Flaw in Atlassian Companion for macOS
When Atlassian Companion is installed on macOS, a vulnerability has been detected that enables remote code execution on users’ computers when they click the Edit…
Month: July 2023
New Crypto Phishing Attack Steals Funds from Cold Wallets
Cryptocurrency’s rising fame and diverse storage methods expand the arsenal of tools used by threat actors chasing digital assets and funds. The threat actors adapt…
The Looming Threat of Business Email Compromise: Insights from John Wilson at Fortra
The relentless wave of digital innovation has come with its share of threats. One such rising threat is Business Email Compromise (BEC). In a recent…
Multi-stage TOITOIN Trojan Abusing Amazon EC2 Instances
New advanced malware targets LATAM businesses with TOITOIN Trojan, revealing intricate layers. The complete attack is based on a multi-stage process that involves the following…
Apple Issues Emergency Patch for iOS & macOS Zero-day Flaw
New Rapid Security Response (RSR) patches from Apple have been released to address a new zero-day defect that has been used in attacks and affects…
Role Of Red Teaming In Cyber Security
Testing your organization’s capacity to stop, identify, and respond to assaults is essential since cyber threats are developing at an unprecedented rate. Red teaming is…
What is Vulnerability Assessment In Cybersecurity?
One of the best methods for finding potential security gaps in your company’s cybersecurity design is a vulnerability assessment. You risk losing sensitive information to…
Windows 10 KB5028168 and KB5028166 updates released
Microsoft has released Windows 10 KB5028166 and KB5028168 cumulative updates for versions 22H2, version 21H2, and 1809 to fix problems and add new features to the operating system.…
Play Ransomware Attacking Private and Public Organizations
The ransomware attacks are becoming more frequent and rapidly increasing in size as well. This alarming pace of ransomware is significantly concerning the thousands of…
How cybercriminals forge digital signatures on kernel-mode malicious drivers to bypass EDR
Chinese-speaking threat actors have been shown to be using a Microsoft Windows policy vulnerability to spoof signatures on kernel-mode drivers. The Windows operating system (OS)…
Legion Tool Steals PUBG Players’ Browser Passwords
“The Legion” is a Python-based software that has been crafted with the explicit intention of gathering credentials. Its propagation initially occurred via Telegram channels, where…
Microsoft patches four exploited zero-days, but lags with fixes for a fifth (CVE-2023-36884)
For July 2023 Patch Tuesday, Microsoft has delivered 130 patches; among them are four for vulnerabilites actively exploited by attackers, but no patch for CVE-2023-36884,…