Poisoned Facebook Ads Deliver Malware Using Fake ChatGPT, Bard & Other AI Services
Cyber criminals have recently started using Facebook to pretend to be well-known generative AI brands like ChatGPT, Google Bard, Midjourney, and Jasper to steal users'...
Malware Spotted on the Google Play Store Steals Banking Credentials & Intercepts SMS Messages
The Zscaler ThreatLabz team found the ‘Xenomorph’ banking trojan embedded in a Lifestyle app in the Google Play store.The app's name is “Todo:...
Ferrari Website Flaw Exposes Their Database Credentials
Based on the recent report from char49, it appears that there was a critical flaw in Ferrari’s subdomain, which led to an arbitrary file...
Hackers Exploited Critical Microsoft Outlook Vulnerability To Gain Exchange Server Access
In response to a recent vulnerability identified in Outlook, Microsoft recently published a proper guide for its customers to help them discover the associated...
Beware: Malicious Apps On Apple & Google Play Push Users into Fake Investments
Threat actors have managed to get their hands on two shady applications that were uploaded to the app stores managed by both Google and...
FortiOS SSL-VPN Zero-day Flaw Exploited to Attack Government Organizations
There have been a number of attacks against government organizations and government-related targets using FortiOS SSL-VPN zero-day vulnerabilities patched by Fortinet last month that...
SymStealer Vulnerability Let Attacker Steal Login Credentials from Google Chrome
The SymStealer vulnerability CVE-2022-3656, newly disclosed by the Imperva Red Team, affects over 2.5 billion users of Google Chrome and Chromium-based browsers. Reports say...
Spynote Android Malware Targeting Financial Institutions to Steal Sensitive Information
Since October 2022, a new version of Android malware known as SpyNote (aka SpyMax) has been targeting financial institutions as a means of stealing...
Dell, HP, & Lenovo System Found Using Outdated OpenSSL Cryptographic Library
The cybersecurity researchers at Binarly recently discovered that outdated versions of the OpenSSL cryptographic library are still being used by the following companies on...
Hackers Use XLL Files to Deliver Obfuscated Version of JSSLoader
Recently it has been observed that Morphisec Labs has witnessed a new wave of JSSLoader infections this year. JSSLoader activity has been tracked by...