Chinese Mini PC Maker Acemagic Ships machines with Malware
Acemagic, a Chinese manufacturer of mini PCs, has been found to ship devices laden with malware, raising significant concerns about cybersecurity and consumer safety. Further…
Month: February 2024
How organizations can navigate identity security risks in 2024
Managing IAM challenges in hybrid IT environments requires a holistic approach, integrating solutions and automating processes to ensure effective access controls and operational efficiency. In…
New Backdoor Targeting European Officials Linked to Indian Diplomatic Events
Feb 29, 2024NewsroomCyber Espionage / Malware A previously undocumented threat actor dubbed SPIKEDWINE has been observed targeting officials in European countries with Indian diplomatic missions…
New Cryptocurrency Cyberattack Target MacOS Users
In a recent wave of cyberattacks on cryptocurrency enthusiasts, malicious actors have been employing sophisticated tactics to infiltrate macOS systems. The attacks begin innocuously enough,…
Lazarus APT exploited 0-day in Win driver to gain kernel privileges
Lazarus APT exploited zero-day in Windows driver to gain kernel privileges Pierluigi Paganini February 29, 2024 North Korea-linked Lazarus APT exploited a zero-day flaw in…
Savvy Seahorse gang uses DNS CNAME records to power investor scams
Image: Midjourney A threat actor named Savvy Seahorse is abusing CNAME DNS records Domain Name System to create a traffic distribution system that powers financial…
Millions of GitHub Repos Found infected With malicious Code
Security researchers have uncovered a massive campaign of repository confusion attacks on GitHub, affecting over 100,000 repositories and potentially millions more. This sophisticated cyberattack targets…
BobTheSmuggler: Open-source tool for undetectable payload delivery
BobTheSmuggler is an open-source tool designed to easily compress, encrypt, and securely transport your payload. It basically enables you to hide a payload in plain…
Chinese Hackers Exploiting Ivanti VPN Flaws to Deploy New Malware
At least two different suspected China-linked cyber espionage clusters, tracked as UNC5325 and UNC3886, have been attributed to the exploitation of security flaws in Ivanti…
Key Takeaways from the Latest Phishing Attacks
These days, cyber threat actors continue to rely just as much on psychological manipulation in the form of convincing phishing emails as they do on…
Lazarus Hackers Exploited Windows 0-Day to Gain Kernel Access
The Lazarus Group, a well-known cybercriminal organization, has recently exploited a zero-day vulnerability in Windows to gain kernel privileges, a critical level of system access.…
Ransomware infection reach extends to Data Backups
For years, IT experts have emphasized the importance of maintaining backups for data and applications, highlighting their crucial role in swiftly recovering from cyber-attacks. Indeed,…