+84949482065
A new Linux malware that can go undetected on infected machines is being used to target the financial sector in Latin America. Once the “Symbiote” malware infects the machine, it…
A WooCommerce credit card skimmer was found leveraging Telegram bot to pilfer the stolen data and later, sell it on the black market - resulting in fake transactions on victims’…
Operation First Light 2022 led by Interpol, with coordination from 76 countries, arrested 2,000 social engineering attackers and seized $50 million. It identified 3,000 suspects, raided 1,770 call centers, and…
A Proof-of-Concept (PoC) devised by Proofpoint researchers demonstrates that ransomware actors can abuse the document versioning settings in OneDrive and SharePoint Online services to encrypt files. More https://www.proofpoint.com/us/blog/cloud-security/proofpoint-discovers-potentially-dangerous-microsoft-office-365-functionality
Cloudflare reported another record-breaking HTTPS-based DDoS attack, which reached a peak of 26 million requests per second. The botnet comprised only 5,067 devices. Ref https://www.theregister.com/2022/06/14/cloudflare-record-ddos-attack/
A report from managed security operations center (SOC) provider Expel found a spike in business email compromise (BEC) attacks involving Microsoft Office 365 (O365) in the first quarter of 2022.…
Zscaler spotted a new malware loader, named PureCrypter, used to disseminate malware families such as Agent Tesla, Snake Keylogger, AsyncRAT, DCRat, and others. Ref https://thehackernews.com/2022/06/researchers-detail-purecrypter-loader.html
The BlackCat ransomware group started leaking individual victim websites on the public internet, for the data to be searchable by the victims’ employees and customers. More info https://krebsonsecurity.com/2022/06/ransomware-group-debuts-searchable-victim-data/
ExpressVPN says it will move its servers out of India due to new rules recently introduced by India’s Computer Emergency Response Team (CERT-In). ExpressVPN says it cannot comply with the…
Atlassian has released an advisory warning of a critical unauthenticated remote code execution vulnerability in its Confluence Server and Data Center. The flaw, which affects all currently supported versions of…
