Russian Turla Hackers Target Polish NGOs with New TinyTurla-NG Backdoor

15/02/2024 0 Comments 0 tags

The Russia-linked threat actor known as Turla has been observed using a new backdoor called TinyTurla-NG as part of a three-month-long campaign targeting Polish non-governmental organizations in December 2023. “TinyTurla-NG, just like

Critical Exchange Server Flaw (CVE-2024-21410) Under Active Exploitation

15/02/2024 0 Comments 0 tags

Microsoft on Wednesday acknowledged that a newly disclosed critical security flaw in Exchange Server has been actively exploited in the wild, a day after it released fixes for the vulnerability

Chinese Hackers Using Deepfakes in Advanced Mobile Banking Malware Attacks

15/02/2024 0 Comments 0 tags

A Chinese-speaking threat actor codenamed GoldFactory has been attributed to the development of highly sophisticated banking trojans, including a previously undocumented iOS malware called GoldPickaxe that’s capable of harvesting identity documents, facial

How Nation-State Actors Target Your Business: New Research Exposes Major SaaS Vulnerabilities

15/02/2024 0 Comments 0 tags

With many of the highly publicized 2023 cyber attacks revolving around one or more SaaS applications, SaaS has become a cause for genuine concern in many boardroom discussions. More so

Microsoft Rolls Out Patches for 73 Flaws, Including 2 Windows Zero-Days

15/02/2024 0 Comments 0 tags

Microsoft has released patches to address 73 security flaws spanning its software lineup as part of its Patch Tuesday updates for February 2024, including two zero-days that have come under active exploitation.

DarkMe Malware Targets Traders Using Microsoft SmartScreen Zero-Day Vulnerability

15/02/2024 0 Comments 0 tags

A newly disclosed security flaw in the Microsoft Defender SmartScreen has been exploited as a zero-day by an advanced persistent threat actor called Water Hydra (aka DarkCasino) targeting financial market traders. Trend

Bumblebee Malware Returns with New Tricks, Targeting U.S. Businesses

15/02/2024 0 Comments 0 tags

The infamous malware loader and initial access broker known as Bumblebee has resurfaced after a four-month absence as part of a new phishing campaign observed in February 2024. Enterprise security firm Proofpoint

Cybersecurity Tactics FinServ Institutions Can Bank On in 2024

15/02/2024 0 Comments 0 tags

The landscape of cybersecurity in financial services is undergoing a rapid transformation. Cybercriminals are exploiting advanced technologies and methodologies, making traditional security measures obsolete. The challenges are compounded for community

Ubuntu ‘command-not-found’ Tool Could Trick Users into Installing Rogue Packages

15/02/2024 0 Comments 0 tags

Cybersecurity researchers have found that it’s possible for threat actors to exploit a well-known utility called command-not-found to recommend their own rogue packages and compromise systems running Ubuntu operating system.

Microsoft, OpenAI Warn of Nation-State Hackers Weaponizing AI for Cyberattacks

15/02/2024 0 Comments 0 tags

Nation-state actors associated with Russia, North Korea, Iran, and China are experimenting with artificial intelligence (AI) and large language models (LLMs) to complement their ongoing cyber attack operations. The findings