Information Security News Blog
Experts from the Insikt Group division have promulgated the inaugural comprehensive dossier regarding GrayCharlie, a threat syndicate that, since mid-2023, has been compromising WordPress repositories to disseminate deleterious payloads via fraudulent browser updates and...
In Indonesia, a sophisticated fraudulent enterprise has been unmasked, masquerading as the official Coretax fiscal service. Adversaries orchestrated a clandestine infrastructure utilizing counterfeit mobile applications, facilitating offensives not only against taxpayers but also across...
The PayPal Working Capital lending service has sustained a significant data exposure, precipitated not by external adversaries, but by an internal programmatic oversight. A deleterious modification to the source code inadvertently rendered sensitive client...
A sophisticated new phishing instrument dubbed Starkiller has emerged within clandestine marketplaces, fundamentally altering the mechanics of credential theft. Rather than meticulously crafting fraudulent login portals, adversaries are leveraging authentic websites, broadcasting them in...
An incident has transpired within the npm registry involving the Cline CLI utility; for a duration of several hours, a version featuring an altered installation script was disseminated to users. The developers have confirmed...
Two nascent zero-day vulnerabilities within the Ivanti mobile device management ecosystem are currently being exploited in live offensives, with the scale of compromise far exceeding isolated incidents. Adversaries are engaged in the mass-scanning of...
A critical Remote Code Execution (RCE) vulnerability has been unearthed within SpiderMonkey, the JavaScript engine powering Mozilla Firefox. The provenance of this defect is almost farcical: a single-character typographical error within the WebAssembly garbage...
LSA Whisperer BOF A Cobalt Strike Beacon Object File (BOF) port of LSA Whisperer — the tool that talks directly to Windows authentication packages through the LSA untrusted/trusted client interface, without touching LSASS process memory even...
Occasionally, the most profound escalations in computational performance manifest almost as a whimsical irony. Jens Axboe, the esteemed Linux architect and progenitor of io_uring, recently pinpointed the catalyst for anomalous latency during QEMU operations...
Cybersecurity specialists from Acronis have unmasked a nascent espionage offensive dubbed CRESCENTHARVEST, which they evaluate as a surgical strike against proponents of the persistent civil unrest in Iran. The adversaries are instrumentalizing the current...
A critical vulnerability has been unearthed within ubiquitous Honeywell surveillance cameras, enabling unauthorized actors to gain illicit access to live video feeds or effectuate a total takeover of the device’s administrative account. The Cybersecurity...
Authorities in Texas have leveled allegations against the network hardware manufacturer TP-Link Systems, asserting that its devices may have served as a conduit for Chinese state-sponsored cyber-adversaries. Attorney General Ken Paxton has initiated a...