Daily CyberSecurity

Deepfake Scams on the Rise: CEOs, News Anchors, and Government Officials Impersonated

• Cyber Security

Deepfake Scams on the Rise: CEOs, News Anchors, and Government Officials Impersonated

Do Son August 30, 2024 0

Cybersecurity researchers at Palo Alto Networks warn of a growing trend of deepfake scam campaigns targeting individuals...

Read More Read more about Deepfake Scams on the Rise: CEOs, News Anchors, and Government Officials Impersonated

Google TAG Uncovers Watering Hole Attacks on Mongolian Government Websites

• Cyber Security
• Vulnerability

Google TAG Uncovers Watering Hole Attacks on Mongolian Government Websites

Do Son August 30, 2024 0

In a revealing report, Google’s Threat Analysis Group (TAG) has uncovered a series of sophisticated watering hole...

Read More Read more about Google TAG Uncovers Watering Hole Attacks on Mongolian Government Websites

Godzilla Backdoor: A Stealthy Threat Targeting Atlassian Confluence Flaw (CVE-2023-22527)

• Cyber Security
• Malware
• Vulnerability

Godzilla Backdoor: A Stealthy Threat Targeting Atlassian Confluence Flaw (CVE-2023-22527)

Do Son August 30, 2024 0

A recent discovery by cybersecurity researchers at Trend Micro has unveiled a sophisticated new attack vector targeting...

Read More Read more about Godzilla Backdoor: A Stealthy Threat Targeting Atlassian Confluence Flaw (CVE-2023-22527)

CVE-2024-5274: Chrome Zero-Day Exploited by APT29, PoC Exploit Published

• Vulnerability

CVE-2024-5274: Chrome Zero-Day Exploited by APT29, PoC Exploit Published

Do Son August 29, 2024 0

A zero-day vulnerability in Google Chrome (CVE-2024-5274) has been publicly disclosed, along with technical details and a...

Read More Read more about CVE-2024-5274: Chrome Zero-Day Exploited by APT29, PoC Exploit Published

PoC Exploit Releases for Unauthenticated XXE Flaw CVE-2024-38653 in Ivanti Avalanche

• Vulnerability

PoC Exploit Releases for Unauthenticated XXE Flaw CVE-2024-38653 in Ivanti Avalanche

Do Son August 29, 2024 0

Recently, security researcher D4mianWayne published the technical details and a proof-of-concept (PoC) exploit code for a high-severity...

Read More Read more about PoC Exploit Releases for Unauthenticated XXE Flaw CVE-2024-38653 in Ivanti Avalanche

Operation DevilTiger: APT-Q-12’s Shadowy Tactics and Zero-Day Exploits Unveiled

• Cyber Security
• Vulnerability

Operation DevilTiger: APT-Q-12’s Shadowy Tactics and Zero-Day Exploits Unveiled

Do Son August 29, 2024 0

The QiAnXin Threat Intelligence Center has disclosed the technical details of a sophisticated cyber espionage campaign dubbed...

Read More Read more about Operation DevilTiger: APT-Q-12’s Shadowy Tactics and Zero-Day Exploits Unveiled

CVE-2024-42815 (CVSS 9.8): Buffer Overflow Flaw in TP-Link Routers Opens Door to RCE

• Vulnerability

CVE-2024-42815 (CVSS 9.8): Buffer Overflow Flaw in TP-Link Routers Opens Door to RCE

Do Son August 29, 2024 0

A critical vulnerability has been found in TP-Link RE365 V1_180213 series routers, leaving them susceptible to remote...

Read More Read more about CVE-2024-42815 (CVSS 9.8): Buffer Overflow Flaw in TP-Link Routers Opens Door to RCE

Rocinante Banking Malware: Keylogging, Phishing, and Full Device Takeover

• Malware

Rocinante Banking Malware: Keylogging, Phishing, and Full Device Takeover

Do Son August 29, 2024 0

ThreatFabric, a prominent cybersecurity firm, has issued a warning about a new strain of banking malware dubbed...

Read More Read more about Rocinante Banking Malware: Keylogging, Phishing, and Full Device Takeover

North Korean Cyberattacks Persist: Developers Targeted via npm

• Cyber Security
• Malware

North Korean Cyberattacks Persist: Developers Targeted via npm

Do Son August 29, 2024 0

Recent findings by the Phylum Research Team have brought to light a resurgence of malicious activities on...

Read More Read more about North Korean Cyberattacks Persist: Developers Targeted via npm

New Snake Keylogger Variant Slithers Into Phishing Campaigns

• Malware

New Snake Keylogger Variant Slithers Into Phishing Campaigns

Do Son August 29, 2024 0

Fortinet’s FortiGuard Labs has unearthed a new variant of the notorious Snake Keylogger, delivered through a malicious...

Read More Read more about New Snake Keylogger Variant Slithers Into Phishing Campaigns

Peach Sandstorm Deploys New Tickler Malware in Persistent Espionage Campaigns

• Cyber Security
• Malware

Peach Sandstorm Deploys New Tickler Malware in Persistent Espionage Campaigns

Do Son August 29, 2024 0

Microsoft Threat Intelligence has identified a sophisticated campaign by the Iranian state-sponsored group known as Peach Sandstorm....

Read More Read more about Peach Sandstorm Deploys New Tickler Malware in Persistent Espionage Campaigns

Cthulhu Stealer: New Malware Threatens macOS Users

• Malware

Cthulhu Stealer: New Malware Threatens macOS Users

Do Son August 29, 2024 0

Researchers at Cado Security have discovered a new piece of malware targeting macOS users. This malware, named...

Read More Read more about Cthulhu Stealer: New Malware Threatens macOS Users

RansomHub Targets Prasarana Malaysia: 316 GB of Stolen Data Threatened with Public Release

• Cyber Security

RansomHub Targets Prasarana Malaysia: 316 GB of Stolen Data Threatened with Public Release

Do Son August 29, 2024 0

Prasarana Malaysia Berhad, the largest public transportation operator in Malaysia, has confirmed reports of unauthorized access to...

Read More Read more about RansomHub Targets Prasarana Malaysia: 316 GB of Stolen Data Threatened with Public Release

Fake Palo Alto Tool Delivers Sophisticated Malware in Middle East Cyberattack

• Cyber Security
• Malware

Fake Palo Alto Tool Delivers Sophisticated Malware in Middle East Cyberattack

Do Son August 29, 2024 0

Trend Micro researchers have identified a sophisticated malware campaign specifically targeting organizations in the Middle East. This...

Read More Read more about Fake Palo Alto Tool Delivers Sophisticated Malware in Middle East Cyberattack

Cybercriminals Target US Citizens with Zoom and SSA Phishing Scams

• Cyber Security

Cybercriminals Target US Citizens with Zoom and SSA Phishing Scams

Do Son August 29, 2024 0

Cybercriminals are exploiting a clever Zoom phishing scam to distribute ScreenConnect remote access software, potentially enabling them...

Read More Read more about Cybercriminals Target US Citizens with Zoom and SSA Phishing Scams

CVE-2024-39584: Dell BIOS Flaw Exposes Systems to Secure Boot Bypass and Arbitrary Code Execution

• Vulnerability

CVE-2024-39584: Dell BIOS Flaw Exposes Systems to Secure Boot Bypass and Arbitrary Code Execution

Do Son August 29, 2024 0

In a recent security advisory, Dell disclosed a high-severity vulnerability, identified as CVE-2024-39584, affecting the BIOS of...

Read More Read more about CVE-2024-39584: Dell BIOS Flaw Exposes Systems to Secure Boot Bypass and Arbitrary Code Execution

Docker-OSX Shut Down: Apple’s Copyright Claim Impacts macOS Containers

• Technology

Docker-OSX Shut Down: Apple’s Copyright Claim Impacts macOS Containers

Do Son August 29, 2024 0

An open-source project on GitHub called Docker-OSX allows users to effortlessly run Apple’s OSX and macOS systems...

Read More Read more about Docker-OSX Shut Down: Apple’s Copyright Claim Impacts macOS Containers

Critical CVE-2024-45321 Flaw in Popular Perl Module Installer cpanminus, No Patch Available

• Vulnerability

Critical CVE-2024-45321 Flaw in Popular Perl Module Installer cpanminus, No Patch Available

Do Son August 28, 2024 0

In a significant security advisory, the Perl community has been alerted to a critical vulnerability, CVE-2024-45321, affecting...

Read More Read more about Critical CVE-2024-45321 Flaw in Popular Perl Module Installer cpanminus, No Patch Available

Mirai Botnet Exploits Zero-Day Vulnerability CVE-2024-7029 in AVTECH IP Cameras

• Malware
• Vulnerability

Mirai Botnet Exploits Zero-Day Vulnerability CVE-2024-7029 in AVTECH IP Cameras

Do Son August 28, 2024 0

Akamai’s Security Intelligence Response Team (SIRT) has discovered a widespread Mirai botnet campaign exploiting a recently disclosed...

Read More Read more about Mirai Botnet Exploits Zero-Day Vulnerability CVE-2024-7029 in AVTECH IP Cameras

CVE-2024-43425: Moodle Remote Code Execution Vulnerability, PoC Published

• Vulnerability

CVE-2024-43425: Moodle Remote Code Execution Vulnerability, PoC Published

Do Son August 28, 2024 0

A critical vulnerability (CVE-2024-43425) has been identified in Moodle, a widely-used Learning Management System. This flaw could...

Read More Read more about CVE-2024-43425: Moodle Remote Code Execution Vulnerability, PoC Published