A series of critical vulnerabilities have been discovered in the Common UNIX Printing System (CUPS), potentially allowing attackers to execute arbitrary code on vulnerable machines. These security flaws, identified by Italian cybersecurity researcher Simone Margaritelli, affect various components of the popular print server used in Linux and Unix-like operating systems. Understanding the CUPS Vulnerabilities The … Read more

In a concerning development for cybersecurity professionals, researchers at HP Wolf Security have uncovered evidence of artificial intelligence (AI) being used to create malicious code. This discovery comes from a recent analysis of attacks targeting French users, where the notorious AsyncRAT malware was distributed using what appears to be AI-generated code. The Rise of AI … Read more

The cybersecurity community is on high alert as two critical vulnerabilities in Ivanti products have come to light, posing significant risks to organizations worldwide. A proof-of-concept (PoC) exploit for a remote code execution vulnerability in Ivanti Endpoint Manager has been released, while another vulnerability in Ivanti Cloud Services Appliance (CSA) is reportedly under active exploitation. … Read more

Cybersecurity experts at Palo Alto Networks have uncovered a concerning development in the world of open-source software. Several packages in the Python Package Index (PyPI) repository have been found to contain PondRAT, a malware variant linked to North Korean hacking groups. This discovery highlights the ongoing threat to software supply chains and the need for … Read more

In a stark reminder of the dangers posed by insider threats, a former infrastructure engineer from an unnamed New Jersey company faces up to 35 years in prison for a failed extortion attempt. The incident, which occurred in November 2023, involved blocking administrator access to 254 servers and attempting to extort a ransom from his … Read more

In a significant victory against organized crime, Europol and law enforcement agencies from nine countries have successfully dismantled Ghost, a sophisticated encrypted communication platform. This operation marks another milestone in the ongoing battle against cyber-enabled criminal activities. The Rise and Fall of Ghost Ghost, operational since 2015, offered its users advanced security and anonymization features, … Read more

Cybersecurity researchers have uncovered an alarming trend in malware distribution tactics, with threat actors now exploiting GitHub as a platform to disseminate malicious software disguised as popular utilities and office applications. This development marks a significant escalation in an ongoing campaign that has already utilized over 1,300 domains to lure unsuspecting users into downloading harmful … Read more

Cybersecurity researchers have uncovered a critical remote code execution vulnerability in Kingsoft WPS Office for Windows, which is being actively exploited by the South Korean APT group known as APT-C-60. This sophisticated attack allows the deployment of the SpyGlace backdoor, raising significant concerns in the cybersecurity community. Understanding the WPS Office Vulnerability The vulnerability, identified … Read more

In a significant blow to international cybercrime, law enforcement agencies have successfully dismantled a sophisticated criminal network that exploited the automated phishing platform iServer to unlock stolen and lost smartphones. The operation, codenamed Kaerb, resulted in the identification of 483,000 victims worldwide and the arrest of 17 suspects across six countries. The Rise and Fall … Read more

In a recent cybersecurity incident, researchers at Dr.Web uncovered a sophisticated malware attack targeting a major Russian railway freight company. The attack, which ultimately failed, attempted to exploit a vulnerability in the popular Yandex Browser to establish a foothold in the compromised system. Anatomy of the Attack: From Phishing to Exploitation The attack began with … Read more