According to Kaspersky Lab, the Linux application, “Free Download Manager”, has clandestinely been embedded with a backdoor. The software’s download site, freedownloadmanager.org, redirects users to a malicious Debian package repository. This supply chain attack,...
The sustained attempts of espionage actors compromising Critical National Infrastructure (CNI) have been ringing alarm bells for governments and infrastructure organizations globally. One of the most recent attacks was orchestrated by a threat actor...
In the ever-evolving landscape of cybersecurity, malicious actors continuously innovate to bypass detection. Encrypted malicious payloads remain a preferred method, often rendering traditional security measures ineffective. Enter MemDive, a revolutionary solution using AI algorithms,...
Recently, Japan’s Computer Emergency Response Team, JPCERT, unveiled a novel attack modus operandi they’d discerned. In July 2023, JPCERT identified and christened this technique “MalDoc in PDF”, which ingeniously sidesteps detection by nestling a...
A recent discovery by Aqua Nautilus has unveiled a new campaign targeting the Openfire vulnerability (CVE-2023-32315). Revealed in May this year, this flaw is exploited to release the Kinsing malware and a cryptominer, posing...
May 2023 will long be remembered in the cybersecurity community, not just as the month a critical vulnerability (CVE-2023-33246) was disclosed in Apache RocketMQ, but for the troubling aftermath it ignited. RocketMQ, a reputable...
Recently, LetMeSpy, the manufacturer of espionage software used for monitoring Android devices, issued a notice on its official website stating that, due to prior cyberattacks, for security considerations, it will cease offering its services...
Microsoft’s Visual Studio, a popular Integrated Development Environment (IDE), is a favored tool amongst developers for creating a variety of applications. Yet, Cyble Research and Intelligence Lab (CRIL) highlighted in a recent report that...
Recently, telecommunications giant Lumen’s Black Lotus Labs proclaimed in a blog post that it had uncovered a long-standing, globally impacting router malfeasance. The nefarious activity—a novel botnet named “AVrecon”—has been operating inconspicuously for at...
Kaspersky Lab’s security engineers uncovered a dubious extension named PDF Toolbox, an addition that has been downloaded over two million times from the Chrome Web Store, boasting a rating of 4.2. This extension primarily...
