General Security News
-
MQsTTang – Chinese Hackers Using Custom Malware To Evade AV Detection
In a recent analysis, MQsTTang, a newly designed custom backdoor, has been scrutinized by ESET researchers. After a thorough investigation, the...
-
Wireshark 4.0.4 Released – What’s New!!
The latest release of Wireshark, version 4.0.4, has been launched by the Wireshark Team. This new version offers a host of improvements and...
-
Underground Carding Marketplace BidenCash Leaked 2 Million Credit Cards
BidenCash, a new entrant in the underground carding business, has announced a 1-year anniversary promotion in which it is offering the data of 2...
-
Security and IT Teams No Longer Need To Pay For SaaS-Shadow IT Discovery
This past January, a SaaS Security Posture Management (SSPM) company named Wing Security (Wing) made waves with the launch of its free SaaS-Shadow...
-
New FiXS ATM Malware Targeting Mexican Banks
A new ATM malware strain dubbed FiXS has been observed targeting Mexican banks since the start of February 2023. "The ATM malware is hidden inside...
-
New Flaws in TPM 2.0 Library Pose Threat to Billions of IoT and Enterprise Devices
A pair of serious security defects has been disclosed in the Trusted Platform Module (TPM) 2.0 reference library specification that could...
-
BlackLotus UEFI Bootkit – First Known Malware to Bypass Secure Boot Defenses
The cybersecurity analysts at ESET recently reported that BlackLotus, a sneaky bootkit for UEFI (Unified Extensible Firmware Interface), has...
-
U.S. Cybersecurity Agency Raises Alarm Over Royal Ransomware's Deadly Capabilities
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has released a new advisory about Royal ransomware, which emerged in the threat...
-
Hackers Exploit Containerized Environments to Steal Proprietary Data and Software
A sophisticated attack campaign dubbed SCARLETEEL is targeting containerized environments to perpetrate theft of proprietary data and software....
-
New Cryptojacking Campaign Leverages Misconfigured Redis Database Servers
Misconfigured Redis database servers are the target of a novel cryptojacking campaign that leverages a legitimate and open source command-line file...
-
R3NIN Sniffer Malware Stealing Credit Card Data from E-commerce Consumers
Credit card sniffers or online skimmers are a type of harmful software that cybercriminals often create using the JavaScript programming language....
-
U.S. Marshals Service Hacked – Sensitive Information Leaked
The theft of critical law enforcement data is currently under investigation by the U.S. Marshals Service (USMS), triggered by a ransomware attack...