Alert: Chinese Hacking Group StormBamboo Breaches ISP to Poison Software Updates
In a significant cybersecurity breach, a Chinese hacking group identified as StormBamboo has compromised an undisclosed internet service provider (ISP), […]
Unmasking BITSLOTH: The Stealthy Windows Backdoor Exploiting BITS
In a world where digital threats are constantly evolving, staying ahead of cybercriminals is a perpetual challenge. However, there’s a
Hackers Turn Misconfigured Jupyter Notebooks into a Force for Good with Repurposed Minecraft DDoS Tool
Cybersecurity researchers have recently uncovered a method to utilize previously exploited Jupyter Notebooks for a beneficial purpose, harnessing their potential
Over 1 Million Domains Vulnerable to New ‘Sitting Ducks’ Domain Hijacking Technique
The cybersecurity landscape has been shaken by a newly identified threat targeting over a million domains. Known as the Sitting
Google Chrome Introduces App-Bound Encryption to Secure Cookies Against Malware
Google has introduced a new feature to its Chrome browser designed to thwart information-stealing malware. This latest enhancement, known as
DigiCert to Revoke Over 83,000 SSL Certificates Due to Critical Domain Validation Error
In a significant move impacting numerous websites and online services, certificate authority (CA) DigiCert has announced that it will be
Mandrake Spyware Resurfaces in Google Play Store: Over 32,000 Devices Infected
A sophisticated Android spyware known as Mandrake has resurfaced, concealed within five seemingly benign applications available on the Google Play
Major Acronis Vulnerability Exploited in the Wild: Update Your Systems Now
Acronis, a well-known cybersecurity company, has issued an urgent warning about a critical security flaw in its Cyber Infrastructure (ACI)
Stargazer Goblin’s Malware Network: 3,000 Fake GitHub Accounts Uncovered
A new threat actor, dubbed Stargazer Goblin, has orchestrated a sophisticated malware distribution network by creating over 3,000 fake GitHub
French Authorities Lead Major Operation to Eliminate PlugX Malware from Infected Systems
French judicial authorities, in collaboration with Europol, have initiated a large-scale “disinfection operation” aimed at purging the notorious PlugX malware
CrowdStrike Alert: New Phishing Scam Exploiting Recent Falcon Sensor Update Mishap
CrowdStrike has issued an alert regarding a new phishing campaign targeting German customers. This campaign, orchestrated by an unidentified threat
Critical Vulnerability in Docker Engine Exposes Systems to Authorization Bypass Attacks
In a significant development, Docker has disclosed a critical vulnerability in certain versions of its Docker Engine, a popular platform
Telegram App Vulnerability Exploited to Spread Malware via Videos
A zero-day security flaw in Telegram’s mobile app for Android, dubbed EvilVideo, was exploited to spread malware disguised as harmless-looking
Google’s Strategic Shift: Keeping Third-Party Cookies in Chrome and Introducing New Privacy Controls
In a surprising shift, Google has announced it will not phase out third-party tracking cookies in its Chrome web browser.
SocGholish Malware Hijacks BOINC Platform: A New Frontier in Cyberattacks
In a troubling development, the SocGholish malware, also known as FakeUpdates, has been found to deploy a remote access trojan