New Cuttlefish Malware Hijacks Router Connections, Sniffs for Cloud Credentials

02/05/2024 0 Comments 0 tags

A new malware called Cuttlefish is targeting small office and home office (SOHO) routers with the goal of stealthily monitoring all traffic through the devices and gather authentication data from HTTP GET and POST requests. “This

Android Malware Wpeeper Uses Compromised WordPress Sites to Hide C2 Servers

01/05/2024 0 Comments 0 tags

Cybersecurity researchers have discovered a previously undocumented malware targeting Android devices that uses compromised WordPress sites as relays for its actual command-and-control (C2) servers for detection evasion. The malware, codenamed Wpeeper,

Bitcoin Forensic Analysis Uncovers Money Laundering Clusters and Criminal Proceeds

01/05/2024 0 Comments 0 tags

A forensic analysis of a graph dataset containing transactions on the Bitcoin blockchain has revealed clusters associated with illicit activity and money laundering, including detecting criminal proceeds sent to a crypto

ZLoader Malware Evolves with Anti-Analysis Trick from Zeus Banking Trojan

01/05/2024 0 Comments 0 tags

The authors behind the resurfaced ZLoader malware have added a feature that was originally present in the Zeus banking trojan that it’s based on, indicating that it’s being actively developed. “The latest version, 2.4.1.0, introduces a feature to

Everyone’s an Expert: How to Empower Your Employees for Cybersecurity Success

01/05/2024 0 Comments 0 tags

There’s a natural human desire to avoid threatening scenarios. The irony, of course, is if you hope to attain any semblance of security, you’ve got to remain prepared to confront those very same threats. As

Ex-NSA Employee Sentenced to 22 Years for Trying to Sell U.S. Secrets to Russia

01/05/2024 0 Comments 0 tags

A former employee of the U.S. National Security Agency (NSA) has been sentenced to nearly 22 years (262 months) in prison for attempting to transfer classified documents to Russia. “This

Millions of Malicious ‘Imageless’ Containers Planted on Docker Hub Over 5 Years

30/04/2024 0 Comments 0 tags

Cybersecurity researchers have discovered multiple campaigns targeting Docker Hub by planting millions of malicious “imageless” containers over the past five years, once again underscoring how open-source registries could pave the way for supply chain

U.S. Government Releases New AI Security Guidelines for Critical Infrastructure

30/04/2024 0 Comments 0 tags

The U.S. government has unveiled new security guidelines aimed at bolstering critical infrastructure against artificial intelligence (AI)-related threats. “These guidelines are informed by the whole-of-government effort to assess AI risks

New U.K. Law Bans Default Passwords on Smart Devices Starting April 2024

30/04/2024 0 Comments 0 tags

The U.K. National Cyber Security Centre (NCSC) is calling on manufacturers of smart devices to comply with new legislation that prohibits them from using default passwords, effective April 29, 2024. “The law, known

New R Programming Vulnerability Exposes Projects to Supply Chain Attacks

29/04/2024 0 Comments 0 tags

A security vulnerability has been discovered in the R programming language that could be exploited by a threat actor to create a malicious RDS (R Data Serialization) file such that it results