Cybersecurity News

Cybersecurity experts have uncovered a sophisticated attack on a Taiwanese university, where threat actors deployed a previously unknown backdoor named Msupedge. The attackers exploited a recently patched remote code execution (RCE) vulnerability in PHP, identified as CVE-2024-4577, to compromise Windows systems within the educational institution. Understanding the PHP Vulnerability The CVE-2024-4577 vulnerability, disclosed in early … Read more

Cybersecurity experts at Bi.Zone have identified a concerning trend in the first quarter of 2024: a significant increase in attacks on Russian companies using modified commercial malware. This surge comes despite developers’ attempts to restrict their software’s use against organizations in CIS countries. The Growing Threat of Adapted Commercial Malware According to the analysis, 73% … Read more

Cybersecurity experts at ThreatFabric have uncovered a new version of the notorious Android banking trojan, Octo. Dubbed Octo2, this evolved malware strain is currently targeting European countries, disguising itself as popular applications such as NordVPN, Google Chrome, and Europe Enterprise. Enhanced Features and Improved Resilience Octo2 represents a significant upgrade from its predecessor, boasting improved … Read more

In a significant blow to cybercriminal operations, the German Federal Criminal Police Office (BKA) has successfully shut down 47 cryptocurrency exchange services operating within the country. This large-scale operation, dubbed “Final Exchange,” targeted platforms that facilitated anonymous transactions, effectively enabling money laundering activities for various cybercriminal groups, including ransomware operators. The Role of Anonymous Exchanges … Read more

Microsoft’s September 2023 Patch Tuesday has arrived, bringing with it a substantial security update that addresses 79 vulnerabilities across various Microsoft products. This comprehensive patch includes fixes for four zero-day vulnerabilities, three of which are actively being exploited by malicious actors in real-world attacks. Critical Vulnerabilities and Zero-Day Exploits Among the 79 vulnerabilities patched, seven … Read more

In a startling development that underscores the ongoing vulnerabilities in the cryptocurrency sector, Singapore-based crypto platform BingX fell victim to a sophisticated cyber attack, resulting in the theft of over $44 million in digital assets. This incident, occurring in late September 2024, ranks among the most significant cryptocurrency heists of the year and serves as … Read more

In a significant move for the world of online privacy and security, the Tor Project and Tails have announced their intention to merge. This collaboration between two of the most prominent players in digital anonymity aims to consolidate resources, reduce overhead, and enhance their joint efforts in developing a free internet that protects users from … Read more

Mozilla, the organization behind the popular Firefox browser, has come under scrutiny for its recently implemented Privacy-Preserving Attribution (PPA) feature. The European digital rights organization NOYB (None Of Your Business) has filed a complaint with the Austrian data protection authority, alleging that this new functionality violates user privacy and GDPR regulations. Understanding Privacy-Preserving Attribution PPA, … Read more

In a concerning development for the tech industry, Dell Technologies is currently investigating claims of a data breach that allegedly exposed sensitive information of approximately 10,000 employees and partners. The incident, described as a “minor data leak” by the threat actor, reportedly occurred in September 2024 and has raised significant cybersecurity concerns. Details of the … Read more

MoneyGram, a leading international money transfer service provider, has fallen victim to a significant cybersecurity breach, forcing the company to temporarily suspend its operations globally. This incident has sent shockwaves through the financial services industry and raised concerns about the security of digital payment systems. The Extent of the Breach The attack, first detected on … Read more