Cybersecurity News

In a stark reminder of the dangers posed by insider threats, a former infrastructure engineer from an unnamed New Jersey company faces up to 35 years in prison for a failed extortion attempt. The incident, which occurred in November 2023, involved blocking administrator access to 254 servers and attempting to extort a ransom from his … Read more

In a significant victory against organized crime, Europol and law enforcement agencies from nine countries have successfully dismantled Ghost, a sophisticated encrypted communication platform. This operation marks another milestone in the ongoing battle against cyber-enabled criminal activities. The Rise and Fall of Ghost Ghost, operational since 2015, offered its users advanced security and anonymization features, … Read more

Cybersecurity researchers have uncovered an alarming trend in malware distribution tactics, with threat actors now exploiting GitHub as a platform to disseminate malicious software disguised as popular utilities and office applications. This development marks a significant escalation in an ongoing campaign that has already utilized over 1,300 domains to lure unsuspecting users into downloading harmful … Read more

Cybersecurity researchers have uncovered a critical remote code execution vulnerability in Kingsoft WPS Office for Windows, which is being actively exploited by the South Korean APT group known as APT-C-60. This sophisticated attack allows the deployment of the SpyGlace backdoor, raising significant concerns in the cybersecurity community. Understanding the WPS Office Vulnerability The vulnerability, identified … Read more

In a significant blow to international cybercrime, law enforcement agencies have successfully dismantled a sophisticated criminal network that exploited the automated phishing platform iServer to unlock stolen and lost smartphones. The operation, codenamed Kaerb, resulted in the identification of 483,000 victims worldwide and the arrest of 17 suspects across six countries. The Rise and Fall … Read more

In a recent cybersecurity incident, researchers at Dr.Web uncovered a sophisticated malware attack targeting a major Russian railway freight company. The attack, which ultimately failed, attempted to exploit a vulnerability in the popular Yandex Browser to establish a foothold in the compromised system. Anatomy of the Attack: From Phishing to Exploitation The attack began with … Read more

Cybersecurity researchers at Check Point have uncovered a sophisticated cryptocurrency theft operation masquerading as a legitimate Web3 tool on the Google Play Store. The malicious app, which impersonated the popular WalletConnect protocol, managed to accumulate over 10,000 downloads during its five-month presence on the official Android app marketplace. The Deceptive Nature of the Fake WalletConnect … Read more

In a startling revelation, cybersecurity researchers have uncovered critical vulnerabilities in Kia’s dealer portal that could have allowed malicious actors to remotely control key functions of Kia vehicles. This discovery highlights the growing importance of robust cybersecurity measures in the automotive industry. The Scope of the Vulnerability The security flaws, now patched, affected nearly all … Read more

In a concerning development for Android users worldwide, cybersecurity experts have uncovered the presence of the Necro Trojan in two popular applications on the Google Play Store. This malicious software, disguised within seemingly innocuous apps, has potentially affected over 11 million downloads, raising significant alarms in the cybersecurity community. The Resurgence of Necro: A Sophisticated … Read more

Cybersecurity experts at FACCT have uncovered a sophisticated attack vector utilizing email autoreply functions to distribute the Xmrig cryptocurrency miner. This malware, designed to covertly mine Monero, has been targeting major Russian internet companies, retailers, marketplaces, and financial institutions since late May. The Anatomy of the Attack FACCT has intercepted over 150 malicious email campaigns … Read more