Google Play will enforce business checks to curb malware submissions
Google is fighting back against the constant invasion of malware on Google Play by requiring all new developer accounts registering as an organization to provide a…
Month: July 2023
Fake THREADS App Climbed to Number 1 Spot on Apple Store in Europe
Apple has removed the fake THREADS app from the European App Store, ending its top position as the number 1 iOS app until July 11,…
Zimbra urges admins to manually fix zero-day exploited in attacks
Zimbra urged admins today to manually fix a zero-day vulnerability actively exploited to target and compromise Zimbra Collaboration Suite (ZCS) email servers. This widely adopted…
API Flaw in QuickBlox Framework Exposed PII of Millions of Users
Research into the widely used QuickBlox SDK and API led to the discovery of critical vulnerabilities built into chat and video applications used by industries…
APT Groups Actively Targeting Outlook and Exchange Email
A china based APT actor accessed Microsoft 365 cloud environment and exfiltrated unclassified Exchange Online Outlook data from a small number of accounts. In June 2023,…
TeamTNT’s Silentbob Botnet Infecting 196 Hosts in Cloud Attack Campaign
Jul 13, 2023THNCloud Security / Cryptocurrency As many as 196 hosts have been infected as part of an aggressive cloud campaign mounted by the TeamTNT…
5 Phases of Russian Cyber Playbook in Attacks Against Ukraine
Russia’s invasion of Ukraine on February 24, 2022, followed escalating cyber operations, categorized into six phases, by Russian troops amassed at the border. Beyond the…
Twitter sues companies for data scraping to corner Facebook Meta Thread
In recent news, Meta, the parent company of Facebook, has introduced an app called “Thread,” which closely resembles Twitter in terms of features and functionality.…
PicassoLoader Malware Used in Ongoing Attacks on Ukraine and Poland
Jul 13, 2023THNCyber Attack Government entities, military organizations, and civilian users in Ukraine and Poland have been targeted as part of a series of campaigns…
Honeywell DCS Platform Vulnerabilities Can Facilitate Attacks on Industrial Organizations
Cybersecurity company Armis has identified several vulnerabilities in Honeywell distributed control system (DCS) products that could be exploited in attacks aimed at industrial organizations. Armis…
QuickBlox Security Flaws Exposes Millions of Users Sensitive Data
Recent reports from Team82 and Check Point Research (CPR) team state that there has been a major vulnerability in QuickBlox SDK (Software Development Kit) and…
Rootshell and Microsoft – IT Security Guru
Cybersecurity firm Rootshell Security has had a busy month, earning recognition for its recent work that led to the identification of three significant vulnerabilities within…