Chinese Hacking Group MirrorFace Expands Operations to EU
The Chinese hacking group MirrorFace has shifted its focus from Japan to target a diplomatic organization in the European Union, employing spear-phishing tactics and utilizing the ANEL backdoor in its attacks.
View full story…
Germany’s Federal Court Lowers Proof Standard for Facebook Data Breach Compensation
Germany’s Federal Court of Justice has ruled that Facebook users affected by data breaches between 2018 and 2019 can seek compensation for non-material damages without needing to prove specific financial losses.
View full story…
Latest Cybernews
Malware Campaign in Switzerland Uses Fraudulent Postal Letters to Distribute Coper Trojan
A sophisticated malware campaign in Switzerland involves counterfeit letters impersonating MeteoSwiss, tricking recipients into downloading a malicious app that deploys the Coper Trojan to steal sensitive information.
View full story…
Surge In Cyber Attacks Linked To Zero-Day Vulnerabilities In 2023
The Five Eyes Alliance has raised an alert about a significant increase in cyber attackers exploiting previously unknown vulnerabilities, with the National Cyber Security Centre identifying the top 15 most exploited vulnerabilities of the year, including critical flaws in Citrix, Cisco, and Fortinet products.
View full story…
Phishing Campaign Exploits Fake Trump Assassination News
A phishing campaign is targeting the professional services and mining sectors by using fabricated news about an assassination attempt on President-elect Donald Trump to deceive victims into providing their credentials.
View full story…
ClickFix Social Engineering Attacks Surge Amid Evolving Cyber Threats
Threat actors, including a suspected Russian espionage group, are increasingly using ClickFix social engineering attacks to deploy malware like AsyncRAT and Lucky Volunteer, targeting organizations globally.
View full story…
North Korean Hackers Target Tech Job Seekers With Phishing Campaigns
A group of North Korean hackers, known as CL-STA-0237, is using sophisticated phishing tactics and BeaverTail malware to exploit job seekers in the technology sector.
View full story…
Venezuela’s Cyber Operations Target Guyana’s Sovereignty Over Essequibo Region
The Guyana Defence Force’s National Defence Institute has identified Venezuela’s cyber initiatives aimed at destabilizing Guyana’s institutions, prompting a national response to enhance cybersecurity measures and foster public-private collaboration.
View full story…
Surge In Phishing Attacks Targeting Businesses Using DocuSign Impersonations
A recent increase in sophisticated phishing attacks, particularly those impersonating DocuSign and targeting businesses interacting with state and municipal agencies in the U.S., has raised significant security concerns.
View full story…
Latest Cybernews
Palo Alto Networks Discovers Critical Zero-Day Vulnerability in PAN-OS Firewall Management Interfaces
Palo Alto Networks has identified a critical zero-day vulnerability in its PAN-OS firewall management interfaces, which is currently being exploited and poses significant risks to organizations with exposed systems.
View full story…
FortiManager Faces New Zero-Day Vulnerability “FortiJump Higher”
A newly discovered zero-day vulnerability, “FortiJump Higher,” in FortiManager, linked to the previously identified “FortiJump” flaw, poses significant security risks as it remains exploitable despite prior patches.
View full story…
O2 Launches AI Chatbot dAIsy to Combat Phone Scammers
O2 has introduced dAIsy, an AI-powered chatbot designed to engage and frustrate phone scammers by impersonating a lifelike elderly woman, as part of its campaign to protect consumers from fraud.
View full story…
Cloud Ransomware Attacks Target Cloud Storage Services
Malicious actors are increasingly exploiting cloud storage services like AWS S3 and Microsoft Azure Blob Storage to conduct ransomware attacks, leveraging misconfigurations and new ransomware scripts to gain unauthorized access and demand ransom for stolen data.
View full story…