New Go-based Backdoor GoGra Targets South Asian Media Organization
Aug 07, 2024Ravie LakshmananCloud Security / Cyber Espionage An unnamed media organization in South Asia was targeted in November 20233 using a previously undocumented Go-based…
Category: TheHackerNews
Chameleon Android Banking Trojan Targets Users Through Fake CRM App
Aug 07, 2024Ravie LakshmananAndroid / Mobile Security, Cybersecurity researchers have lifted the lid on a new technique adopted by threat actors behind the Chameleon Android…
Apple’s New macOS Sequoia Tightens Gatekeeper Controls to Block Unauthorized Software
Aug 07, 2024Ravie LakshmananMalware / Software Security Apple on Tuesday announced an update to its next-generation macOS version that makes it a little more difficult…
INTERPOL Recovers $41 Million in Largest Ever BEC Scam in Singapore
Aug 06, 2024Ravie LakshmananEmail Security / Financial Fraud INTERPOL said it devised a “global stop-payment mechanism” that helped facilitate the largest-ever recovery of funds defrauded…
Insider Threats in The SaaS World
Aug 06, 2024The Hacker NewsSaaS Security / Threat Detection Everyone loves the double-agent plot twist in a spy movie, but it’s a different story when…
North Korean Hackers Moonstone Sleet Push Malicious JS Packages to npm Registry
Aug 06, 2024Ravie LakshmananMalware / Windows Security The North Korea-linked threat actor known as Moonstone Sleet has continued to push malicious npm packages to the…
New Android Spyware LianSpy Evades Detection Using Yandex Cloud
Aug 06, 2024Ravie LakshmananAndroid / Malware Users in Russia have been the target of a previously undocumented Android post-compromise spyware called LianSpy since at least…
Google Patches New Android Kernel Vulnerability Exploited in the Wild
Aug 06, 2024Ravie LakshmananMobile Security / Vulnerability Google has addressed a high-severity security flaw impacting the Android kernel that it has been actively exploited in…
New Zero-Day Flaw in Apache OFBiz ERP Allows Remote Code Execution
Aug 06, 2024Ravie LakshmananEnterprise Security / Vulnerability A new zero-day pre-authentication remote code execution vulnerability has been disclosed in the Apache OFBiz open-source enterprise resource…
Kazakh Organizations Targeted by ‘Bloody Wolf’ Cyber Attacks
Aug 05, 2024Ravie LakshmananNetwork Security / Threat Intelligence Organizations in Kazakhstan are the target of a threat activity cluster dubbed Bloody Wolf that delivers a…
Researchers Uncover Flaws in Windows Smart App Control and SmartScreen
Aug 05, 2024Ravie LakshmananThreat Intelligence / Vulnerability Cybersecurity researchers have uncovered design weaknesses in Microsoft’s Windows Smart App Control and SmartScreen that could enable threat…
How it Impacts Cybersecurity Law
Aug 05, 2024The Hacker NewsCybersecurity Law / Data Privacy The Loper Bright decision has yielded impactful results: the Supreme Court has overturned forty years of…