Void Banshee APT Exploits Microsoft MHTML Flaw to Spread Atlantida Stealer

An advanced persistent threat (APT) group called Void Banshee has been observed exploiting a recently disclosed security flaw in the Microso...
Read More

CISA Warns of GeoServer RCE Vulnerability Under Active Exploitation

The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent alert regarding a critical Remote Code Execution (RCE) vuln...
Read More

Match Systems’ CEO Andrei Kutin Provides Insight on DMM Bitcoin Breach

On May 31, 2024, as a result of the hacking 4502.9 BTC (worth approximately $308M) were stolen from the Japanese exchange Bitcoin.DMM.com. T...
Read More

Singapore Banks to Phase Out OTPs for Online Logins Within 3 Months

Retail banking institutions in Singapore have three months to phase out the use of one-time passwords (OTPs) for authentication purposes whe...
Read More

Cyber Security News Weekly Round-Up (Vulnerabilities, Cyber Attacks, Threats & New Stories)

The weekly  cyber security newsletter is a brief summary of what the most recent threats, vulnerabilities, and innovations in the digital se...
Read More

AT&T Confirms Data Breach Affecting Nearly All Wireless Customers

American telecom service provider AT&T has confirmed that threat actors managed to access data belonging to "nearly all" of it...
Read More

DarkGate Malware Exploits Samba File Shares in Short-Lived Campaign

Cybersecurity researchers have shed light on a short-lived DarkGate malware campaign that leveraged Samba file shares to initiate the infect...
Read More

FishXProxy Fuels Phishing Attacks with Clever Deceptive Attacks

Imagine receiving an email that looks legitimate, down to the last detail. This is the deceptive power of the new FishXProxy Phishing Kit, a...
Read More

4000+ Domains Used By FIN7 Actors Mimic Popular Brands

Russian-linked FIN7 (aka Sangria Tempest, ATK32, Carbon Spider, Coreid, ELBRUS, G0008, G0046, and GOLD NIAGARA) is a financial cybercrime gr...
Read More

60 New Malicious Packages Uncovered in NuGet Supply Chain Attack

Threat actors have been observed publishing a new wave of malicious packages to the NuGet package manager as part of an ongoing campaign tha...
Read More

Streamlined Security Solutions: PAM for Small to Medium-sized Businesses

Today, all organizations are exposed to the threat of cyber breaches, irrespective of their scale. Historically, larger companies were frequ...
Read More

New Poco RAT Targets Spanish-Speaking Victims in Phishing Campaign

Spanish language victims are the target of an email phishing campaign that delivers a new remote access trojan (RAT) called Poco RAT since a...
Read More

Lulu Hypermarket Data Breach: 196,000 Users’ Data Exposed

Lulu Hypermarket, one of the largest retail chains in the Middle East, has been the victim of a significant data breach. The breach has expo...
Read More

New Ransomware Group Exploiting Veeam Backup Software Vulnerability

A now-patched security flaw in Veeam Backup & Replication software is being exploited by a nascent ransomware operation known as EstateR...
Read More

True Protection or False Promise? The Ultimate ITDR Shortlisting Guide

It’s the age of identity security. The explosion of driven ransomware attacks has made CISOs and security teams realize that identity protec...
Read More

HuiOne Guarantee: The $11 Billion Cybercrime Hub of Southeast Asia

Cryptocurrency analysts have shed light on an online marketplace called HuiOne Guarantee that's widely used by cybercriminals in Southea...
Read More

Fujitsu Cyber Attack: Customers’ Personal Information Exposed

Fujitsu Limited has disclosed the results of an investigation into a cyberattack that potentially exposed customers’ personal information. T...
Read More

Researcher Exploits Browser Rendering Process to Alter PDF Invoice Pricing

A cybersecurity researcher, Zakhar Fedotkin, demonstrated how differences in PDF rendering across various browsers and operating systems can...
Read More

Hackers Exploiting Jenkins Script Console for Cryptocurrency Mining Attacks

Cybersecurity researchers have found that it's possible for attackers to weaponize improperly configured Jenkins Script Console instance...
Read More

New OpenSSH Vulnerability CVE-2024-6409 Exposes Systems to RCE Attack

Security researchers have discovered a new vulnerability in OpenSSH, identified as CVE-2024-6409, which could potentially allow remote code ...
Read More

1.4 GB of NSA Data Leaked – Phone Numbers, Email Addresss & More Classified Data Exposed Online

Researchers from Cyber Press, who reported a massive Twitter data leak today, found another data leak online. This time, cybercriminals expo...
Read More

AI SPERA Partners with Devcons to Expand ‘Criminal IP’ into the Middle Eastern Market

AI SPERA, a leading Cyber Threat Intelligence (CTI) company, has announced a partnership with UAE-based distributor Devcons to expand into t...
Read More

Massive 9.4GB Twitter Data Leaked Online – 200 Million Records Exposed

Researchers at Cyber Press discovered a 9.4GB leaked Twitter user data containing nearly 200 million user data records. This leak, sourced f...
Read More

5 Key Questions CISOs Must Ask Themselves About Their Cybersecurity Strategy

Events like the recent massive CDK ransomware attack – which shuttered car dealerships across the U.S. in late June 2024 – barely raise publ...
Read More

Hackers Actively Exploiting Microsoft SmartScreen Vulnerability To Deploy Stealer Malware

Hackers attack Microsoft SmartScreen as it’s a cloud-based, anti-phishing, and anti-malware component that determines whether a website is p...
Read More

Cisco Warns of regreSSHion RCE Impacting Multiple Products

Cisco has issued a security advisory regarding a critical remote code execution (RCE) vulnerability, dubbed “regreSSHion,” that affects mult...
Read More

Cyber Security News Weekly Round-Up (Vulnerabilities, Cyber Attacks, Threats & New Stories)

The weekly cyber security newsletter is a brief summary of what the most recent threats, vulnerabilities, and innovations in the digital sec...
Read More

Japan Sets New Internet Speed Record of 402 Tb/s Via Optical Fiber

Japanese researchers have set a new world record for internet speed, achieving an astonishing 402 terabits per second (Tb/s) using standard ...
Read More

Brazil Halts Meta's AI Data Processing Amid Privacy Concerns

Brazil's data protection authority, Autoridade Nacional de Proteção de Dados (ANPD), has temporarily banned Meta from processing users...
Read More

Information Security Magazine

Latest Cyber Hacking News