Hackers abusing the Ngrok platform phishing attacks

Cyber Security

Hackers abusing the Ngrok platform phishing attacks

February 19, 20213 min read

Researchers from threat intelligence Cyble have discovered threat actors abusing the Ngrok platform in a fresh phishing campaign. Researchers at the threat intelligence firm Cyble

Cyber Security

Latin American Javali trojan weaponizing Avira antivirus legitimate injector to implant malware

February 19, 202120 min read

Latin American Javali trojan weaponizing Avira antivirus legitimate injector to implant malware In the last few years, many banking trojans developed by Latin American criminals

Cyber Security

ScamClub malvertising gang abused WebKit zero-day to redirect to online gift card scams

February 19, 20213 min read

Malvertising gang ScamClub has exploited an unpatched zero-day vulnerability in WebKit-based browsers in a campaign aimed at realizing online gift card scams. The Malvertising gang

Cyber Security

US DoJ charges three members of the North Korea-linked Lazarus APT group

February 19, 20214 min read

The US DOJ charged three members of the North Korea-linked Lazarus Advanced Persistent Threat (APT) group. The U.S. Justice Department indicted three North Korean military

Cyber Security

WatchDog botnet targets Windows and Linux servers in cryptomining campaign

February 19, 20213 min read

PaloAlto Network warns of the WatchDog botnet that uses exploits to take over Windows and Linux servers and mine cryptocurrency. Security researchers at Palo Alto

Cyber Security

SolarWinds hackers had access to components used by Azure, Intune, and Exchange

February 19, 20213 min read

Microsoft announced that SolarWinds hackers could have had access to repositories containing some components used by Azure, Intune, and Exchange. Microsoft announced that the threat

Cyber Security

“Microosft”. Patch Tuesday goof points users to typo-bait website

February 19, 20212 min read

As Thomas Claburn at The Register reports, Microsoft made an embarrassing goof in the release notes it published for the Patch Tuesday security updates it

Cyber Security

After hackers blackmailed their clients, Finnish therapy firm declares bankruptcy

February 19, 20213 min read

Highly sensitive notes from therapy sessions were published online in an attempt to blackmail patients Hackers bragged about the poor state of firm’s security Vastaamo,

Cyber Security

NurseryCam has serious security issues, claims researcher

February 19, 20213 min read

* System widely used by nurseries to allow parents to watch their children playing.* Claims made that NurseryCam was first informed of issues six years

Cyber Security

Could an ex-employee be planting ransomware on your firm’s network?

February 19, 20212 min read

Countless times I’ve underlined the need to reset passwords and revoke access rights when a worker leaves your company. Former employees have been accused of

1 2 3 Next »

Author: prouser

Hackers abusing the Ngrok platform phishing attacks

Latin American Javali trojan weaponizing Avira antivirus legitimate injector to implant malware

ScamClub malvertising gang abused WebKit zero-day to redirect to online gift card scams

US DoJ charges three members of the North Korea-linked Lazarus APT group

WatchDog botnet targets Windows and Linux servers in cryptomining campaign

SolarWinds hackers had access to components used by Azure, Intune, and Exchange

“Microosft”. Patch Tuesday goof points users to typo-bait website

After hackers blackmailed their clients, Finnish therapy firm declares bankruptcy

NurseryCam has serious security issues, claims researcher

Could an ex-employee be planting ransomware on your firm’s network?

A cyber attack hit Nissan Oceania

New Krasue Linux RAT targets telecom companies in Thailand

Smashing Security podcast #351: Nuclear cybersecurity, Marketplace scams, and face up to porn

Atlassian addressed four new RCE flaws in its products

CISA adds Qualcomm flaws to its Known Exploited Vulnerabilities catalog

Experts demonstrate a post-exploitation tampering technique to display Fake Lockdown mode

$10 million up for grabs in fight against North Korean hackers

GST Invoice Billing Inventory exposes sensitive data to threat actors

Threat actors breached US govt systems by exploiting Adobe ColdFusion flaw

ENISA published the ENISA Threat Landscape for DoS Attacks Report

ENISA published ENISA Threat Landscape for DoS Attacks

Russia-linked APT28 group spotted exploiting Outlook flaw to hijack MS Exchange accounts

Google fixed critical zero-click RCE in Android

New P2PInfect bot targets routers and IoT devices

Malvertising attacks rely on DanaBot Trojan to spread CACTUS Ransomware