Researchers Uncover Windows Flaws Granting Hackers Rootkit-Like Powers

22/04/2024 0 Comments 0 tags

New research has found that the DOS-to-NT path conversion process could be exploited by threat actors to achieve rootkit-like capabilities to conceal and impersonate files, directories, and processes. “When a

Ransomware Double-Dip: Re-Victimization in Cyber Extortion

22/04/2024 0 Comments 0 tags

Between crossovers – Do threat actors play dirty or desperate? In our dataset of over 11,000 victim organizations that have experienced a Cyber Extortion / Ransomware attack, we noticed that

MITRE Corporation Breached by Nation-State Hackers Exploiting Ivanti Flaws

22/04/2024 0 Comments 0 tags

The MITRE Corporation revealed that it was the target of a nation-state cyber attack that exploited two zero-day flaws in Ivanti Connect Secure appliances starting in January 2024. The intrusion

Pentera’s 2024 Report Reveals Hundreds of Security Events per Week, Highlighting the Criticality of Continuous Validation

22/04/2024 0 Comments 0 tags

Over the past two years, a shocking 51% of organizations surveyed in a leading industry report have been compromised by a cyberattack. Yes, over half.  And this, in a world where enterprises

Microsoft Warns: North Korean Hackers Turn to AI-Fueled Cyber Espionage

22/04/2024 0 Comments 0 tags

Microsoft has revealed that North Korea-linked state-sponsored cyber actors has begun to use artificial intelligence (AI) to make its operations more effective and efficient. “They are learning to use tools

New RedLine Stealer Variant Disguised as Game Cheats Using Lua Bytecode for Stealth

21/04/2024 0 Comments 0 tags

A new information stealer has been found leveraging Lua bytecode for added stealth and sophistication, findings from McAfee Labs reveal. The cybersecurity firm has assessed it to be a variant

Critical Update: CrushFTP Zero-Day Flaw Exploited in Targeted Attacks

20/04/2024 0 Comments 0 tags

Users of the CrushFTP enterprise file transfer software are being urged to update to the latest version following the discovery of a security flaw that has come under targeted exploitation in the wild. “CrushFTP v11

Palo Alto Networks Discloses More Details on Critical PAN-OS Flaw Under Attack

20/04/2024 0 Comments 0 tags

Palo Alto Networks has shared more details of a critical security flaw impacting PAN-OS that has come under active exploitation in the wild by malicious actors. The company described the vulnerability, tracked as CVE-2024-3400 (CVSS

BlackTech Targets Tech, Research, and Gov Sectors New ‘Deuterbear’ Tool

19/04/2024 0 Comments 0 tags

Technology, research, and government sectors in the Asia-Pacific region have been targeted by a threat actor called BlackTech as part of a recent cyber attack wave. The intrusions pave the way for an

Akira Ransomware Gang Extorts $42 Million; Now Targets Linux Servers

19/04/2024 0 Comments 0 tags

Threat actors behind the Akira ransomware group have extorted approximately $42 million in illicit proceeds after breaching the networks of more than 250 victims as of January 1, 2024. “Since