Cybersecurity Firm Uncovers North Korean Hacker Infiltration Attempt
KnowBe4, a cybersecurity awareness training company, detects North Korean threat actor posing as remote software engineer in attempted infiltration.
View full story…
Latest Cybernews
Cyberattack on Ukrainian Energy Company Highlights Threat to Critical Infrastructure
A cyberattack using the FrostyGoop malware targeted a municipal energy company in Lviv, Ukraine, causing a two-day outage of central heating for over 600 apartment buildings.
View full story…
Google Abandons Plan to Disable Third-Party Cookies in Chrome
Google has decided to keep third-party cookies enabled for users who do not disable them, while introducing a new prompt for setting preferences, reflecting the company’s ongoing efforts to balance user privacy with targeted advertising.
View full story…
UK’s National Crime Agency Dismantles DigitalStress DDoS-for-Hire Service Provider
The NCA, FBI, and PSNI collaborate to shut down DigitalStress, a prominent DDoS-for-hire service provider, apprehending its administrator Skiop and seizing user data for international law enforcement agencies.
View full story…
Threat Actors Using Swap Files to Hide Credit Card Skimmers on Compromised Websites
Threat actors are utilizing swap files on compromised websites to hide credit card skimmers, with recent cases involving Magento e-commerce sites and WordPress sites being exploited.
View full story…
Chinese APT Group Daggerfly Continues Global Espionage Campaign with Enhanced Malware Toolkit
Daggerfly, also known as Evasive Panda or Bronze Highland, targets organizations and individuals globally with updated malware toolkit, including new backdoors and espionage capabilities.
View full story…
Latest Cybernews
SocGholish Malware Exploits BOINC Project for Covert Cyberattacks
The SocGholish malware, also known as FakeUpdates, has been active since July 4th, 2024, spreading through fake browser updates to deliver the AsyncRAT trojan and install the BOINC platform on infected systems for cyberattacks.
View full story…
Cybercriminals Exploit CrowdStrike IT Outage, Impacting 8.5 Million Windows PCs Worldwide
Threat actors are engaging in phishing campaigns and distributing malicious software in the wake of a global IT outage caused by a faulty software update from CrowdStrike, impacting millions of Microsoft Windows PCs worldwide.
View full story…
Exploitation of Google Cloud by FLUXROOT and PINEAPPLE Threat Actors for Credential Phishing and Malware Distribution
Financially motivated threat actors FLUXROOT and PINEAPPLE exploit Google Cloud serverless projects for credential phishing campaigns and malware distribution targeting online payment platforms in Latin America.
View full story…
New Linux Variant of Play Ransomware Targets VMware ESXi Servers
Play ransomware group expands operations to target VMware ESXi servers with new Linux variant, impacting approximately 300 organizations across industries like manufacturing, IT, retail, and financial services.
View full story…
Chinese Organized Crime Syndicate Vigorish Viper Dominates Illegal Online Gambling World with Advanced Technology
Vigorish Viper, linked to the Yabo Group, exploits global sports gambling economy using advanced technology and cybercrime infrastructure.
View full story…
Europol’s 2024 IOCTA Report Highlights Rise of Cryptocurrencies and AI in Cybercrime
Europol’s latest report warns of increasing use of cryptocurrencies and artificial intelligence in cybercrime within the EU, with ransomware groups becoming more fragmented and cybercriminals utilizing new technologies for criminal activities.
View full story…
US Government Bans Kaspersky Software Over National Security Concerns
The US federal government has imposed a ban on Kaspersky software due to concerns over potential information sharing with the Russian government, impacting the company’s ability to sell products in the US.
View full story…