FortiGuard Labs has detected a new variant of the Snake Keylogger (also known as 404 Keylogger) using the advanced features of FortiSandbox v5.0 (FSAv5). This new strain, identified as AutoIt/Injector.GTY!tr, has triggered over 280 million blocked infection attempts worldwide. The…
Security researchers have uncovered critical printer vulnerabilities in Xerox VersaLink C7025 Multifunction Printers (MFPs). These flaws could allow attackers to capture authentication credentials via pass-back attacks using Lightweight Directory Access Protocol (LDAP) and SMB/FTP services. Overview of the Vulnerabilities Deral…
A newly identified search engine optimization manipulation campaign has compromised the security of Internet Information Services (IIS) servers worldwide. Trend Micro researchers have uncovered a financially motivated SEO manipulation attack leveraging malware known as BadIIS, targeting organizations across Asia and…
New threats surface almost every day, each with its own unique characteristics and degrees of severity. One such threat that first appeared 2021 has caught the attention of security experts worldwide is the “Pink Botnet.” Unlike everyday malware that primarily…
Netgear has released security updates addressing two critical vulnerabilities affecting several WiFi router models and has strongly urged users to update their firmware immediately. These vulnerabilities could allow unauthenticated attackers to execute remote code or bypass authentication, creating a serious…
Microsoft has addressed two critical security vulnerabilities that posed potential threats to its cloud-based services. The patches resolve security flaws affecting Azure AI Face Service and Microsoft Account, both of which could have allowed malicious actors to escalate privileges under…
Over the past month, cybersecurity experts at FortiGuard Labs have identified a series of malicious Windows Shortcut (LNK) files containing PowerShell commands. These files serve as the initial stage of a sophisticated cyberattack aimed at delivering the Coyote Banking Trojan,…
Recent findings by Google Threat Intelligence Group reveal that over 57 distinct cyber threat actors with ties to China, Iran, North Korea, and Russia are exploiting artificial intelligence (AI) technology, particularly Google’s AI models, to enhance their malicious cyber and…
DeepSeek, a fast-growing Chinese artificial intelligence (AI) startup that has recently gained widespread attention, inadvertently left one of its databases exposed online. This security lapse could have given cybercriminals access to highly sensitive information. According to security researcher Gal Nagli…
Are you excited about this year’s Black Friday shopping spree? Be careful, as this excitement to grab the best online deals has its pitfalls. Scammers are always finding a way to exploit your excitement and create traps that can lead…
Prediction reports about the state of cybersecurity in 2025 are already looming. Our attention was drawn by one particular report – Google Cloud Security’s Cybersecurity Forecast 2025. What does the technology giant foresee for 2025? What sets this cybersecurity forecast…
In its November 2024 Patch Tuesday update, Microsoft addressed 90 security vulnerabilities, including two critical zero-day exploits currently being actively exploited in the wild (CVE-2024-49039 and CVE-2024-49039). This also update includes fixes for issues impacting Windows NT LAN Manager (NTLM)…
A newly patched security vulnerability in Microsoft Windows has been actively exploited by the Lazarus Group, a notorious state-sponsored hacking group associated with North Korea. The flaw, identified as CVE-2024-38193 and rated with a CVSS score of 7.8, is a…
A new type of DNS attack puts millions of domains at risk of malware and hijacking, a recent report finds. A joint analysis by Infoblox and Eclypsium has uncovered that over a million domains are at risk of being hijacked…
A Fortune 50 company has reportedly paid a record-breaking $75 million ransom to the Dark Angels ransomware gang, according to Zscaler ThreatLabz. This payment surpasses the previous record of $40 million, paid by insurance giant CNA after an Evil Corp…
BadPack is a malicious APK file intentionally altered to exploit the Android operating system’s file structure. Typically, attackers maliciously modify the header information in the compressed file format of APKs to hinder reverse engineering efforts. These tampered headers are a…
In an unexpected and chaotic turn of events, a significant IT outage disrupted major institutions globally. Here’s the latest information: Microsoft Azure Services Severely Impacted Last night, Microsoft Azure services experienced a major disruption, leaving many customers frustrated. The Central…
CVE-2023-27532, a significant flaw identified in Veeam Backup & Replication software, exposes organizations to unauthorized access risks and shows the vital need for up-to-the-minute vigilance in data protection strategies. A new ransomware player, called EstateRansomware, has recently exploited the vulnerability…
Security researchers identified a critical security vulnerability in the TP-Link Archer C5400X gaming router, which could easily allow remote code execution through specially crafted requests. The flaw has been tracked as CVE-2024-5035, and is assigned the highest possible severity score…
Threat actors are exploiting critical vulnerabilities in Atlassian servers to deploy a Linux variant of Cerber ransomware. This exploitation, centered around the CVE-2023-22518 vulnerability, has exposed serious weaknesses in the Atlassian Confluence Data Center and Server, allowing malicious actors to…
