Cybersecurity News

Cybersecurity researchers have identified a sophisticated phishing campaign leveraging public interest in Ross Ulbricht’s clemency petition. The operation, classified as a ClickFix attack (also known as ClearFake or OneDrive Pastejacking), demonstrates an advanced approach to social engineering and malware distribution through PowerShell manipulation. Technical Analysis of the ClickFix Campaign Infrastructure The attack chain, first documented … Read more

A groundbreaking investigation by cybersecurity researchers has unveiled the complex economics of cybercrime markets, analyzing over 20,000 listings across major dark web forums and marketplaces. This comprehensive study provides unprecedented insight into the pricing structures of malicious tools and services, revealing the true operational costs behind modern cyber attacks. Ransomware Dominates the Malware Economy The … Read more

Cybersecurity researchers at Malwarebytes have uncovered a sophisticated phishing campaign specifically targeting Google Ads account owners. The operation demonstrates an advanced level of social engineering by leveraging Google’s own advertising platform and infrastructure to distribute malicious advertisements, making detection particularly challenging. Technical Sophistication of the Attack Vector The attack methodology reveals a deep understanding of … Read more

Cybersecurity researchers have discovered a significant vulnerability in Cloudflare’s Content Delivery Network (CDN) that enables threat actors to determine the approximate geographical location of users on major platforms including Signal, Discord, and X (formerly Twitter). The security flaw, which exploits image caching mechanisms, requires no direct interaction from potential targets, raising serious privacy concerns across … Read more

Security researchers at ESET have uncovered a critical vulnerability (CVE-2024-7344) in UEFI Secure Boot, a fundamental security mechanism designed to protect systems during startup. This severe security flaw enables attackers to deploy malicious bootloaders even when Secure Boot protection is active, potentially compromising system integrity at its most basic level. Understanding the Technical Impact The … Read more

Security researchers at SpearTip have uncovered a sophisticated large-scale brute force attack campaign targeting Microsoft 365 users, achieving an unprecedented 9.7% success rate in account compromises. The attack leverages the high-performance FastHTTP library written in Go to launch rapid-fire attacks against Azure Active Directory Graph API, representing a significant evolution in threat actors’ capabilities. Technical … Read more

Cybersecurity researchers at Cyfirma have uncovered a sophisticated malware campaign orchestrated by the notorious APT group DoNot Team (also known as APT-C-35 and Viceroy Tiger). The campaign features two malicious Android applications – Tanzeem and Tanzeem Update – which demonstrate nearly identical functionality with slight variations in their user interface design. Advanced Malware Masquerading as … Read more

Cisco has released an urgent security update addressing a critical vulnerability in its Meeting Management software, rated with a near-maximum CVSS score of 9.9. The severe security flaw enables potential attackers with basic system access to elevate their privileges to administrator level, posing significant risks to enterprise infrastructure security. Critical Vulnerability Analysis: CVE-2025-20156 The high-severity … Read more

Microsoft has released its most comprehensive security update in seven years, addressing over 160 vulnerabilities across its product lineup. This January 2024 patch Tuesday marks a significant milestone, with the number of fixes more than doubling the typical January release volume, according to analysis by Trend Micro Zero Day Initiative. Critical Zero-Day Vulnerabilities Under Active … Read more

Security researchers at Infoblox have uncovered a sophisticated cybersecurity threat involving approximately 13,000 compromised MikroTik devices forming a massive botnet. The network leverages misconfigured DNS Sender Policy Framework (SPF) settings to bypass security controls and facilitate malware distribution, affecting more than 20,000 domains. Sophisticated Attack Vector and Malware Distribution Chain The malicious network’s activities were … Read more