North Korean Hackers Deploy New Golang Malware ‘Durian’ Against Crypto Firms

10/05/2024 0 Comments 0 tags

The North Korean threat actor tracked as Kimsuky has been observed deploying a previously undocumented Golang-based malware dubbed Durian as part of highly-targeted cyber attacks aimed at two South Korean cryptocurrency firms.

New TunnelVision Attack Allows Hijacking of VPN Traffic via DHCP Manipulation

09/05/2024 0 Comments 0 tags

Researchers have detailed a Virtual Private Network (VPN) bypass technique dubbed TunnelVision that allows threat actors to snoop on victim’s network traffic by just being on the same local network. The “decloaking” method has

Mirai Botnet Exploits Ivanti Connect Secure Flaws for Malicious Payload Delivery

09/05/2024 0 Comments 0 tags

Two recently disclosed security flaws in Ivanti Connect Secure (ICS) devices are being exploited to deploy the infamous Mirai botnet. That’s according to findings from Juniper Threat Labs, which said the vulnerabilities CVE-2023-46805 and

New Guide: How to Scale Your vCISO Services Profitably

09/05/2024 0 Comments 0 tags

Cybersecurity and compliance guidance are in high demand among SMEs. However, many of them cannot afford to hire a full-time CISO. A vCISO can answer this need by offering on-demand access

Kremlin-Backed APT28 Targets Polish Institutions in Large-Scale Malware Campaign

09/05/2024 0 Comments 0 tags

Polish government institutions have been targeted as part of a large-scale malware campaign orchestrated by a Russia-linked nation-state actor called APT28. “The campaign sent emails with content intended to arouse the

Critical F5 Central Manager Vulnerabilities Allow Enable Full Device Takeover

09/05/2024 0 Comments 0 tags

Two security vulnerabilities have been discovered in F5 Next Central Manager that could be exploited by a threat actor to seize control of the devices and create hidden rogue administrator

Hackers Exploiting LiteSpeed Cache Bug to Gain Full Control of WordPress Sites

08/05/2024 0 Comments 0 tags

A high-severity flaw impacting the LiteSpeed Cache plugin for WordPress is being actively exploited by threat actors to create rogue admin accounts on susceptible websites. The findings come from WPScan, which said that the vulnerability

Hijack Loader Malware Employs Process Hollowing, UAC Bypass in Latest Version

08/05/2024 0 Comments 0 tags

A newer version of a malware loader called Hijack Loader has been observed incorporating an updated set of anti-analysis techniques to fly under the radar. “These enhancements aim to increase the malware’s stealthiness, thereby

The Fundamentals of Cloud Security Stress Testing

08/05/2024 0 Comments 0 tags

״Defenders think in lists, attackers think in graphs,” said John Lambert from Microsoft, distilling the fundamental difference in mindset between those who defend IT systems and those who try to

New Spectre-Style ‘Pathfinder’ Attack Targets Intel CPU, Leak Encryption Keys and Data

08/05/2024 0 Comments 0 tags

Researchers have discovered two novel attack methods targeting high-performance Intel CPUs that could be exploited to stage a key recovery attack against the Advanced Encryption Standard (AES) algorithm. The techniques have been collectively dubbed Pathfinder by a