Predator spyware vendor banned in US
The US Treasury Department has sanctioned Predator spyware vendor Intellexa Consortium, and banned the company from doing business in the US. Predator can turn infected…
Author: Cybernoz
Critical TeamCity flaw now widely exploited to create admin accounts
Hackers have started to exploit the critical-severity authentication bypass vulnerability (CVE-2024-27198) in TeamCity On-Premises, which JetBrains addressed in an update on Monday. Exploitation appears to…
Cisco Secure Client Flaw let Attackers Trigger CRLF Attack
Cisco has disclosed a critical vulnerability in the SAML authentication process of its Cisco Secure Client software. This vulnerability could potentially allow unauthenticated, remote attackers…
Security and Entertainment Essentials Amid Rising Digital Risks
With the cost of cybercrime set to surpass $10 trillion in the coming months, is it time that VPNs become an everyday essential? According to Statista…
VMware patches critical flaws in ESXi, Workstation, Fusion and Cloud Foundation
VMware has fixed four vulnerabilities (CVE-2024-22252, CVE-2024-22253, CVE-2024-22254, CVE-2024-22255) in ESXi, Workstation, Fusion and Cloud Foundation, some of which could allow attackers to escape the…
Snake, a new Info Stealer spreads through Facebook messages
Snake, a new Info Stealer spreads through Facebook messages Pierluigi Paganini March 07, 2024 Threat actors are using Facebook messages to spread a Python-based information…
U.S. lost record $12.5 billion to online crime in 2023
FBI’s Internet Crime Complaint Center (IC3) has released its 2023 Internet Crime Report, which recorded a 22% increase in reported losses compared to 2022, amounting…
Beware Of New Money Laundering Attack Targeting UPI Users
Threat actors target UPI users as UPI offers a convenient platform for transferring money, often with less severe security than traditional banking systems. Due to…
Snake Python Infostealer Attacking Facebook Messenger Users
A new menace has emerged targeting unsuspecting Facebook Messenger users. Dubbed the “Python Infostealer,” this malicious software is designed to pilfer credentials through sophisticated means,…
Tycoon and Storm-1575 Linked to Phishing Attacks on US Schools
Tycoon and Storm-1575 groups are identified as key players, with Tycoon offering MFA bypass as a service and Storm-1575 targeting Microsoft 365 credentials. Public schools…
Web-based PLC malware: A new potential threat to critical infrastructure
A group of researchers from Georgia Tech’s College of Engineering have developed web-based programmable logic controller (PLC) malware able to target most PLCs produced by…
Fujitsu should pay half of Post Office scandal costs, says select committee chair
The government’s starting point for negotiating Fujitsu’s contribution to the costs of the Post Office scandal should be a 50:50 split, according to the chair…