Stay up-to-date with the latest cybersecurity news and developments in the cybersecurity landscape. Be the first to know about the latest threats, current innovations, and major trends in the cyber universe. Check our Cyber News section for the freshest information.
Cybersecurity researchers at Cisco Talos have raised alarms about the misuse of MacroPack, a framework originally designed for red team operations, now being exploited by malicious actors to deploy harmful payloads. This development underscores the ongoing challenge in cybersecurity: tools created for defense can often be repurposed for attacks. Understanding MacroPack: A Double-Edged Sword MacroPack, … Read more
In a surprising turn of events, cybersecurity researchers at Veriti Research have uncovered a scheme where hackers are becoming victims of their own tactics. The discovery revolves around a fake OnlyFans account hacking tool that infects its users with the Lumma infostealer malware, highlighting the risks inherent in the cybercriminal ecosystem. The Lure of OnlyFans … Read more
In a significant development for iPad users, Apple has temporarily suspended the distribution of iPadOS 18 for iPad Pro models featuring the M4 chip. This decision comes in the wake of numerous reports from device owners experiencing a critical issue where the update renders their devices inoperable, commonly referred to as “bricking.” The Extent and … Read more
Cybersecurity researchers at Binarly have uncovered alarming new details about the PKfail vulnerability, initially discovered in the UEFI supply chain last summer. The problem is far more widespread and severe than originally anticipated, potentially compromising the security of millions of devices worldwide. The Scope of the PKfail Vulnerability According to Binarly’s latest findings, approximately 8.5% … Read more
A new malicious campaign has been uncovered by Proofpoint, revealing a sophisticated cyber threat that exploits Google Sheets to operate the Voldemort backdoor. This advanced persistent threat (APT) is designed for information gathering and delivering additional payloads, marking a significant evolution in cyber espionage tactics. The Anatomy of the Attack The campaign, which began on … Read more
A sophisticated cybersecurity threat has emerged, targeting GitHub users with a malicious campaign designed to spread the Lumma Stealer malware. This information-stealing malware is being distributed through deceptive comments on various GitHub projects, masquerading as legitimate bug fixes. The Anatomy of the Attack The attack was initially discovered by a contributor to the teloxide rust … Read more
In a alarming cybersecurity development, McAfee researchers have uncovered a sophisticated malware strain called SpyAgent, which is targeting Android users’ cryptocurrency wallets. This malicious software employs advanced optical character recognition (OCR) technology to steal recovery phrases from screenshots, potentially compromising users’ digital assets. The SpyAgent Threat: Scope and Distribution McAfee’s analysis reveals that at least … Read more
In a shocking revelation, cybersecurity researchers have uncovered a critical vulnerability in a key air transport security system, potentially allowing unauthorized individuals to bypass airport screenings and access aircraft cockpits. This discovery highlights the ongoing challenges in maintaining robust security measures in the aviation industry. The Vulnerability: A Breach in FlyCASS Cybersecurity experts Ian Carroll … Read more
Cybersecurity researchers have uncovered a sophisticated attack vector that exploits a common browser feature to steal user credentials. This new threat, dubbed the “Kiosk Mode Browser Locker,” demonstrates how cybercriminals are constantly evolving their tactics to bypass security measures and compromise user data. Understanding the Kiosk Mode Exploit Kiosk mode is typically used for public … Read more
A new cybersecurity tool called Windows Downdate has emerged, posing a significant threat to Windows operating systems. Developed by SafeBreach expert Alon Leviev, this open-source Python-based utility enables downgrade attacks on Windows 10, Windows 11, and Windows Server, potentially exposing systems to previously patched vulnerabilities. How Windows Downdate Works Windows Downdate allows users to roll … Read more
