulnerability in the Wi-Fi IEEE 802.11 standard, which allows an attacker to deceive victims into connecting to a fake Wi-Fi network and intercepting traffic. According to...
Last week, the United States, in conjunction with the United Kingdom and Australia, charged and sanctioned Dmitry Khoroshev, believed to be the leader of the notorious ransomware group LockBit. The actual leader of LockBit,...
The world’s largest vulnerability database, NVD, managed by the U.S. National Institute of Standards and Technology (NIST), recently experienced a significant disruption that led to a substantial increase in the number of unpublished vulnerabilities....
A major healthcare provider in Mississippi, Singing River, recently disclosed that a cyberattack in August 2023 affected the data of 895,204 individuals. The medical network comprises hospitals in Pascagoula, Ocean Springs, and Gulfport, as...
