Sophisticated Phishing Campaign Deploying Agent Tesla, OriginBotnet, and RedLine Clipper

12/09/2023 0 Comments 0 tags

A sophisticated phishing campaign is using a Microsoft Word document lure to distribute a trifecta of threats, namely Agent Tesla, OriginBotnet, and OriginBotnet, to gather a wide range of information

Chinese Redfly Group Compromised a Nation’s Critical Grid in 6-Month ShadowPad Campaign

12/09/2023 0 Comments 0 tags

A threat actor called Redfly has been linked to a compromise of a national grid located in an unnamed Asian country for as long as six months earlier this year using a

7 Steps to Kickstart Your SaaS Security Program

12/09/2023 0 Comments 0 tags

SaaS applications are the backbone of modern businesses, constituting a staggering 70% of total software usage. Applications like Box, Google Workplace, and Microsoft 365 are integral to daily operations. This

Critical GitHub Vulnerability Exposes 4,000+ Repositories to Repojacking Attack

12/09/2023 0 Comments 0 tags

A new vulnerability disclosed in GitHub could have exposed thousands of repositories at risk of repojacking attacks, new findings show. The flaw “could allow an attacker to exploit a race

New HijackLoader Modular Malware Loader Making Waves in the Cybercrime World

12/09/2023 0 Comments 0 tags

A new malware loader called HijackLoader is gaining traction among the cybercriminal community to deliver various payloads such as DanaBot, SystemBC, and RedLine Stealer. “Even though HijackLoader does not contain advanced features, it

Cybercriminals Using PowerShell to Steal NTLMv2 Hashes from Compromised Windows

12/09/2023 0 Comments 0 tags

A new cyber attack campaign is leveraging the PowerShell script associated with a legitimate red teaming tool to plunder NTLMv2 hashes from compromised Windows systems primarily located in Australia, Poland, and Belgium.

Google Chrome Rolls Out Support for ‘Privacy Sandbox’ to Bid Farewell to Tracking Cookies

12/09/2023 0 Comments 0 tags

Google has officially begun its rollout of Privacy Sandbox in the Chrome web browser to a majority of its users, nearly four months after it announced the plans. “We believe it

How to Prevent API Breaches: A Guide to Robust Security

12/09/2023 0 Comments 0 tags

With the growing reliance on web applications and digital platforms, the use of application programming interfaces (APIs) has become increasingly popular. If you aren’t familiar with the term, APIs allow

Charming Kitten’s New Backdoor ‘Sponsor’ Targets Brazil, Israel, and U.A.E.

12/09/2023 0 Comments 0 tags

The Iranian threat actor known as Charming Kitten has been linked to a new wave of attacks targeting different entities in Brazil, Israel, and the U.A.E. using a previously undocumented backdoor named

Vietnamese Hackers Deploy Python-Based Stealer via Facebook Messenger

12/09/2023 0 Comments 0 tags

A new phishing attack is leveraging Facebook Messenger to propagate messages with malicious attachments from a “swarm of fake and hijacked personal accounts” with the ultimate goal of taking over the