As the functionality of BIOS firmware expands, an absence of sound security planning during development can leave vulnerabilities ripe for exploitation by cybercriminals. For instance, Firmware security firm Eclypsium has unearthed a backdoor in...
The Python Package Index recently declared that all project maintainers publishing software on the official PyPI third-party software repository must bind 2FA verification by the end of this year, or else they may find...
PlutoCrypt Ransomware Decryptor What are PlutoCrypt and The Decryptor? PlutoCrypt is a variant of CryptoJoker ransomware. The decryptor in this repository has been developed for PlutoCrypt – but with a small modification, it can...
A concerning variant of the Mirai botnet, IZ1H9, is infiltrating Linux servers and network devices with new vigor, as per a recent analysis by Unit 42 researchers. Utilizing several vulnerabilities, IZ1H9 poses a serious...
ESET researchers have recently unearthed an Android app that harbors a Trojan horse within its coding. The app, christened iRecorder – Screen Recorder, boasted over 50,000 installations from the Google Play store. Interestingly, this...
In a decree promulgated by the Office of Foreign Assets Control (OFAC), a branch of the U.S. Treasury Department, it was announced that a bounty has been placed on Russian ransomware developer Mikhail Matveev...
TurkoRat, a pernicious open-source infostealer, was found to have surreptitiously infiltrated the npm platform for two months before it was identified by researchers at ReversingLabs. With an intricate analysis of millions of suspicious packages...
Visual Studio Code (VSCode), a free source code editor developed by Microsoft, is celebrated for its efficiency and customizability, supporting a wide array of programming languages, frameworks, and tools. A leading attraction is the...
The researchers from Symantec, by Broadcom Software, reveal that Lancefly, a newly recognized advanced persistent threat (APT) group, has been deploying a powerful custom-written backdoor named Merdoor to launch targeted cyber-attacks on organizations across...
In a swiftly evolving digital landscape, threat actors are capitalizing on the popularity of Artificial Intelligence (AI) tools, leveraging them as conduits for elaborate social engineering stratagems. According to recent findings from Trend Micro,...
