APT41’s PowerShell Backdoor Download Files From Windows
Researchers from Threatmon uncovered a targetted PowerShell backdoor malware attack from APT41 that bypasses the detections and allows threat actors to execute commands, download and…
Category: CyberSecurityNews
Which is the Best Security Solution in 2023
Introduction As organizations move towards digitization, security has become a significant part of their operations. Software-Defined Perimeter (SDP) and Virtual Private Networks (VPN) are two…
Zyxel Firewall Vulnerability lets Attackers Inject OS Commands
Recently, Zyxel, the networking equipment manufacturer, has issued critical security patches for its firewall devices to fix a vulnerability allowing RCE on the affected systems.…
Atomic macOS Malware Steals Auto-fills, Passwords & Cookies
Recently, the cybersecurity researchers at Cyble discovered a new macOS malware, ‘Atomic’ (aka ‘AMOS’), sold for $1,000/month on private Telegram channels. Buyers pay a high…
Top 13 SaaS Cybersecurity Threats in 2023
Every company should have an eye on its cybersecurity. But SaaS companies have their own set of concerns to be mindful of. With their business…
What is Keylogger? How it Works?
Keylogger is a malicious computer program that records everything you type on the keyboard, learns the keystroke pattern, including words, characters, and symbols, and sends…
38 Minecraft Copycat Games on Google Play Infect 140M Users
Recently, a group of threat actors have disguised their malware as 38 Minecraft-inspired games on Google Play, infecting unsuspecting devices with the insidious ‘HiddenAds’ adware. …
RTM Locker Ransomware Attacks Linux, NAS, and ESXi Servers
The RTM Locker ransomware gang has been discovered to utilize a Linux encryptor that focuses explicitly on virtual machines on VMware ESXi servers, making it…
Google Dismantles CryptBot Info-stealing Malware Infrastructure
Google uses Cryptbot info stealer for infecting Chrome users and stealing data, taking down associated malware infrastructure. The sole goal of this lawsuit is to…
Thousands of Apache Superset Servers Open to RCE Attacks
Cybersecurity analysts at Horizon3 detected that thousands of Apache Superset servers are exposed to RCE attacks at default configurations. This could allow the threat actors…
Ukrainian Arrested for Selling Sensitive Data
The Ukranian Cyber police officers tracked down the 36-year-old resident of Netishyn as he was selling the personal data of more than 300 million victims…
SLP Protocol Bug Lets Attackers Launch 2,200x DDoS Attack
The Service Location Protocol (SLP) has been found to have a new reflective Denial-of-Service (DoS) amplification vulnerability. Threat actors can exploit this vulnerability to execute…