Category: Virus & Malware

December 6, 2023

A years-old Bluetooth authentication bypass vulnerability allows miscreants to connect to Apple, Android and Linux devices and inject keystrokes to run arbitrary commands, according to a software engineer at drone technology firm SkySafe. The bug, tracked as CVE-2023-45866, doesn’t require […]

November 29, 2023

The UK government plans to introduce new legislation to ban SIM farms, which it views as a widely abused means for carrying out cyber fraud. Upon introduction of the criminal offense, violating it will incur a penalty of an unlimited […]

November 16, 2023

Royal Mail’s parent International Distributions Services has revealed for the first time the infrastructure costs associated with its January ransomware attack. LockBit’s attack has driven costs up across various areas of the Brit business, but improvements to the corporation’s Heathrow […]

November 16, 2023

Affiliates of the ALPHV/BlackCat ransomware-as-a-service operation are turning to malvertising campaigns to establish an initial foothold in their victims’ systems. Paid adverts for popular business software such as Slack and Cisco AnyConnect are being used to lure corporate victims into […]

November 13, 2023

The Boeing Company, commonly known as Boeing, is one of the world’s largest aerospace manufacturers and defense contractors. In 2022, Boeing recorded $66.61 billion in sales, the aerospace giant has 156,000 (2022). At the end of October, the Lockbit ransomware […]

November 10, 2023

Microsoft reported the exploitation of a zero-day vulnerability, tracked as CVE-2023-47246, in the SysAid IT support software in limited attacks. The IT giant linked the attacks to the Clop ransomware gang (aka Lace Tempest). The company reported the flaw to […]

November 10, 2023

The hacktivist group Anonymous Sudan claimed responsibility for the massive distributed denial-of-service (DDoS) attack that took down the website of Cloudflare. Cloudflare confirmed that a DDoS attack took down its website for a few minutes and ponited out that it […]

November 9, 2023

Intel has been sued by a handful of PC buyers who claim the x86 goliath failed to act when informed five years ago about faulty chip instructions that allowed the recent Downfall vulnerability, and during that period sold billions of […]

November 7, 2023

A brand-new macOS malware strain from North Korean state-sponsored hackers has been spotted in the wild. Dubbed “ObjCShellz” by researchers at Jamf, the malware is thought to be a later-stage payload in the multi-stage RustBucket campaign targeting organizations in the […]

October 25, 2023

Cybercriminals have Canada in the crosshairs, with five Ontario hospitals and a fresh Spamoflague disinformation campaign targeting “dozens” of Canadian government officials, including the PM. The cyberattack against five southern Ontario hospitals has shut down IT systems, forcing them to […]

October 20, 2023

State-sponsored North Korean hackers have significantly intensified their focus on the IT sector in recent years, by infiltrating firms developing software and companies lookind for IT workers. North Korean hackers targeting developers Microsoft has outlined on Wednesday how North Korea-backed […]

October 18, 2023

An ethical hacker has exploited a bug in the way X truncates URLs to take over a CIA Telegram channel used to receive intelligence. Kevin McSheehan, who uses the online handle “Pad,” spotted the issue after hovering over the link […]

October 18, 2023

There are multiple fake “update your browser” campaigns active right now that are aiming to trick people into installing all kinds of malware on their devices. A new report from Proofpoint observed at least four different campaigns, delivering different malicious […]

October 16, 2023

Hackers are reportedly abusing compromised Skype accounts in an attempt to distribute the DarkGate malware. In a new report, Trend Micro researchers claimed multiple Skype accounts had been compromised and then used to share a VBA loader script attachment. The […]

October 12, 2023

In recent months, the cybersecurity world has been shaken by the revelation of a sophisticated and unprecedented cyber threat: the HTTP/2 Rapid Reset Zero-Day vulnerability. This exploit, tracked as CVE-2023-44487, enabled cybercriminals to orchestrate what has been dubbed the largest […]

October 11, 2023

The Adobe Acrobat and Reader issue is CVE-2023-21608, a use-after-free vulnerability which can be exploited to achieve remote code execution (RCE) with the privileges of the current user. Adobe released patches for this flaw in January 2023, but numerous proof-of-concept […]

October 10, 2023

The time taken by cyber attackers between gaining an initial foothold in a victim’s environment and deploying ransomware has fallen to 24 hours, according to a study. In nearly two-thirds of cases analysed by Secureworks’ researchers, cybercriminals were deploying ransomware […]

October 6, 2023

Most of us dislike cyber criminals, but not many of us dislike them quite as much as Anthony Cusimano. The director of technical marketing at storage company Object First was on the sharp end of an identity theft attack after […]

October 6, 2023

CDW, one of the largest resellers on the planet, will have its data leaked by LockBit after negotiations over the ransom fee broke down, a spokesperson for the cybercrime gang says. Speaking to The Register, the spokesperson, who uses the […]

October 4, 2023

Cybersecurity journalist Brian Krebs reported last week that a website where the Snatch ransomware group names victims had been leaking data, including visitor IPs and information on internal operations. According to Krebs, the leaked data suggests that the Snatch cybercrime […]