Information Security News Blog
Cybersecurity experts from the ASEC laboratory have uncovered a series of sophisticated cyberattacks targeting Microsoft SQL Servers (MS-SQL). The group known as TargetCompany is deploying the Mallox ransomware to encrypt systems and extort victims....
The U.S. Congress has disclosed the findings of an investigation, which reveals that the majority of major automakers transmit driver location data to law enforcement without a court order, despite public assurances to refrain...
Recently, cybersecurity experts at FortiGuard Labs discovered a previously unseen botnet network named Goldoon, targeting D-Link routers via the CVE-2015-2051 vulnerability, which has been known for nearly a decade. This vulnerability, rated nearly at...
A critical flaw in the GitLab system, which allows the interception and control of user accounts, was recently added to the CISA catalog of known exploitable vulnerabilities. This issue, identified as CVE-2023-7028 and rated...
Verizon’s annual Data Breach Investigations Report reveals a disturbing trend in cybersecurity: the use of vulnerabilities as an initial breach point has nearly tripled compared to last year, now accounting for 14% of all...
A new type of malware named “Cuttlefish” has been discovered in routers within major enterprises and small offices, monitoring all information passing through the infected devices and stealing credentials. Black Lotus Labs reports that...
The developers of the ZLoader malware, which recently resumed its activity after a two-year hiatus, have incorporated a range of new features inspired by the banking trojan Zeus. Santiago Vicente, a researcher from Zscaler,...
Aleksanteri Kivimäki, a 26-year-old hacker, has been sentenced to six years’ imprisonment. Local media reported this, citing a court decision related to the breach of the private psychotherapeutic center Vastaamo in Helsinki. The court...
Google has substantially increased the rewards for reporting vulnerabilities that allow successful remote code execution (RCE) in Android applications, raising the maximum cash payout for exceptional reports to $450,000. The updates pertain to the...
A former NSA employee has been sentenced to 21 years and 10 months in prison for attempting espionage on behalf of a foreign state. FBI Director Christopher Wray stated that this sentence should serve...
Specialists at QAX XLab have identified a new type of Android malware—a backdoor named Wpeeper, which is disseminated through APK files from unofficial app stores posing as the popular alternative marketplace Uptodown. Wpeeper is...
Over the past several years, Docker Hub, a platform for hosting software repositories, has been targeted by three major fraudulent campaigns. Researchers from JFrog identified that approximately 20% of the 15 million hosted repositories...