New Russian-Backed Gamaredon’s Spyware Variants Targeting Ukrainian Authorities
Feb 02, 2023Ravie LakshmananCyber Risk / Threat Detection
The State Cyber Protection Centre (SCPC) of Ukraine has called out the Russian state-sponsored threat actor...
Over 1800 Android Mobile App Web Injects for Sale
Cyble Research and Intelligence Labs (CRIL) is a security research organization that has been monitoring the actions of a group of cyber criminals called...
Cybersecurity Budgets Are Going Up. So Why Aren’t Breaches Going Down?
Over the past few years, cybersecurity has become a major concern for businesses around the globe. With the total cost of cybercrime in...
New Prilex Malware Blocks Contactless Payments
Prilex is indeed a single threat actor that transformed from malware targeted at ATMs into distinctive modular point-of-sale (PoS) malware. Prilex has resurfaced with new...
New Threat: Stealthy HeadCrab Malware Compromised Over 1,200 Redis Servers
Feb 02, 2023Ravie LakshmananDatabase Security / Cryptocurrency
At least 1,200 Redis database servers worldwide have been corralled into a botnet using an "elusive and...
Auditing Kubernetes with Open Source SIEM and XDR
Feb 01, 2023The Hacker NewsSIEM / Kubernetes
Container technology has gained traction among businesses due to the increased efficiency it provides. In this regard,...
Researchers Uncover New Bugs in Popular ImageMagick Image Processing Utility
Feb 01, 2023Ravie LakshmananVulnerability
Cybersecurity researchers have disclosed details of two security flaws in the open source ImageMagick software that could potentially lead to...
Hackers Abuse Microsoft’s ‘Verified Publisher’ OAuth Apps
Multiple fraudulent Microsoft Partner Network accounts were discovered to have created harmful OAuth applications, causing breaches in organizations’ cloud environments and leading to the...
New SH1MMER Exploit for Chromebook Unenrolls Managed ChromeOS Devices
Feb 01, 2023Ravie Lakshmanan
A new exploit has been devised to "unenroll" enterprise- or school-managed Chromebooks from administrative control.
Enrolling ChromeOS devices makes it possible...
GitHub Security Breach – Hackers Stole Code Signing Certificates
GitHub announced that it suffered a security breach in which unauthorized individuals obtained access to specific development and release planning repositories and stole encrypted...