CISA’s KEV Catalog Updated with 3 New Flaws Threatening IT Management Systems
Mar 08, 2023Ravie LakshmananVulnerability / Cybersecurity The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added three security flaws to its Known Exploited...
Record Breaking DDoS Attack – 158.2 Million Packets Per Second
When a DDoS attack is conducted, the server being targeted receives a large number of garbage requests. As a result, the server’s capacity is...
Sharp Panda Using New Soul Framework Version to Target Southeast Asian Governments
Mar 08, 2023Ravie LakshmananAdvanced Persistent Threat
High-profile government entities in Southeast Asia are the target of a cyber espionage campaign undertaken by a Chinese...
Lazarus Group Exploits Zero-Day Vulnerability to Hack South Korean Financial Entity
Mar 08, 2023Ravie LakshmananZero-Day / BYOVD Attack
The North Korea-linked Lazarus Group has been observed weaponizing flaws in an undisclosed software to breach a...
Iranian Hackers Target Women Involved in Human Rights and Middle East Politics
Mar 09, 2023Ravie LakshmananCyber Espionage
Iranian state-sponsored actors are continuing to engage in social engineering campaigns targeting researchers by impersonating a U.S. think tank.
"Notably...
When Partial Protection is Zero Protection: The MFA Blind Spots No One Talks About
Mar 10, 2023The Hacker NewsMulti-factor Authentication
Multi-factor Authentication (MFA) has long ago become a standard security practice. With a wide consensus on its ability...
International Law Enforcement Takes Down Infamous NetWire Cross-Platform RAT
Mar 10, 2023Ravie LakshmananCyber Crime / Cyber Threat
A coordinated international law enforcement exercise has taken down the online infrastructure associated with a cross-platform...
China-linked Hackers Targeting Unpatched SonicWall SMA Devices with Malware
Mar 10, 2023Ravie LakshmananNetwork Security / Cyber Threat
A suspecting China-linked hacking campaign has been observed targeting unpatched SonicWall Secure Mobile Access (SMA) 100...
AT&T Vendor Hacked – Over 9 Million Customers Data Exposed
The “Customer Proprietary Network Information (CPNI)” from some wireless accounts was accessed by an unauthorized person, according to AT&T, who discovered the breach in...
New Version of Prometei Botnet Infects Over 10,000 Systems Worldwide
Mar 10, 2023Ravie LakshmananEndpoint Security / Hacking
An updated version of a botnet malware called Prometei has infected more than 10,000 systems worldwide since...