Chinese APT41 Upgrades Malware Arsenal with DodgeBox and MoonWalk
Jul 11, 2024NewsroomCyber Espionage / Network Security The China-linked advanced persistent threat (APT) group codenamed APT41 is suspected to be using an “advanced and upgraded…
Category: TheHackerNews
PAM for Small to Medium-sized Businesses
Jul 11, 2024The Hacker NewsCompliance / Identity Management Today, all organizations are exposed to the threat of cyber breaches, irrespective of their scale. Historically, larger…
New Poco RAT Targets Spanish-Speaking Victims in Phishing Campaign
Jul 11, 2024NewsroomMalware / Threat Intelligence Spanish language victims are the target of an email phishing campaign that delivers a new remote access trojan (RAT)…
PHP Vulnerability Exploited to Spread Malware and Launch DDoS Attacks
Jul 11, 2024NewsroomCyber Attack / Vulnerability Multiple threat actors have been observed exploiting a recently disclosed security flaw in PHP to deliver remote access trojans,…
GitLab Patches Critical Flaw Allowing Unauthorized Pipeline Jobs
Jul 11, 2024NewsroomSoftware Security / Vulnerability GitLab has shipped another round of updates to close out security flaws in its software development platform, including a…
New Ransomware Group Exploiting Veeam Backup Software Vulnerability
Jul 10, 2024NewsroomData Breach / Malware A now-patched security flaw in Veeam Backup & Replication software is being exploited by a nascent ransomware operation known…
True Protection or False Promise? The Ultimate ITDR Shortlisting Guide
Jul 10, 2024The Hacker NewsEndpoint Security / Identity Security It’s the age of identity security. The explosion of driven ransomware attacks has made CISOs and…
Microsoft’s July Update Patches 143 Flaws, Including Two Actively Exploited
Jul 10, 2024NewsroomEndpoint Security / Vulnerability Microsoft has released patches to address a total of 143 security flaws as part of its monthly security updates,…
Smash-and-Grab Extortion
The Problem The “2024 Attack Intelligence Report” from the staff at Rapid7 [1] is a well-researched, well-written report that is worthy of careful study. Some…
Google Adds Passkeys to Advanced Protection Program for High-Risk Users
Jul 10, 2024NewsroomCybersecurity / Phishing Attack Google on Wednesday announced that it’s making available passkeys for high-risk users to enroll in its Advanced Protection Program…
Crypto Analysts Expose HuiOne Guarantee’s $11 Billion Cybercrime Transactions
Jul 10, 2024NewsroomOnline Scam / Blockchain Cryptocurrency analysts have shed light on an online marketplace called HuiOne Guarantee that’s widely used by cybercriminals in Southeast…
ViperSoftX Malware Disguises as eBooks on Torrents to Spread Stealthy Attacks
Jul 10, 2024NewsroomEndpoint Security / Threat Intelligence The sophisticated malware known as ViperSoftX has been observed being distributed as eBooks over torrents. “A notable aspect…