A new malicious campaign targeting Android users via a trojan app has been detected in the wild. The payload of the campaign is the Vultur trojan that harvests banking credentials, among other malicious activities. The culprit, a malicious two-factor authentication…
Apple recently released new versions of its operating systems – iOS 15.3 and macOS Monterey 12.2, which contained a number of fixes, including two zero-days. CVE-2022-22587 The first zero-day is related to memory corruption, and could allow a malicious app…
CVE-2021-4034 PolKit Vulnerability CVE-2021-4034 is a new vulnerability detected in PolKit, a component for controlling system-wide privileges in Unix-like operating systems. The vulnerability was discovered in Polkit’s pkexec, a SUID-root program installed by default on every major Linux distribution. The…
Cybersecurity researchers detected a previously unknown macOS malware, codenamed DazzleSpy by ESET and MACMA by Google. The attack itself is based on a WebKit exploit used to compromise Mac users. The payload appears to be a new malware family, specifically…
BRATA is the name of an Android banking trojan that security researchers have been observing for a while. In a new report compiled by cybersecurity firm Cleafy, new information about the banker has been revealed. Threat actors have been using…
Two vulnerabilities were discovered in Control Web Panel (CWP) – a widely-used web hosting management platform utilized by more than 200,000 servers. The flaws could allow code execution as root on Linux servers, and were discovered by Octagon Network researcher…
Security researchers discovered a new malware packer and loader. Dubbed DTPacker, the payload decoding uses a fixed password that contains former U.S. president Donald Trump’s name, according to Proofpoint. A notable element of the attacks associated with DTPacker is that…
A new high severity vulnerability in the Rust programming language has been reported. The flaw could be exploited to purge files and directories from an exposed system without the need of authorization. “The Rust Security Response WG was notified that…
Security researchers recently spotted a new modular stealer written in .NET and capable of exfiltrating cryptocurrency wallets, including Atomic, Exodus, Ethereum, Jazz, Bitcoin, and Litecoin wallets. The malicious campaign, targeting Australia, Egypt, Germany, India, Indonesia, Japan, Malaysia, Norway, Singapore, South…
There’s a new ransomware family spotted in the wild. Called White Rabbit, the ransomware was noticed by Trend Micro researchers in silent attacks against a US bank in December 2021. It appears that the threat uses a page from the…
An authentication bypass vulnerability was recently identified and patched in Zoho Desktop Central and Desktop Central MSP. CVE-2021-44757: Authentication Bypass Vulnerability in Zoho Desktop Central Known as CVE-2021-44757, the flaw has now been addressed and released in the company’s latest…
There’s a solid win for law enforcement in the battle with cybercriminals. Apparently, according to an official Europol statement, law enforcement authorities took action against the criminal misuse of VPN services, as they targeted the users and infrastructure of VPNLab.net.…
According to a Chainanalysis report, North Korean hackers had a very successful 2021 year. As a result of launching at least seven large-scale attacks against cryptocurrency platforms, they made approximately $400 million worth of digital assets. Targets of the attacks…
Security researchers reported a new backdoor capable of targeting Windows, macOS, and Linux operating systems. SysJoker Backdoor Technical Overview Called SysJoker, the multi-platform malware is currently not detected by any of the security engines in VirusTotal. SysJoker was discovered by…
One of the latest malicious campaigns detected in the wild is taking advantage of the new Spiderman: No Way Home movie. SilentXMRMiner Hides in Spiderman Movie ReasonLabs researchers recently detected a Monero miner in a torrent download of the Spider-Man:…
Half a billion stolen credentials were discovered in a compromised cloud storage facility, according to the National Crime Agency’s National Cyber Crime Unit in the U.K. Since the data came from various sources and couldn’t be linked to a specific…
Meta, formerly Facebook, has filed a federal lawsuit in California court to disrupt phishing attacks, according to a company’s statement. Meta Files Lawsuit Against Phishing The purpose of the lawsuit is to fight phishing attacks that aim to obtain users’…
35,000 Java Packages Impacted by the Log4j Vulnerabilities Google says that more than 35,000 Java packages are currently impacted by the Log4j vulnerabilities, “with widespread fallout across the software industry.” This amounts to more than 8% of the Maven Central…
A new VMware vulnerability should be patched immediately to avoid any exploitation. CVE-2021-22057 in VMware Workspace ONE Access CVE-2021-22057 is a critical vulnerability in VMware Workspace ONE Access that specifically affects its two factor authentication (2FA) processing component. Currently, little…
Security researchers detected a new mass malware campaign associated with the previously known Manuscrpypt loader, which is part of Lazarus APT group arsenal. The discovery comes from Kaspersky’s Secure List. “Curiously, the data exfiltration channel of the malware uses an…
