Russian cyber spy group APT28 backdoors Cisco routers via SNMP
The spy agency has been exploiting an old vulnerability that allows bad actors to gain access through simple network management protocol credentials.
Stories by Lucian Constantin
Hard-to-detect malware loader distributed via AI-generated YouTube videos
The new malware loads the Aurora infostealer and can avoid being executed in virtual machines or sandboxes for analysis.
Russian cyber spies hit NATO and EU organisations with new malware toolset
The APT29 espionage campaign is ongoing and the Polish military is urging potential targets to mitigate the risk.
Why you should patch the Windows QueueJumper vulnerability immediately
A critical flaw in Microsoft Message Queuing Service is likely to be exploited as many organisations could be unaware that it is active.
Google launches dependency API and curated package repository with security metadata
With the two new services, Google aims to help minimise risk from malicious code in the software supply chain.
Iranian APT group launches destructive attacks in hybrid Azure AD environments
The threat group MERCURY has the ability to move from on-premises to cloud Microsoft Azure environments.
Default static key in ThingsBoard IoT platform can give attackers admin access
Admins unable to update to the patched ThingsBoard version can manually change the default signing key.
CISA warns of critical flaws in ICS and SCADA software from multiple vendors
Some of the vulnerabilities could allow attackers to access systems with ease. Patches are not available for all the flaws.
New Rorschach ransomware hits with unique features and very fast encryption
Researchers say the recently discovered strain raises the bar by automating some intrusion processes and moving very quickly compared to other attacks.
Hackers steal crypto assets by defeating 2FA with rogue browser extension
The Rilide malware tricks victims into revealing their second-factor authentication to withdraw cryptocurrency in the background.
Spyware vendors use exploit chains to take advantage of patch delays in mobile ecosystem
Spyware vendors use a combination of zero-day exploits and known vulnerabilities. Google TAG researchers urge faster patching of mobile devices
APT group Winter Vivern exploits Zimbra webmail flaw to target government entities
Winter Vivern's campaign shows that threat actors can effectively take advantage of medium-severity vulnerabilities.
North Korean threat actor APT43 pivots back to strategic cyberespionage
The APT43 group is highly adept at using social engineering to target individuals and extract sensitive information.
Critical flaw in WooCommerce can be used to compromise WordPress websites
The vulnerability could allow unauthenticated administrative takeover of websites. WooCommerce has released an update.
Russian hacktivists deploy new AresLoader malware via decoy installers
The new malware loader can give attackers remote access and the ability to deliver other payloads.
Brand Post
Five Reasons Why the Channel Is Turning To AI-Powered Observability
By Bharat Bedi, SolarWinds, Head of Sales, APJ
Sponsored By
