Unveiling the HrServ Cyber Attack on an Afghan Government Entity • A previously unknown web shell named HrServ targeted with Advanced Persistent Threat (APT) attack an unspecified Afghan government department. • HrServ is a dynamic-link library (DLL) named “hrserv.dll”. • The web shell showcases sophisticated features such as custom encoding methods for client communication and
Read More
ownCloud Security Loopholes: A Closer Look The open-source ownCloud software has three critical security flaws. These vulnerabilities could allow unauthorized disclosure of sensitive information and alteration of files. The issue affects graphapi versions from 0.2.0 to 0.3.0 in containerized deployments. The flaw has a high severity CVSS score of 10.0, indicating imminent danger. Why ownCloud’s
Read More
The Lowdown on the Telekopye Bot – ESET warned about a malicious bot called Telekopye on Telegram being used for large-scale phishing scams. – Telekopye is capable of crafting phishing websites, emails, SMS messages, and more. – The perpetrators behind the operation, dubbed ‘Neanderthals’, operate it as a service. Talking ‘Bot the Threat: Telekopye Unveiled
Read More
Deciphering Ditzy Data: GitGuardian’s Quest to Secure Developers’ Secrets Main Takeaways: GitGuardian unveiled a new service called HasMySecretLeaked to detect if developers’ secrets (API keys, passwords, and the likes) have been exposed publicly on GitHub. This was a challenging task due to the immense amount of diverse data on GitHub that had to be processed.
Read More
Public Exposure of Kubernetes Secrets: A Threat To Cybersecurity Main Points: Cybersecurity researchers have revealed that Kubernetes configuration secrets are being publicly exposed, leading to potential supply chain attacks. Yakir Kadkoda and Assaf Morag from Aqua Security discovered and reported this issue. Top blockchain companies are among those affected. Public Exposure of Kubernetes Secrets Risks
Read More
Watch Your Clicks: Phishing Attack Uses Russian Language Document To Obtain Sensitive Info – A Newly observed phishing attack uses a Russian-language Microsoft Word document to help the hackers deliver malware. – The attack is carried out by a threat actor named Konni and is suspected to have connections with the North Korean cluster known
Read More
Packages Wrapped in Malware: Sophisticated Malware Loader Known as ‘WailingCrab’ Key Points A complex malware known as WailingCrab is being delivered through email messages themed around delivery and shipment. The malware includes several components: a loader, injector, downloader, and backdoor. Successful communication with C2-controlled servers is needed to retrieve each malware stage. The malware’s discovery
Read More
Malware Campaign Uses Zero-Day Vulnerabilities to Reel in Routers for a DDoS Botnet Attack Main Takeaways: An ongoing malware campaign is wielding two previously unknown security gaps, also known as zero-day vulnerabilities, to let hackers access routers and video recorders remotely. The payload aims for routers and network video recorder (NVR) devices which still operate
Read More
Security Tools: The Digital Protectors of Modern Life Modern security tools are continually improving and are instrumental in defending organizations from cybercriminals. Despite the advances in security, cybercriminals can sometimes breach defenses. Swift action is necessary to curb any potential threats and restore normal functions. Equipping security teams with the right tools and understanding of
Read More
## Main Points: – A North Korean state-sponsored hacker group known as Diamond Sleet is now resorting to more cunning ways of attack. – They’ve manipulated a legitimate application, developed by a Taiwanese multimedia software company called CyberLink. – The application installer has been modified to include malicious code that downloads, creating a supply chain
Read MoreNo products in the cart.