Cybersecurity News

A recent investigation by Symantec has revealed a widespread security vulnerability affecting numerous popular iOS and Android applications. The critical flaw stems from developers inadvertently leaving unencrypted cloud service credentials, such as those for Amazon Web Services (AWS) and Microsoft Azure Blob Storage, within their app code. This oversight potentially exposes sensitive data of millions … Read more

Cybersecurity experts have uncovered a disturbing trend: hackers are increasingly exploiting the popular gaming platform Steam to orchestrate and coordinate their attacks. This novel tactic, known as Dead Drop Resolver, allows cybercriminals to effectively mask their malicious activities behind the facade of a legitimate resource, posing significant challenges for security professionals and users alike. Understanding … Read more

The prestigious hacking competition Pwn2Own has made its debut in Ireland, drawing cybersecurity experts from around the globe. The event’s first day proved to be a tour de force, with participants uncovering over 50 zero-day vulnerabilities in various Internet of Things (IoT) devices, collectively earning $500,000 in prize money. Day One Highlights: Impressive Exploits and … Read more

Cybersecurity experts at Secureworks have uncovered a disturbing evolution in the tactics employed by North Korean IT specialists. These individuals, known for covertly securing positions in American companies, have now escalated their activities to include data theft and extortion, threatening to leak sensitive information unless a ransom is paid. The Infiltration Tactic: A Long-Standing Concern … Read more

Microsoft has issued an urgent alert regarding potential system crashes and the dreaded “Blue Screen of Death” (BSOD) affecting specific ASUS laptop models when attempting to upgrade to Windows 11 version 24H2. This critical situation underscores the paramount importance of rigorous operating system update testing and highlights the cybersecurity risks associated with hardware incompatibility. Vulnerability … Read more

Cybersecurity experts are sounding the alarm as Iranian hacker groups ramp up their attacks on critical infrastructure organizations worldwide. These sophisticated threat actors are not only infiltrating networks but also selling access to other cybercriminals, significantly elevating the risk for companies and government institutions. The Scope and Targets of Iranian Cyber Attacks Intelligence agencies from … Read more

Cybersecurity researchers at Phylum have uncovered a new series of malicious packages in the npm repository, specifically designed to steal Ethereum private keys and gain unauthorized remote access to victims’ computers. This discovery highlights the escalating threat faced by cryptocurrency developers and users in the rapidly evolving landscape of cyber attacks. Attack Mechanism and Cybercriminal … Read more

In a startling turn of events, Cisco, a global leader in networking technology, has fallen victim to a significant security breach. The company’s DevHub portal, a crucial resource for developers, was compromised, leading to the exposure of sensitive data. This incident serves as a stark reminder of the ever-present threats in the digital landscape and … Read more

In a startling revelation, cybersecurity experts have uncovered a large-scale attack orchestrated by the North Korean hacking group ScarCruft in May 2024. The attackers leveraged a previously unknown vulnerability in Internet Explorer to infect target computers with the RokRAT malware, enabling the theft of sensitive data. This information comes from a joint report by South … Read more

Kaspersky Lab researchers have uncovered a sophisticated phishing campaign dubbed “Horns&Hooves,” targeting both individual users and businesses in Russia since spring 2023. This operation, named after a fictional organization in Ilf and Petrov’s novel “The Golden Calf,” employs clever tactics to blend in with legitimate user and company inquiries. Anatomy of the “Horns&Hooves” Attack The … Read more