Evasive QBot Malware Leverages Short-lived Residential IPs for Dynamic Attacks
Jun 01, 2023Ravie LakshmananCyber Threat / Network Security An analysis of the “evasive and tenacious” malware known as QBot has revealed that 25% of its…
Category: TheHackerNews
Experts Reveal Identity of Suspected Cybercrime Kingpin
Jun 01, 2023Ravie LakshmananCybercrime / Malware Cybersecurity researchers have unmasked the identity of one of the individuals who is believed to be associated with the…
New Zero-Click Hack Targets iOS Users with Stealthy Root-Privilege Malware
Jun 01, 2023Ravie LakshmananMobile Security / APT A previously unknown advanced persistent threat (APT) is targeting iOS devices as part of a sophisticated and long-running…
How Wazuh Improves IT Hygiene for Cyber Security Resilience
IT hygiene is a security best practice that ensures that digital assets in an organization’s environment are secure and running properly. Good IT hygiene includes…
Malicious PyPI Packages Using Compiled Python Code to Bypass Detection
Jun 01, 2023Ravie LakshmananProgramming / Supply Chain Researchers have discovered a novel attack on the Python Package Index (PyPI) repository that employs compiled Python code…
Improved BlackCat Ransomware Strikes with Lightning Speed and Stealthy Tactics
Jun 01, 2023Ravie LakshmananEndpoint Security / Encryption The threat actors behind BlackCat ransomware have come up with an improved variant that prioritizes speed and stealth…
N. Korean ScarCruft Hackers Exploit LNK Files to Spread RokRAT
Jun 01, 2023Ravie LakshmananCyber Threat / Malware Cybersecurity researchers have offered a closer look at the RokRAT remote access trojan that’s employed by the North…
Urgent WordPress Update Fixes Critical Flaw in Jetpack Plugin on Million of Sites
Jun 01, 2023Ravie LakshmananWebsite Security / WordPress WordPress has issued an automatic update to address a critical flaw in the Jetpack plugin that’s installed on…
Active Mirai Botnet Variant Exploiting Zyxel Devices for DDoS Attacks
Jun 01, 2023Ravie LakshmananNetwork Security / Exploit The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a recently patched critical security flaw in Zyxel…
Cybercriminals Targeting Apache NiFi Instances for Cryptocurrency Mining
May 31, 2023Ravie LakshmananServer Security / Cryptocurrency A financially motivated threat actor is actively scouring the internet for unprotected Apache NiFi instances to covertly install…
RomCom RAT Using Deceptive Web of Rogue Software Sites for Covert Attacks
May 31, 2023Ravie LakshmananCyber Threat / Malware The threat actors behind RomCom RAT are leveraging a network of fake websites advertising rogue versions of popular…
Dark Pink APT Group Leverages TelePowerBot and KamiKakaBot in Sophisticated Attacks
May 31, 2023Ravie LakshmananAdvanced Persistent Threat The threat actor known as Dark Pink has been linked to five new attacks aimed at various entities in…