General Security News
-
Toyota Data Breach – Over 2 Million Customers Data Exposed
A part of the data that Toyota Motor Corporation entrusted to Toyota Connected Corporation to handle was found to have been made public as a...
-
Hackers Adapting New Unique Way to Overcome Microsoft Default Macro Block
There has been a shift in threat actor behavior in recent years. Observations by threat researchers showed a peak in their change of activities....
-
Hackers Using Golang Variant of Cobalt Strike to Target Apple macOS Systems
A Golang implementation of Cobalt Strike called Geacon is likely to garner the attention of threat actors looking to target Apple macOS systems....
-
Industrial Cellular Routers at Risk: 11 New Vulnerabilities Expose OT Networks
Several security vulnerabilities have been disclosed in cloud management platforms associated with three industrial cellular router vendors that...
-
New Ransomware Gang RA Group Hits U.S. and South Korean Organizations
A new ransomware group known as RA Group has become the latest threat actor to leverage the leaked Babuk ransomware source code to spawn its own...
-
DangerousPassword – Hackers Use New Attack Pattern to Infect Devices With Malware
Recently, it has been observed by JPCERT/CC that threat actors are actively targeting the cryptocurrency exchanges linked to the DangerousPassword...
-
Millions of Android Phones Comes Pre-Infected with Malware Firmware
Researchers from Trend Micro at Black Hat Asia claim that criminals have pre-infected millions of Android devices with malicious firmware before...
-
WordPress Plugin Flaw Let Attackers Hijack 1m Websites
The widely-used Elementor plugin, “Essential Addons for Elementor,” has been discovered to have a security flaw that enables unauthorized users to...
-
CLR SqlShell Malware Targets MS SQL Servers for Crypto Mining and Ransomware
Poorly managed Microsoft SQL (MS SQL) servers are the target of a new campaign that's designed to propagate a category of malware called CLR...
-
Former Ubiquiti Employee Gets 6 Years in Jail for $2 Million Crypto Extortion Case
A former employee of Ubiquiti has been sentenced to six years in jail after he pleaded guilty to posing as an anonymous hacker and a whistleblower...
-
New Phishing-as-a-Service Platform Lets Cybercriminals Generate Convincing Phishing Pages
A new phishing-as-a-service (PhaaS or PaaS) platform named Greatness has been leveraged by cybercriminals to target business users of the Microsoft...
-
Github Announced Push Protection Feature Free for all Public Repositories
GitHub is one of the largest code repository platforms developers use worldwide. Developers belonging to an organization, individual developers,...