Information Security News Blog
The Chinese hacking group Earth Lusca has once again garnered attention through a recent report by Trend Micro specialists, who have unveiled the latest tactics employed by these malefactors, as well as their interests...
The United States National Institute of Standards and Technology (NIST) has issued an updated edition of its seminal cybersecurity document, the Cybersecurity Framework (CSF), now reaching version 2.0. This constitutes the first significant update...
Recently, a group of hackers from China, known as the “8220 Gang,” has significantly intensified their assaults on cloud infrastructure, targeting both Linux and Windows users with the aim of illicit cryptocurrency mining. The...
Within the context of the United States Department of Justice’s lawsuit against Google for alleged market monopolization, documents highlight that Microsoft approached Apple no fewer than six times between 2009 and 2020, suggesting that...
In a recent report by Trend Micro, it was revealed that the Chinese cyber espionage group Mustang Panda has intensified its operations across Asia, employing a modified variant of the PlugX malware named DOPLUGS....
In response to the escalating threat of cyberattacks on critical infrastructure, the United States agencies CISA, the FBI, and the Environmental Protection Agency (EPA) have issued guidelines to enhance the cybersecurity of Water and...
Analysts warn that hackers have increasingly exploited the Google Cloud Run service for the widespread distribution of banking trojans such as Astaroth, Mekotio, and Ousaban. Google Cloud Run enables users to deploy front-end and...
Cybersecurity specialists at Sysdig have unveiled a new malicious entity dubbed SSH-Snake, designed to stealthily search for private keys and navigate through a victim’s infrastructure, rendering it significantly more perilous than conventional viruses that...
Experts from Cado Security have uncovered a new malicious campaign targeting Redis servers. Once initial access to the systems is secured, the attackers mine cryptocurrency on the compromised Linux-operated hosts. According to Matt Muir,...
In a recent investigation conducted by security specialists from ReversingLabs, two malicious packages were identified within the Python Package Index (PyPI) repository, utilizing the DLL Sideloading technique to circumvent antivirus detection and execute malicious...
PSI Software SE, a German developer of software for intricate manufacturing and logistics processes, confirmed it fell victim to a cyberattack involving ransomware, which compromised its internal infrastructure. Operating globally with a workforce exceeding...
In November of last year, researchers discovered the expansion of malicious activity by an Android trojan named Anatsa into Slovakia, Slovenia, and the Czech Republic. This expansion is part of a new campaign which,...