New Ongoing Campaign Targets npm Ecosystem with Unique Execution Chain

27/06/2023 0 Comments 0 tags

Cybersecurity researchers have discovered a new ongoing campaign aimed at the npm ecosystem that leverages a unique execution chain to deliver an unknown payload to targeted systems. “The packages in question

New Mockingjay Process Injection Technique Could Let Malware Evade Detection

27/06/2023 0 Comments 0 tags

A new process injection technique dubbed Mockingjay could be exploited by threat actors to bypass security solutions to execute malicious code on compromised systems. “The injection is executed without space

Anatsa Banking Trojan Targeting Users in US, UK, Germany, Austria, and Switzerland

27/06/2023 0 Comments 0 tags

A new Android malware campaign has been observed pushing the Anatsa banking trojan to target banking customers in the U.S., U.K., Germany, Austria, and Switzerland since the start of March

New Fortinet’s FortiNAC Vulnerability Exposes Networks to Code Execution Attacks

27/06/2023 0 Comments 0 tags

Fortinet has rolled out updates to address a critical security vulnerability impacting its FortiNAC network access control solution that could lead to the execution of arbitrary code. Tracked as CVE-2023-33299, the

Researchers Find Way to Recover Cryptographic Keys by Analyzing LED Flickers

27/06/2023 0 Comments 0 tags

In what’s an ingenious side-channel attack, a group of academics has found that it’s possible to recover secret keys from a device by analyzing video footage of its power LED. “Cryptographic

Chinese Hackers Using Never-Before-Seen Tactics for Critical Infrastructure Attacks

26/06/2023 0 Comments 0 tags

The newly discovered Chinese nation-state actor known as Volt Typhoon has been observed to be active in the wild since at least mid-2020, with the hacking crew linked to never-before-seen

Microsoft Warns of Widescale Credential Stealing Attacks by Russian Hackers

26/06/2023 0 Comments 0 tags

Microsoft has disclosed that it’s detected a spike in credential-stealing attacks conducted by the Russian state-affiliated hacker group known as Midnight Blizzard. The intrusions, which made use of residential proxy

How Generative AI Can Dupe SaaS Authentication Protocols — And Effective Ways To Prevent Other Key AI Risks in SaaS

26/06/2023 0 Comments 0 tags

Security and IT teams are routinely forced to adopt software before fully understanding the security risks. And AI tools are no exception. Employees and business leaders alike are flocking to

Japanese Cryptocurrency Exchange Falls Victim to JokerSpy macOS Backdoor Attack

26/06/2023 0 Comments 0 tags

An unknown cryptocurrency exchange located in Japan was the target of a new attack earlier this month to deploy an Apple macOS backdoor called JokerSpy. Elastic Security Labs, which is

Twitter Hacker Sentenced to 5 Years in Prison for $120,000 Crypto Scam

24/06/2023 0 Comments 0 tags

A U.K. citizen who took part in the massive July 2020 hack of Twitter has been sentenced to five years in prison in the U.S. Joseph James O’Connor (aka PlugwalkJoe),