Google ads push fake Google Authenticator site installing malware
Google has fallen victim to its own ad platform, allowing threat actors to create fake Google Authenticator ads that push...
Read more →Author: Cybernoz
Google Enhances Chrome Security to Prevention Users From Cookie Steal Malware
Google has introduced several measures to address this threat, including Safe Browsing download protection in Chrome, Device Bound Session Credentials,...
Read more →
Banks, telcos call for more data sharing to fight fraud
A coalition of financial services institutions and communications service providers, convened by consumer advocacy organisation Which?, have called on the...
Read more →
OAuth and PostMessage
Tl;DR; An OAuth misconfiguration was discovered in the redirect_uri parameter at the target’s OAuth IDP at https://app.target.com/oauth/authorize, which allowed attackers...
Read more →
DDoS attacks won’t impact US election integrity
CISA and the FBI said today that Distributed Denial of Service (DDoS) attacks targeting election infrastructure will, at most, hinder...
Read more →
Analysis of Top Infostealers: Redline, Vidar and Formbook
Protect your data from cyber threats: Learn about RedLine, Vidar, and FormBook infostealers, their tactics, and how ANY.RUN’s sandbox helps...
Read more →
Cyber Espionage Group XDSpy Targets Companies in Russia and Moldova
Jul 31, 2024Ravie LakshmananCyber Espionage / Threat Intelligence Companies in Russia and Moldova have been the target of a phishing...
Read more →
Campaigners call for evidence to reform UK’s cyber laws
The CyberUp Campaign, a group calling for urgent reform to the Computer Misuse Act of 1990, has launched a fresh...
Read more →
Ransomware Strikes U.S. Non-profit Blood Center ‘OneBlood’
A ransomware attack is impacting the software system of OneBlood, a blood donation non-profit that serves hundreds of hospitals in...
Read more →
OneBlood’s virtual machines encrypted in ransomware attack
OneBlood, a large not-for-profit blood center that serves hospitals and patients in the United States, is dealing with an IT...
Read more →
Critical OAuth Vulnerability Exposes 1 Million Sites to XSS Attacks
Security researchers have uncovered a critical vulnerability affecting over one million websites. The vulnerability combines OAuth implementation flaws with cross-site...
Read more →
Global SMS Stealer Targeting Android Users via Malicious Apps and Ads
New SMS Stealer Alert! The massive campaign targets Android users globally. The scope of this campaign is staggering with over...
Read more →