Cybersecurity researchers have uncovered a large-scale malware distribution operation that impersonates popular open-source and freeware projects … Fake Open-Source Software Sites Spread Malware Through Sophisticated Traffic Distribution NetworkRead more
Author: admin
China-Linked TA4922 Expands Cyberattacks Across Europe with New Malware Arsenal
A China-linked cybercrime group known as TA4922 has significantly broadened its operations, extending its targeting beyond … China-Linked TA4922 Expands Cyberattacks Across Europe with New Malware ArsenalRead more
Unpatched Windows Search Flaw Could Expose NTLMv2 Hashes to Attackers
Cybersecurity researchers have uncovered a new Windows vulnerability that could allow attackers to capture a victim’s … Unpatched Windows Search Flaw Could Expose NTLMv2 Hashes to AttackersRead more
New HTTP/2 Bomb Attack Threatens NGINX, Apache, IIS, Envoy, and Pingora Servers
Cybersecurity researchers have uncovered a new denial-of-service (DoS) attack technique capable of overwhelming some of the … New HTTP/2 Bomb Attack Threatens NGINX, Apache, IIS, Envoy, and Pingora ServersRead more
Microsoft Fixes Critical Android Flaw in Microsoft 365 Apps That Exposed User Tokens
Microsoft has patched a serious security flaw affecting several Microsoft 365 applications on Android after researchers … Microsoft Fixes Critical Android Flaw in Microsoft 365 Apps That Exposed User TokensRead more
SideCopy Targets Afghanistan’s Finance Ministry with Xeno RAT in Operation XENOFISCAL
Cybersecurity researchers have uncovered a sophisticated spear-phishing campaign attributed to the Pakistan-linked threat group SideCopy, targeting … SideCopy Targets Afghanistan’s Finance Ministry with Xeno RAT in Operation XENOFISCALRead more
Dashlane Reveals Encrypted Vault Downloads After Brute-Force Attack on User Accounts
Password management company Dashlane has revealed that fewer than 20 users had their encrypted password vaults … Dashlane Reveals Encrypted Vault Downloads After Brute-Force Attack on User AccountsRead more
Miasma Supply Chain Attack Compromises Red Hat npm Packages, Steals Cloud and CI/CD Credentials
A newly discovered software supply chain attack campaign, dubbed Miasma, has compromised several npm packages associated … Miasma Supply Chain Attack Compromises Red Hat npm Packages, Steals Cloud and CI/CD CredentialsRead more
Malicious CodexUI-Android npm Package Steals OpenAI Codex Tokens in Supply Chain Attack
A sophisticated software supply chain attack has been uncovered targeting developers who use OpenAI Codex, with … Malicious CodexUI-Android npm Package Steals OpenAI Codex Tokens in Supply Chain AttackRead more
Operation Dragon Weave Targets Czech Republic and Taiwan with AdaptixC2 Malware via Azure-Based C2 Infrastructure
A newly identified cyber espionage campaign, dubbed Operation Dragon Weave, is actively targeting government officials, researchers, … Operation Dragon Weave Targets Czech Republic and Taiwan with AdaptixC2 Malware via Azure-Based C2 InfrastructureRead more
