Dark Pink APT Group Targets Governments and Military in APAC Region
Jan 11, 2023Ravie LakshmananAdvanced Persistent Threat
Government and military organizations in the Asia Pacific region are being targeted by a previously unknown advanced persistent...
Microsoft Issues January 2023 Patch Tuesday Updates, Warns of Zero-Day Exploit
The first Patch Tuesday fixes shipped by Microsoft for 2023 have addressed a total of 98 security flaws, including one bug that the...
Italian Users Warned of Malware Attack Targeting Sensitive Information
Jan 10, 2023Ravie LakshmananCyber Threat / Data Security
A new malware campaign has been observed targeting Italy with phishing emails designed to deploy an...
StrongPity Hackers Distribute Trojanized Telegram App to Target Android Users
Jan 10, 2023Ravie LakshmananAdvanced Persistent Threat
The advanced persistent threat (APT) group known as StrongPity has targeted Android users with a trojanized version of...
Hackers Use Text-to-SQL Attacks to Break into Your Databases
Recently, a group of researchers successfully demonstrated a new type of attack that utilizes Text-to-SQL models in order to generate malicious code.
The most...
Expert Analysis Reveals Cryptographic Weaknesses in Threema Messaging App
Jan 10, 2023Ravie LakshmananPrivacy / Encryption
A comprehensive analysis of the cryptographic protocols used in the Swiss encrypted messaging application Threema has revealed a...
Severe Security Flaw Found in
Jan 10, 2023Ravie LakshmananSoftware Security / Supply Chain
A high-severity security flaw has been disclosed in the open source jsonwebtoken (JWT) library that, if...
Hackers to Deliver Ransomware to macOS Devices
One of the most dominating threats in the current cyberspace era is ransomware which is constantly affecting organizations of all sizes. In order to...
Hackers Can Abuse Visual Studio Marketplace to Target Developers with Malicious Extensions
Jan 09, 2023Ravie LakshmananSupply Chain / CodeSec
A new attack vector targeting the Visual Studio Code extensions marketplace could be leveraged to upload rogue...
Malicious PyPI Packages Using Cloudflare Tunnels to Sneak Through Firewalls
Jan 09, 2023Ravie LakshmananNetwork Security / Supply Chain
In yet another campaign targeting the Python Package Index (PyPI) repository, six malicious packages have been...