Android Malware “FjordPhantom” is Always Phishing in Southeast Asian Waters Understanding The New Android Malware • Cybersecurity researchers have revealed a new complex Android malware named FjordPhantom. • FjordPhantom has been targeting users specifically in Southeast Asian nations such as Indonesia, Thailand, and Vietnam since the beginning of September 2023. • The malware primarily disperses
Read More
Key Takeaways The U.S. Department of Justice (DOJ) and FBI have collaborated to dismantle the Qakbot malware and botnet operation Despite the operation’s success, the Qakbot may still pose potential threats Recommendations on how to mitigate such threats are discussed Nerds vs Nasty Bots: The FBI and DOJ’s Big Takedown If the Hollywood movie you
Read More
Chinese-speaking Threat Actor Targets Uzbekistan and South Korea with SugarGh0st RAT A suspected Chinese-speaking threat actor has embarked on a malicious campaign targeting Uzbekistan’s Ministry of Foreign Affairs and South Korean users. This campaign deploys a remote access trojan (RAT) known as SugarGh0st RAT. The operation commenced around August 2023 and uses two distinct infection
Read More
Meta-owned WhatsApp Introduces Custom ‘Secret Code’ Feature for Advanced Privacy Main points: – WhatsApp introduces new Secret Code feature for enhanced chat privacy. – The Secret Code works as an extra layer of protection for sensitive chats. WhatsApp’s ‘Secret Code’ Invention In an escalation of its efforts to improve user privacy on the platform, Meta’s
Read More
DDoS Attack Intensity Skyrockets – Gcore Radar Gives the Lowdown Main Points: • DDoS attacks have significantly increased in numerous industries. • Starting at an average strength of 800 Gbps in 2023, some attacks have now surged to 1.5+ Tbps. • Gcore’s defense system has faced two major consecutive attacks, each with a different strategy.
Read More
US Treasury Department Sanctions North Korean Tech Collective, Kimsuky Main Points The Office of Foreign Assets Control (OFAC) of the U.S. Department of the Treasury issues sanctions against North Korea-linked tech collective, Kimsuky. Kimsuky and eight foreign-based agents are accused of facilitating sanctions evasion. These agents reportedly assisted in revenue generation and missile-related technology procurement
Read More
Main Points Zyxel releases patches for 15 security issues affecting network-attached storage (NAS), firewall, and access point (AP) devices. Three critical vulnerabilities could lead to authentication bypass and command injection. The vulnerabilities in question are CVE-2023-35138, a command injection flaw, and two others that pose significant risk if exploited. Zyxel Releases Patches for 15 Security
Read More
Apple Shakes the Security Tree with Software Updates Here’s a quick rundown of our tech-rich nutrition for the day: – Apple has released software updates across their operating systems. – The updates address two security vulnerabilities that have been exploited in the wild. – These vulnerabilities are both linked with the WebKit web browser engine.
Read More
SaaS? • SaaS stands for Software as a Service, a cloud-based service where instead of downloading software, applications can be accessed over the internet. • TPRM, or Third-Party Risk Management, involves managing and controlling the potential risks and dangers posed by third parties to your organization. Tips for Managing Third-Party Risks in SaaS 1. Have
Read More
North Korean Threat Actors: An Increasing Peril For Crypto Sector Here are some quick takeaways for you: Threat actors from North Korea, also known as the Democratic People’s Republic of Korea (DPRK), are increasingly turning their attention towards the cryptocurrency sector. This trend started to gain impetus from 2017, as crypto became a significant revenue
Read MoreNo products in the cart.