A New Spyware is Targeting Telegram and Psiphon VPN Users in Iran
By: Ravie Lakshmanan
Threat actors with suspected ties to Iran have been found to leverage instant messaging and VPN apps like Telegram and Psiphon to install a Windows remote access...
Major DDoS Cyberattack Dismissed As T-Mobile Misconfiguration
Security experts say there is no evidence the U.S. was hit by a major DDoS cyberattack this week—despite rampant social media speculation.
Yesterday, rumors circulated on Twitter after telecom operators, games, social networks, banks and...
Researchers Uncover Obfuscated Malicious Code in PyPI Python Packages
By:
Feb 10, 2023Ravie LakshmananSupply Chain / Software Security
Four different rogue packages in the Python Package Index (PyPI) have been found to carry out a number of malicious actions,...
U.S. Federal Agencies Ordered to Patch Hundreds of Actively Exploited Flaws
By: Ravie Lakshmanan
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has published a catalog of vulnerabilities, including from Apple, Cisco, Microsoft, and Google, that have known exploits and are...
Hackers Exploited Popular BillQuick Billing Software to Deploy Ransomware
By: Ravie Lakshmanan
Cybersecurity researchers on Friday disclosed a now-patched critical vulnerability in multiple versions of a time and billing system called BillQuick that's being actively exploited by threat actors...
Two Eastern Europeans Sentenced for Providing Bulletproof Hosting to Cyber Criminals
By: Ravie Lakshmanan
Two Eastern European nationals have been sentenced in the U.S. for offering "bulletproof hosting" services to cybercriminals, who used the technical infrastructure to distribute malware and attack...
Malvertisers Using Google Ads to Target Users Searching for Popular Software
By:
Oct 20, 2023NewsroomMalvertising / Cyber Threat
Details have emerged about a malvertising campaign that leverages Google Ads to direct users searching for popular software to fictitious landing pages and...
Hackers Breached Colonial Pipeline Using Compromised VPN Password
By: Ravie Lakshmanan
The ransomware cartel that masterminded the Colonial Pipeline attack early last month crippled the pipeline operator's network using a compromised virtual private network (VPN) account password, the...
Threat Actors Targeting Microsoft SQL Servers to Deploy FreeWorld Ransomware
By:
Sep 01, 2023THNDatabase Security / Ransomware
Threat actors are exploiting poorly secured Microsoft SQL (MS SQL) servers to deliver Cobalt Strike and a ransomware strain called FreeWorld.
Cybersecurity firm Securonix,...
Magento Based Stores See Biggest Attack Due to 0day flaw
Well-known cybersecurity expert and founder of Sanguine Security (SanSec) Willem de Groot (Willem de Groot) warned of the largest ever campaign aimed at compromising online stores based on the e-commerce platform...