+84949482065
A new Android surveillance tool called KoSpy has been discovered, which is linked to the North Korean APT group ScarCruft. KoSpy was distributed through the Google Play Store and Firebase…
Researchers at CTM360 warned of a new PlayPraetor malware campaign targeting Android users through fake Google Play Store sites, tricking them into downloading the banking trojan via malicious APK files.…
Microsoft has discovered a new variant of XCSSET, a sophisticated modular malware that targets macOS. It has enhanced obfuscation methods, updated persistence mechanisms, and new infection strategies. Ref https://www.microsoft.com/en-us/security/blog/2025/03/11/new-xcsset-malware-adds-new-obfuscation-persistence-techniques-to-infect-xcode-projects/
The Ballista botnet is exploiting an unpatched vulnerability (CVE-2023-1389) in TP-Link Archer routers. The malware can launch DoS/DDoS attacks and has affected various U.S., Australia, China, and Mexico sectors. More…
An unsafe deserialization vulnerability allows for remote code execution on Wazuh servers. The vulnerability can be triggered by anybody with API access (compromised dashboard or Wazuh servers in the cluster)…
In a Facebook post, the Sault Ste. Marie Tribe of Chippewa Indians writes that their IT systems suffered a ransomware attack on Sunday morning, February 9. “This attack impacted multiple…
On Friday, January 31, Tata Technologies reported a cybersecurity incident to the National Stock Exchange of India. According to the letter, a ransomware incident prompted the multinational company to temporarily…
On Sunday, January 26, New York Blood Center Enterprises (NYBCe) detected suspicious activity on their IT systems; third-party investigators confirmed the incident was ransomware. NYBCe provides blood products to more…
The South African Weather Service (SAWS), South Africa’s government-operated weather service, has been disrupted by a cyberattack. SAWS is a critical service for the country’s transportation and agricultural sectors as…
Sam Curry and Shubham Shah have released a report demonstrating a now-patched vulnerability in Starlink, Subaru's multipurpose onboard services system, that would have allowed an attacker to remotely manipulate any…
