General Security News
-
Hack-for-Hire Group Targets Travel and Financial Entities with New Janicab Malware Variant
Travel agencies have emerged as the target of a hack-for-hire group dubbed Evilnum as part of a broader campaign aimed at legal and financial...
-
Researchers Detail New Attack Method to Bypass Popular Web Application Firewalls
A new attack method can be used to circumvent web application firewalls (WAFs) of various vendors and infiltrate systems, potentially enabling...
-
North Korean APT37 Hackers Exploited IE Zero-Day Vulnerability Remotely
Researchers from the Google Threat Analysis group uncovered an incident associated with the north Korean APT37 hackers group that they have...
-
Vice Society Ransomware Gang Attack Schools with Multiple Ransomware Families
According to a joint Cybersecurity Advisory (CSA) from the FBI, CISA, and MS-ISAC published in September 2022, Vice Society actors have recently...
-
MuddyWater Hackers Target Asian and Middle East Countries with Updated Tactics
The Iran-linked MuddyWater threat actor has been observed targeting several countries in the Middle East as well as Central and West Asia as part...
-
Researchers Uncover Darknet Service Allowing Hackers to Trojanize Legit Android Apps
Researchers have shed light on a new hybrid malware campaign targeting both Android and Windows operating systems in a bid to expand its pool of...
-
COVID-bit: New COVert Channel to Exfiltrate Data from Air-Gapped Computers
An unconventional data exfiltration method leverages a previously undocumented covert channel to leak sensitive information from air-gapped...
-
Secure Your Network From Advanced Cyber Threats With Next Gen SIEM & Open XDR
Security information and event management , or SIEM, was introduced some 17 years ago. It makes sense for a next-gen SIEM to emerge now, or it...
-
Kali Linux 2022.4 Released – What’s New!!
Offensive Security released a new version of its Penetration testing distro Kali Linux 2022.4, with several new features, hacking Tools, Kali...
-
CryWiper Malware Masquerades as Ransomware & Purposely Destroys Data
CryWiper, a previously unknown data wiper that masquerades as ransomware, has been recently discovered and is spreading around the internet....
-
Google Warns of Internet Explorer Zero-Day Vulnerability Exploited by ScarCruft Hackers
An Internet Explorer zero-day vulnerability was actively exploited by a North Korean threat actor to target South Korean users by capitalizing on...
-
Iranian Hackers Strike Diamond Industry with Data-Wiping Malware in Supply-Chain Attack
An Iranian advanced persistent threat (APT) actor known as Agrius has been attributed as behind a set of data wiper attacks aimed at diamond...