Latest Cybernews
Operation Marstech Mayhem: North Korean Lazarus Group Targets Developers with Crypto-Stealing Malware
The Lazarus Group’s Operation Marstech Mayhem employs sophisticated malware to compromise software and Web3 developers, posing significant risks to global software ecosystems and potentially funding North Korean government activities.
View full story…
Astaroth Phishing Kit Bypasses Two-Factor Authentication
Astaroth is a sophisticated phishing kit that effectively circumvents two-factor authentication by using advanced techniques to capture sensitive information from various authentication services.
View full story…
CISA and FBI Warn of Buffer Overflow Vulnerabilities in Software Development
The US Cybersecurity and Infrastructure Security Agency (CISA) and the FBI have issued a Secure by Design Alert highlighting the significant security risks posed by buffer overflow vulnerabilities, which are frequently exploited by cyber actors, including those from China, in major software products from vendors like Microsoft, VMware, and Ivanti.
View full story…
Seashell Blizzard Cyber Group Expands Operations Post-Ukraine Invasion
The Russian state-sponsored cyber group Seashell Blizzard, also known as APT44, has intensified its cyber-espionage and attacks on critical infrastructure globally, leveraging vulnerabilities in various systems to maintain persistent access and execute large-scale compromises.
View full story…
Latest Cybernews
UK Government Demands Apple Create Backdoor for Surveillance
The British government has issued a secret order to Apple, requiring the company to create a backdoor for government surveillance, raising significant concerns about privacy and security.
View full story…
Ransomware Attack Compromises Data of 120,000 at Georgia Hospital
Memorial Hospital and Manor in Bainbridge, Georgia, suffered a ransomware attack by the Embargo group, exposing the personal and medical information of approximately 120,000 individuals.
View full story…
Evan Frederick Light Sentenced to 20 Years for $37 Million Cryptocurrency Theft
Evan Frederick Light, a 22-year-old from Lebanon, Indiana, has been sentenced to 20 years in federal prison for his role in a cybercrime operation that stole over $37 million in cryptocurrency from more than 100 victims worldwide.
View full story…
UK Criminalizes AI Tools for Generating Child Sexual Abuse Material
The United Kingdom has enacted the Online Safety Act, making it illegal to possess, create, or distribute AI tools designed to generate child sexual abuse material, setting a precedent for global child protection policies.
View full story…
Cyber Campaign Targets IIS Servers with BadIIS Malware
A sophisticated cyber campaign attributed to Chinese-speaking threat actors is exploiting unpatched vulnerabilities in Microsoft Internet Information Services (IIS) servers across Asia using advanced malware known as BadIIS, redirecting victims to illegal gambling sites and manipulating search engine optimization.
View full story…
Urgent Call for Quantum-Safe Cryptography in European Financial Sector
Europol warns that the financial services sector in Europe must prioritize the transition to quantum-safe cryptography to combat the rising threat of quantum computing and “store now, decrypt later” attacks.
View full story…
Latest Cybernews
Surge in Infostealer Attacks Threatens EMEA Cybersecurity
Organizations in the EMEA region are facing a 58% increase in infostealer attacks, with over 10 million stolen login credentials being sold on the dark web, highlighting vulnerabilities in security practices and the growing sophistication of cybercriminals.
View full story…
Rise Of Infostealers Targets Password Managers
Infostealers have surged in cybercrime, with 25% of malware samples in 2024 aimed at stealing credentials from password managers, employing advanced techniques like memory scraping and process injection.
View full story…