P2PInfect botnet activity surges 600x with stealthier malware variants
The P2PInfect botnet worm is going through a period of highly elevated activity volumes starting in late August and then picking up again in September…
Month: September 2023
Dexalot Unveils SimpleSwap and SimpleView Features for Enhanced User Experience
New York, NY, September 19, 2023 – Dexalot, the decentralized exchange (DEX) operating on an Avalanche Subnet, has launched two major new features. SimpleSwap and…
Token error left Microsoft data exposed – Security
Microsoft has disclosed that an overly permissive shared access signature (SAS) token exposed company data on GitHub from July 2020 until it was fixed this…
T-Mobile app glitch let users see other people’s account info
Today, T-Mobile customers said they could see other peoples’ account and billing information after logging into the company’s official mobile application. According to user reports…
Chinese Silent Skimmer Attack Hits APAC and NALA Online Payment Firms
KEY FINDINGS Chinese actors are behind the Silent Skimmer campaign, which targets online payment businesses in APAC and NALA regions. The campaign exploits known vulnerabilities…
Kickstarting a Holistic SaaS Ecosystem Security Program
By Maor Bin, CEO, Adaptive Shield One piece of advice I like to give security professionals is this – it’s often instructive to view cybersecurity…
Ventia appoints new cyber security GM – Training & Development – Security
Ventia has put Nine’s former group director of cyber security Celeste Lowe in charge of its cyber strategy. Lowe left her previous position in July and…
How US intelligence hacked into Huawei Servers to find out how it is hacking US government
Huawei has gained recognition for its telecommunications infrastructure and consumer electronic devices, including smartphones. The United States of America imposed a ban on Huawei principally…
Fake YouTube Android Apps Used to Distribute CapraRAT
KEY FINDINGS APT36, a Pakistani group known for targeting military and diplomatic personnel in Pakistan and India, is exploiting YouTube to infect Android devices with…
Experts found flaws in Nagios XI network monitoring software
Experts found critical flaws in Nagios XI network monitoring software Pierluigi Paganini September 20, 2023 Researchers discovered multiple vulnerabilities in the Nagios XI network and…
TransUnion denies it was hacked, links leaked data to 3rd party
Credit reporting firm TransUnion has denied claims of a security breach after a threat actor known as USDoD leaked data allegedly stolen from the company’s…
Fake PoC Script Used to Trick Researchers into Downloading VenomRAT
KEY FINDINGS A new malware campaign is targeting the CVE-2023-40477 vulnerability in WinRAR. The campaign uses a fake proof-of-concept (PoC) script to trick researchers into…