Big bank systems crashed for over 800 hours in last two years due to IT outages
Nine of the UK’s biggest banks accumulated over 33 days of IT downtime over the last two years with millions of people affected. Data received…
Month: March 2025
Chinese Lotus Blossom APT targets multiple sectors with Sagerunex backdoor
Chinese Lotus Blossom APT targets multiple sectors with Sagerunex backdoor Pierluigi Paganini March 06, 2025 China-linked Lotus Blossom APT targets governments and industries in Asian…
Two hackers Arrested for Stealing Taylor Swift Era Concert Tickets Worth $600k
In a sophisticated cybercrime operation targeting high-demand events, two individuals were arrested this week for allegedly orchestrating a $600,000 ticket theft scheme involving Taylor Swift’s…
CFIT publishes blueprint for digital company business IDs
The government-backed Centre for Finance, Innovation and technology (CFIT) has outlined its plan to fight economic crime through digital business IDs. Digital IDs for business…
Android App With 220,000+ Downloads From Google Play Installs Banking Trojan
A sophisticated Android banking trojan campaign leveraging a malicious file manager application accumulated over 220,000 downloads on the Google Play Store before its removal. Dubbed…
Critical IDOR Vulnerabilities in ZITADEL Let Hackers Modify Key Settings
Security researchers have disclosed critical Insecure Direct Object Reference (IDOR) vulnerabilities in ZITADEL’s administration interface that expose organizations to account takeover risks and unauthorized configuration changes. Tracked…
CBA technology teams facing cuts – Financial Services
CBA will spend the next fortnight consulting with an unknown number of technology workers whose roles are being reviewed. The Finance Sector Union (FSU) put…
Google Announces GoStringUngarbler Tool to Decrypt Go Based Malware
In a landmark development for cybersecurity infrastructure, Google’s Mandiant subsidiary has unveiled GoStringUngarbler – an open-source deobfuscation framework designed to neutralize advanced string encryption techniques…
U.S. Charges 12 Chinese Nationals in State-Backed Hacking Operations
The U.S. Department of Justice (DoJ) has announced charges against 12 Chinese nationals for their alleged participation in a wide-ranging scheme designed to steal data…
Bybit Hot Wallet Exploit for Malicious Transaction
Researchers uncovered one of the most technically sophisticated attacks in cryptocurrency history, exploiting Bybit’s Ethereum hot wallet infrastructure through a malicious proxy contract upgrade. The…
Technical Analysis Released on Bybit Hot Wallet Exploit
Cryptocurrency exchange Bybit suffered a sophisticated smart contract exploit on February 21, 2025, resulting in the theft of 401,346.76 ETH (approximately $1.2 billion at the…
How to prevent data leakage in collaboration tools like Slack and Teams
In recent years, collaboration tools have become an absolute necessity for remote and hybrid work. This primarily increased during the COVID-19 pandemic due to the…