Linux Malware WolfsBane and FireWood Linked to Gelsemium APT
New Linux malware WolfsBane and FireWood have been linked to Gelsemium APT, a cyber-espionage group targeting critical systems
Information Security Magazine
Vietnam’s Infostealer Crackdown Reveals VietCredCare and DuckTail
5 hours 24 minutes ago
Group-IB revealed key differences in VietCredCare and DuckTail infostealer malware targeting Facebook Business accounts
Google OSS-Fuzz Harnesses AI to Expose 26 Hidden Security Vulnerabilities
7 hours 9 minutes ago
One of these flaws detected using LLMs was in the widely used OpenSSL library
BianLian Ransomware Group Adopts New Tactics, Posing Significant Risk
7 hours 54 minutes ago
The BianLian ransomware group has shifted exclusively to exfiltration-based extortion and is deploying multiple new TTPs for initial access and persistence
Lumma Stealer Proliferation Fueled by Telegram Activity
10 hours 24 minutes ago
Spreading malware via Telegram channels allows threat actors to bypass traditional detection mechanisms and reach a broad, unsuspecting audience
A Fifth of UK Enterprises “Not Sure” If NIS2 Applies
11 hours 39 minutes ago
Over a fifth of large UK businesses aren’t sure of their compliance responsibilities under the new NIS2 directive
Five Charged in Scattered Spider Case
12 hours 24 minutes ago
Five men have been indicted in connection with crimes committed by the Scattered Spider group
Five Privilege Escalation Flaws Found in Ubuntu needrestart
1 day 4 hours ago
Five LPE flaws in Ubuntu’s needrestart utility enable attackers to gain root access in versions prior to 3.8
60% of Emails with QR Codes Classified as Spam or Malicious
1 day 5 hours ago
60% of QR code emails are spam according findings from Cisco Talos, who also identified attackers using QR code art to bypass security filters
Chinese APT Group Targets Telecom Firms Linked to Belt and Road Initiative
1 day 9 hours ago
CrowdStrike unveiled a new Chinese-aligned hacking group allegedly spying on telecom providers
Apple Issues Emergency Security Update for Actively Exploited Vulnerabilities
1 day 9 hours ago
Apple has urged customers to download the security updates, which address vulnerabilities relating to the JavaScriptCore and WebKit frameworks
OWASP Warns of Growing Data Exposure Risk from AI in New Top 10 List for LLMs
1 day 10 hours ago
OWASP has updated its Top 10 list of risks for LLMs and GenAI, upgrading several areas and introducing new categories
Hackers Hijack Jupyter Servers for Sport Stream Ripping
1 day 11 hours ago
Aqua Security has observed threat actors using compromised Jupyter servers in a bid to illegally stream sporting events
One Deepfake Digital Identity Attack Strikes Every Five Minutes
1 day 12 hours ago
Entrust claims deepfakes are driving a surge in digital identity fraud
Cybercriminals Exploit Weekend Lull to Launch Ransomware Attacks
1 day 13 hours ago
Ransomware groups are targeting weekends and holidays to exploit understaffed security teams in order to get the best chance of a pay day
CISA Chief Jen Easterly Set to Step Down on January 20
2 days 4 hours ago
Easterly and her Deputy Director Nitin Natarajan are expected to leave office before President-elect Trump names a new leadership
T-Mobile Breached in Major Chinese Cyber-Attack on Telecoms
2 days 4 hours ago
T-Mobile was hit by Salt Typhoon, a Chinese cyber-espionage group targeting US and global telecom firms
Helldown Ransomware Expands to Target VMware and Linux Systems
2 days 5 hours ago
Helldown ransomware has expanded its reach to target Linux and VMware systems, exploiting Zyxel firewall vulnerabilities and exfiltrating data
Palo Alto Networks Patches Critical Firewall Vulnerability
2 days 6 hours ago
Palo Alto advised users to patch urgently as the vulnerability is critical and actively exploited in the wild
Ransomware Gangs on Recruitment Drive for Pen Testers
2 days 8 hours ago
Ransomware groups are recruiting pen testers from the dark web to expand their operations, as revealed by Cato Network's Q3 2024 SASE Threat Report
Checked
1 hour 54 minutes ago