Instagram’s Twitter Alternative ‘Threads’ Launch Halted in Europe Over Privacy Concerns

05/07/2023 0 Comments 0 tags

Instagram Threads, the upcoming Twitter competitor from Meta, will not be launched in the European Union due to privacy concerns, according to Ireland’s Data Protection Commission (DPC). The development was reported by

Node.js Users Beware: Manifest Confusion Attack Opens Door to Malware

05/07/2023 0 Comments 0 tags

The npm registry for the Node.js JavaScript runtime environment is susceptible to what’s called a manifest confusion attack that could potentially allow threat actors to conceal malware in project dependencies or perform

Secrets, Secrets Are No Fun. Secrets, Secrets (Stored in Plain Text Files) Hurt Someone

05/07/2023 0 Comments 0 tags

Secrets are meant to be hidden or, at the very least, only known to a specific and limited set of individuals (or systems). Otherwise, they aren’t really secrets. In personal

Swedish Data Protection Authority Warns Companies Against Google Analytics Use

04/07/2023 0 Comments 0 tags

The Swedish data protection watchdog has warned companies against using Google Analytics due to risks posed by U.S. government surveillance, following similar moves by Austria, France, and Italy last year. The development comes

Alert: 330,000 FortiGate Firewalls Still Unpatched to CVE-2023-27997 RCE Flaw

04/07/2023 0 Comments 0 tags

No less than 330000 FortiGate firewalls are still unpatched and vulnerable to CVE-2023-27997, a critical security flaw affecting Fortinet devices that have come under active exploitation in the wild. Cybersecurity

Mexico-Based Hacker Targets Global Banks with Android Malware

04/07/2023 0 Comments 0 tags

An e-crime actor of Mexican provenance has been linked to an Android mobile malware campaign targeting financial institutions globally, but with a specific focus on Spanish and Chilean banks, from

DDoSia Attack Tool Evolves with Encryption, Targeting Multiple Sectors

04/07/2023 0 Comments 0 tags

The threat actors behind the DDoSia attack tool have come up with a new version that incorporates a new mechanism to retrieve the list of targets to be bombarded with junk HTTP

Chinese Hackers Use HTML Smuggling to Infiltrate European Ministries with PlugX

03/07/2023 0 Comments 0 tags

A Chinese nation-state group has been observed targeting Foreign Affairs ministries and embassies in Europe using HTML smuggling techniques to deliver the PlugX remote access trojan on compromised systems. Cybersecurity firm Check

Evasive Meduza Stealer Targets 19 Password Managers and 76 Crypto Wallets

03/07/2023 0 Comments 0 tags

In yet another sign of a lucrative crimeware-as-a-service (CaaS) ecosystem, cybersecurity researchers have discovered a new Windows-based information stealer called Meduza Stealer that’s actively being developed by its author to evade detection

CISA Flags 8 Actively Exploited Flaws in Samsung and D-Link Devices

03/07/2023 0 Comments 0 tags

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has placed a set of eight flaws to the Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation. This includes six shortcomings