Spyware Provider “LetMeSpy” Shuts Down After Hacker Deletes Server Data
On June 21, 2023, hackers broke into LetMeSpy’s servers and stole private data. Following the hack, the attackers were able to obtain unauthorized access to…
Category: CyberSecurityNews
Threat and Vulnerability Roundup for the week of July 30th to August 5th
The Threat and Vulnerability Roundup for this week is out! With great pride, Cyber Writes presents a weekly overview of the most recent cybersecurity news.…
New Rilide Malware Attacking Enterprise Employees to Steal Credentials
As per reports, a new version of the Rilide stealer is known to be stealing credentials from enterprise employees and crypto wallets. This new version…
Researchers Discover 12 New LOLBAS Binaries
Hackers actively leverage LOLBAS (Living-Off-the-Land Binaries-And-Scripts), it’s a popular methodology that is used by threat actors for exploiting legit tools for hiding the illicit actions…
New AD CTS Attack Vector movement between Microsoft tenant
According to reports, the threat group known as “Nobelium” who were responsible for the SolarWinds attacks is now discovered to be targeting Microsoft tenants through…
Hackers Using Fake Certificates to Infiltrate Corporate Networks
Using fake certificates, attackers gain unauthorized access to corporate network resources. Attackers use such certificates to trick the Key Distribution Center (KDC) to get into…
Hacker Group Builds New Infrastructure With 94 Domains
Threat actors are evolving their techniques and tools at a rapid pace that is completely changing the current threat scenario. BlueCharlie is a Russia-linked threat…
Ivanti MobileIron API Access Flaw
There is a critical vulnerability in Ivanti’s MobileIron Core 11.2 version that could allow a malicious actor to gain unauthorized access to restricted functions. MobileIron…
Hackers Exploit Salesforce Email Zero-day Flaw in Facebook
Hackers exploited a zero-day vulnerability in the email services and SMTP servers of Salesforce. Malicious email traffic is often concealed within email gateway services that…
Chrome Security Update – 15 High-Severity Vulnerabilities Patched
Google has published a security update for Chrome, updating the Stable channel for Mac and Linux to 115.0.5790.170 and 115.0.5790.170/.171 for Windows. The release of this…
Midnight Blizzard Leverages Teams Chat to steal credentials
Microsoft Threat intelligence identifies Midnight Blizzard (previously tracked as NOBELIUM) as a highly targeted social engineering attack. The attacker uses compromised Microsoft 365 tenants owned…
Hackers Train AI-powered cybercrime Tools to Launch Cyber Attacks
There have been several reports recently about cybercriminals using AI-powered tools for malicious purposes which can give a paradise of information for nefarious purposes. Some…