Cyber Attack
New Highly Evasive SquidLoader Attacking Employees Mimic As Word Document
Researchers discovered a new malware loader named SquidLoader targeting Chinese organizations, which arrives as an executable disguised as a Word document attached to phishing...
Cyber Attack
Chinese UNC3886 Actors Exploiting VMware, Fortinet 0-days For Spying
In 2021, UNC3886, a suspected China nexus cyber espionage actor, was found to be targeting strategic organizations on a large scale, utilizing multiple vulnerabilities...
Cyber Attack
Stuxnet, The Malware That Propagates To Air-Gapped Networks
Stuxnet, a complex worm discovered in 2010, targeted Supervisory Control and Data Acquisition (SCADA) systems used in industrial facilities.By exploiting multiple vulnerabilities, including...
Cyber Attack
Beware Of Fake Microsoft Teams Website That Installs Oyster Malware
Fake websites of authoritative and popular companies claiming to be genuine sites make users believe that the site belongs to that specific company and...
CVE/vulnerability
New ARM ‘TIKTAG’ Attack Impacts Google Chrome, Linux Systems
Memory corruption lets attackers hijack control flow, execute code, elevate privileges, and leak data.ARM's Memory Tagging Extension (MTE) aims to mitigate by tagging memory...
Android
Operation Celestial Force Employing Android And Windows Malware To Attack Indian Users
A Pakistani threat actor group, Cosmic Leopard, has been conducting a multi-year cyber espionage campaign named Operation Celestial Force, targeting Indian entities.Since 2018, they...
Cryptocurrency hack
Hackers Employing New Techniques To Attack Docker API
Attackers behind Spinning YARN launched a new cryptojacking campaign targeting publicly exposed Docker Engine hosts by using new binaries chkstart (remote access with payload...
CVE/vulnerability
Hackers Exploiting MS Office Editor Vulnerability to Deploy Keylogger
Researchers have identified a sophisticated cyberattack orchestrated by the notorious Kimsuky threat group.The group has been exploiting a known vulnerability (CVE-2017-11882) in the...