ZLoader Malware Returns With DNS Tunneling to Stealthily Mask C2 Comms
Cybersecurity researchers have discovered a new version of the ZLoader malware that employs a Domain Name System (DNS) tunnel for...
researchers
Chinese EagleMsgSpy Spyware Detected Exploiting Portable Gadgets Since 2017
Cybersecurity analysts have come across a new surveillance application believed to be employed by Chinese law enforcement agencies as an...
Deceptive Headhunters Disseminate Banking Trojan through Malicious Applications in Phishing Scheme
Experts in cybersecurity have revealed an advanced mobile phishing (also known as mishing) operation aimed at spreading a modified edition...
This Holiday Season, Watch Out for These Cyber-Grinch Tricks Used to Scam Holiday Shoppers
McAfee threat researchers have identified several consumer brands and product categories most frequently used by cybercriminals to trick consumers into...
Scammers Exploiting Counterfeit Video Meeting Platforms to Pilfer Data from Web3 Experts
Security experts have raised the alarm about a fresh fraudulent scheme utilizing counterfeit video conferencing applications to distribute an information...
Scientists Reveal Weaknesses in Widely-Used Open-Source Machine Learning Platforms
Experts focusing on cybersecurity have revealed various vulnerabilities affecting open-source tools and structures for machine learning (ML) like MLflow, H2O,...
Significant Mitel MiCollab Vulnerability Reveals Systems to Unauthorized File and Administrator Access
A group of experts in cybersecurity have published a demonstration (PoC) demonstrating a recently fixed crucial security vulnerability affecting Mitel...
Experts Discover Secret Entrance in Solana’s Well-Known Web3.js npm Library
Cybersecurity analysts are warning about a software supply chain breach impacting the renowned @solana/web3.js npm library which included releasing two...
Unauthorized Users Exploit Malicious Compressed Files and Office Documents to Circumvent Anti-Malware and Email Security Measures
Security experts have highlighted an innovative phishing tactic that utilizes corrupted Microsoft Office files and compressed folders to elude email...
UnauthorizedVPN Utility Manipulates Vulnerabilities in Widely-Used VPN Applications for System Infiltration
A group of cybersecurity experts have brought to light a series of weaknesses affecting Palo Alto Networks and SonicWall virtual...
Scam-as-a-Service “Rockstar 2FA” Focuses on Microsoft 365 Users using AiTM Intrusions
Experts in cybersecurity are alerting the public about harmful email campaigns utilizing a scam-as-a-service (SaaS) software known as Rockstar 2FA...
Malicious Activity Uncovered in XMLRPC npm Library: Data Theft and Crypto Mining
Reports from cybersecurity experts reveal an ongoing software supply chain breach that has been operational for more than a year...
Scientists Uncover “Bootkitty” – Inaugural UEFI Bootkit Focusing on Linux Kernels
Cybersecurity analysts have brought attention to the premier Unified Extensible Firmware Interface (UEFI) bootkit engineered for Linux operating systems. Referred...
Security Vulnerabilities in Infrastructure and Policy Configuration Tools Increase Risks to Cloud Environments
Security analysts have revealed a pair of fresh strategies for compromising cloud platforms using infrastructure-as-code (IaC) and policy-as-code (PaC) applications...
Experts Discover Malicious Software Using BYOVD to Evade Antivirus Defenses
A group of cybersecurity specialists has revealed a fresh malevolent operation making use of a tactic known as Bring Your...
