Multiple malware used in attacks exploiting Ivanti VPN flaws
Multiple malware used in attacks exploiting Ivanti VPN flaws Pierluigi Paganini February 01, 2024 Mandiant spotted new malware used by a China-linked threat actor UNC5221…
Author: Cybernoz
Russian APT’s Employ HTTP-Shell to Attack Government Entities
Recently, Cluster25, a threat intelligence firm, uncovered a spear-phishing campaign dubbed “The Bear and the Shell,” specifically targeting entities critical of the Russian government and…
Salt Security Joins AWS Lambda Ready Program
Today, API security company Salt Security has announced that it has been accepted to the Amazon Web Services (AWS) Lambda Ready Program. Salt now supports and…
Threat actor used Vimeo, Ars Technica to serve second-stage malware
A financially motivated threat actor tracked as UNC4990 is using booby-trapped USB storage devices and malicious payloads hosted on popular websites such as Ars Technica,…
Government ‘dragging it out’ by refusing to share knowledge of Post Office trial ‘delaying tactic’
The government is leaving it up to the statutory public inquiry into the Post Office scandal to ascertain if and what ministers or senior civil…
Hackers Started using Python for Developing New ransomware
Ransomware has been one of the top threats to organizations, contributing several millions of dollars to multiple organizations worldwide. Most of these ransomware operators infiltrate…
CVEMap: Open-source tool to query, browse and search CVEs
CVEMap is an open-source command-line interface (CLI) tool that allows you to explore Common Vulnerabilities and Exposures (CVEs). It’s designed to offer a streamlined and…
New Malware Emerges in Attacks Exploiting Ivanti VPN Vulnerabilities
Feb 01, 2024NewsroomNetwork Security / Malware Google-owned Mandiant said it identified new malware employed by a China-nexus espionage threat actor known as UNC5221 and other…
Police seized 50,000 Bitcoin from operator of the now-defunct piracy site movie2k
Police seized 50,000 Bitcoin from operator of the now-defunct piracy site movie2k Pierluigi Paganini February 01, 2024 German police seized 50,000 Bitcoin from the former…
Hackers Use Compromised Routers to Attack Government Organizations
Attackers continue to use compromised routers as malicious infrastructure to target government organizations in Europe and the Caucasus region. APT28 threat actors (also known as Sofacy,…
Mercedes-Benz Source Code Leaked via mishandled GitHub token
Mercedes-Benz has been reported to have leaked its source code due to a GitHub token leak from an organization employee. This particular leak was identified…
Custom rules in security tools can be a game changer for vulnerability detection
In this Help Net interview, Isaac Evans, CEO at Semgrep, discusses the balance between speed and thoroughness in CI/CD pipeline security scanning. Stressing the need…