U.S. State Government Network Breached via Former Employee’s Account
By:
Feb 16, 2024NewsroomCybersecurity / Data Breach
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has revealed that an unnamed state government organization's network environment was compromised via an administrator...
Kinsing Actors Exploiting Recent Linux Flaw to Breach Cloud Environments
By:
Nov 03, 2023NewsroomCloud Security / Linux
The threat actors linked to Kinsing have been observed attempting to exploit the recently disclosed Linux privilege escalation flaw called Looney Tunables as...
New Variant of XLoader macOS Malware Disguised as ‘OfficeNote’ Productivity App
By:
Aug 22, 2023THNMalware / Endpoint Security
A new variant of an Apple macOS malware called XLoader has surfaced in the wild, masquerading its malicious features under the guise of...
Researchers Uncover Ongoing Attacks Targeting Asian Governments and Telecom Giants
By:
Oct 12, 2023NewsroomCyber Attack / Malware
High-profile government and telecom entities in Asia have been targeted as part of an ongoing campaign since 2021 that's designed to deploy basic...
2020 was the year of phishing
A new report shows a staggering 34.4% increase in phishing attacks in the last year.2020 was a bad year to be someone susceptible to phishing attacks, a massive collection...
Russian APT Deploys New ‘Kapeka’ Backdoor in Eastern European Attacks
Apr 17, 2024NewsroomRansomware / Cyber Espionage
A previously undocumented "flexible" backdoor called Kapeka has been "sporadically" observed in cyber attacks targeting Eastern Europe, including Estonia and Ukraine, since at least...
Hackers Using MSIX App Packages to Infect Windows PCs with GHOSTPULSE Malware
By:
Oct 30, 2023NewsroomMalware / Endpoint Security
A new cyber attack campaign has been observed using spurious MSIX Windows app package files for popular software such as Google Chrome, Microsoft...
Kaseya Releases Patches for Flaws Exploited in Widespread Ransomware Attack
By: Ravie Lakshmanan
Florida-based software vendor Kaseya on Sunday rolled out urgent updates to address critical security vulnerabilities in its Virtual System Administrator (VSA) solution that was used as a...
APIs: Unveiling the Silent Killer of Cyber Security Risk Across Industries
By:
Introduction
In today's interconnected digital ecosystem, Application Programming Interfaces (APIs) play a pivotal role in enabling seamless communication and data exchange between various software applications and systems. APIs act...
Lazarus Group Likely Using New WinorDLL64 Backdoor to Exfiltrate Sensitive Data
By:
Feb 23, 2023Ravie LakshmananCyber Threat / Data Security
A new backdoor associated with a malware downloader named Wslink has been discovered, with the tool likely used by the notorious...