Gayfemboy Botnet Emerges as New Variant of Mirai Malware
The Gayfemboy botnet, identified by Qi’anxin XLab in February 2024, is a sophisticated DDoS attack network exploiting over 20 vulnerabilities, including zero-day flaws, and has been actively targeting various sectors worldwide with significant traffic.
View full story…
Casio Suffers Major Ransomware Attack Exposing Data of 8,500 Individuals
In October 2024, Casio experienced a significant ransomware attack by the Underground group, compromising personal data of employees, business partners, and a small number of customers, while highlighting vulnerabilities in its cybersecurity measures.
View full story…
Sophisticated Phishing Scam Targets PayPal Users Using Microsoft 365 Tools
A sophisticated phishing scam has been identified that targets PayPal users by exploiting a loophole in the platform’s system and utilizing Microsoft 365 tools to deceive victims into revealing their financial information.
View full story…
Latest Cybernews
Phishing Success Rates Triple in 2024 Amid Evolving Tactics
In 2024, enterprises experienced a 190% increase in phishing success rates, primarily targeting cloud applications and leveraging generative AI, with nearly 8.4 clicks per 1,000 workers.
View full story…
US Treasury Department Hit by Major Cybersecurity Breach Linked to Chinese Hackers
A significant cybersecurity breach at the US Treasury Department, attributed to a Chinese state-sponsored APT group, involved the exploitation of vulnerabilities in a cloud service, leading to unauthorized access to sensitive information.
View full story…
UK Government Moves to Criminalize Sexually Explicit Deepfakes
The UK government, led by Prime Minister Keir Starmer, is set to criminalize the creation and sharing of sexually explicit deepfake images as part of a broader strategy to combat online abuse, particularly affecting women and girls.
View full story…
Moxa Issues Security Advisory for Critical Vulnerabilities in Industrial Networking Devices
Moxa has identified critical vulnerabilities in its industrial networking devices, including hard-coded credentials and OS command injection issues, requiring immediate action from users to mitigate potential security risks.
View full story…
PhishWP: Malicious WordPress Plugin Creates Fraudulent Payment Pages
PhishWP is a dangerous WordPress plugin that enables cybercriminals to design counterfeit payment interfaces, primarily targeting sensitive financial information from unsuspecting users.
View full story…
MLOps Platforms Face Rising Security Threats from Various Attack Vectors
Security researchers have identified multiple attack scenarios targeting MLOps platforms like Azure Machine Learning, BigML, and Google Cloud Vertex AI, highlighting vulnerabilities such as device code phishing, exposed API keys, and data extraction risks.
View full story…
Latest Cybernews
New Infostealer Campaign Targets Gaming Enthusiasts Through Discord and Email
Cybercriminals are exploiting unsolicited messages on platforms like Discord and email to distribute malware disguised as game beta tests, threatening users’ sensitive information.
View full story…
Surge in Cryptocurrency Theft: $494 Million Lost to Wallet Drainer Attacks in 2024
In 2024, the Web3 ecosystem experienced a dramatic increase in cryptocurrency theft, with scammers stealing approximately $494 million through wallet drainer attacks, primarily targeting the Ethereum network and utilizing sophisticated tactics such as phishing and signature exploits.
View full story…
Supply Chain Attack Compromises Ethereum Development Ecosystem
A significant supply chain attack has targeted the Nomic Foundation’s Hardhat platform by deploying malicious npm packages that exfiltrate sensitive data from developers.
View full story…
Taiwan Faces Surge in Cyberattacks Amid Chinese Aggression
In 2024, Taiwan experienced a dramatic increase in cyberattacks, averaging 2.4 million daily incidents, primarily attributed to Chinese state-backed hackers employing sophisticated tactics to undermine the island’s stability.
View full story…