A new phishing scam targeting TikTok users has been detected. The scammers’ purpose was to try to takeover more than 125 high-profile users accounts on the platform. This is believed to be the first major phishing attack on TikTok influencers.…
Has Emotet been resurrected? It seems that the notorious malware is back for Christmas. Months after the malware was dismantled by law enforcement, security researcher Luca Ebach sees signs of Emotet usage in the wild. His report indicates that TrickBot…
SharkBot is a new Android trojan (and botnet) capable of accessing various features on breached devices to obtain credentials related to banking and cryptocurrency platforms. Users in Italy, the U.K. and the U.S. have been targeted so far. The Android…
A recently conducted analysis sheds new light on website fingerprinting (WF) attacks on Tor. Website Fingerprinting Attacks on Tor According to a team of academics (Giovanni Cherubin of Alan Turing Institute, Rob Jansen of U.S. Naval Research Laboratory, and Carmela…
CVE-2021-34484 is a Microsoft security vulnerability, originally patched in August but now exploitable with a patch bypass. The vulnerability could allow local privilege escalation from a regular user to System. It was discovered by security researcher Abdelhamid Naceri. Related: Windows…
A new Linux wormable botnet has been observed in the wild. Called Abcbot, the threat is targeting “relatively new cloud service providers (CPSs) with cryptocurrency-mining malware and cryptojacking attacks,” according to Trend Micro’s findings. The malware deploys code that removes…
Security researchers from Cybereason shed new light into the workings of TrickBot. TrickBot and Shathak Threat Groups Join Forces According to the latest findings, the threat actors behind the TrickBot trojan, known as Wizard Spider, are currently working together with…
New Linux vulnerabilities discovered. Security researchers from jFrog and Claroty reported the discovery of 14 vulnerabilities in the BusyBox Linux utility. BusyBox Linux Vulnerabilities: from CVE-2021-42373 to CVE-2021-42386 What is BusyBox? BusyBox provides commands for embedded Linux environment within Android.…
Robinhood, the commission-free investing platform, has suffered an enormous data breach, according to a statement the company made. Related: Volkswagen Vendor Data Breach Exposed Details of 3.3 Million Customers Late in the evening of November 3, Robinhood experienced a data…
CVE-2021-43267 is a newly disclosed security vulnerability in the Linux Kernel’s Transparent Inter Process Communication (TIPC). The flaw can be exploited both locally and remotely, allowing for arbitrary code execution within the kernel. The result of this would be taking…
CVE-2021-1048 is a new zero-day vulnerability in Android that was fixed together with 38 other flaws in November 2021’s patch rollout. Apparently, the zero-day is being exploited in the wild. CVE-2021-1048 Kernel Zero-Day CVE-2021-1048 is a use-after-free issue in the…
Shrootless, or CVE-2021-30892, is a new, OS-level vulnerability that could allow threat actors to circumvent security restrictions, known as System Integrity Protection (SIP), in macOS to take over the device. Once this is done, hackers could perform various arbitrary operations…
Cybercriminals have been quite active in developing new malware samples and improving their malicious approaches. According to PurpleSec statistics, cybercrime activity throughout 2021 has been up 600% due to the COVID-19 pandemic. As a result, cybersecurity researchers have analyzed some…
A previously unknown malware loader was uncovered this week. Called Wslink, the tool has been described as “simple yet remarkable,” capable of loading malicious Windows binaries. The loader has been used in attacks against Central Europe, North America, and the…
A new malware loader with the potential to become “the next big thing” in spam operations has been detected. Dubbed SquirrelWaffle, the threat is “mal-spamming” malicious Microsoft Office documents. The end goal of the campaign is delivering the well-known Qakbot…
Security researchers detected a global, large-scale premium SMS campaign that leverages 151 malicious Android apps downloaded 10.5 million times. The end goal of the campaign, called UltimaSMS, is to trick users into premium subscription services without their knowledge or consent.…
Mozilla blocked two malicious Firefox add-ons installed by nearly half a million users. The extensions abused the Proxy API to obstruct updates to the browser. Related: The Great Suspender Chrome Extension Contains Malware Bypass and Bypass XM Extensions Obstruct Browser…
Truth Social is a new social media network allegedly being developed by Donald Trump. Trump Announces New Social Media Platform to Fight the Tyranny of Big Tech The former president announced on Wednesday the pending launch of the social network,…
CVE-2021-42299 is a new vulnerability in Microsoft Surface Pro 3 laptops. The flaw could enable attackers to introduce malicious devices within enterprise networks, compromising the device attestation mechanism. As explained by Microsoft, this mechanism helps confirm a device’s identity. It…
The Argentinian government’s IT network has been hacked. As a result, ID card details of the entire population of the country were stolen. The data is now being sold in “private circles,” The Record recently reported. Apparently, the hack of…
