Main Points A cyber espionage campaign, linked to Iran’s Ministry of Intelligence and Security (MOIS), is targeting various sectors in the Middle East. The campaign has been active for at least one year and targets financial, government, military, and telecommunications sectors. Check Point, an Israeli cybersecurity firm, and Sygnia found the campaign. The firm refers
Read More
New Version of Notorious Turla’s Backdoor: “Kazuar” – The reputed Russian hacking collective, Turla, has been spotted using an updated version of its recognized second-stage backdoor, known as Kazuar. – Palo Alto Networks Unit 42 is monitoring this infamous adversary, referred to under its celestial codename – “Pensive Ursa”. – The upgraded version of Kazuar
Read More
F5 Raises Alarm on Exploitation of Critical BIG-IP Flaw Main Points: F5 warns about active exploitation of a serious security vulnerability in BIG-IP. This flaw, tracked as CVE-2023-46747 and scored at 9.8 (CVSS), was disclosed less than a week ago. The vulnerability enables casual network interlopers to execute arbitrary system commands and achieve code execution.
Read More
The Art of Spyware: Meet Arid Viper, The Culprit Behind a Sneaky Android Attack The infamous threat actor Arid Viper, also known as APT-C-23, Desert Falcon, or TAG-63, has unleashed another attack, this time through an Android spyware campaign. This breach targets Arabic-speaking users utilizing a counterfeit dating app to gather valuable user data. Arid
Read More
Those Sneaky Cyber Baddies: New Malicious Packages Found in NuGet! Bullet Points: Cybersecurity researchers have outsmarted some elusive villains once again, uncovering a new set of malicious packages on the NuGet package manager, a method not commonly seen in the malicious playbook. Software supply chain security firm ReversingLabs describes this as a coordinated attack that’s
Read More
Atlassian Letting Users Confront A Confluence Conundrum Atlassian has identified a critical security flaw in their Confluence Data Center and Server platforms that could lead to massive data loss if taken advantage of by an unauthenticated incognito attacker. The vulnerability is indexed as CVE-2023-22518 and has been given a chilling score of 9.1 out of
Read More
Evolution and Innovation: Driving Forces in Cybersecurity Cybersecurity is a field that rewards swift adaptability and innovation. Penetration testing (pen test) solutions boost productivity and deliver a layer of essential objectivity that ensures efficiency and precision. An effective pairing of a top-notch penetration tester and a robust pen testing solution is essential in today’s heightened
Read More
New Malvertising Campaign Misuses Dynamic Search Ads and Compromised Websites A new malicious advertising campaign capitalizes on a compromised website to promote fake versions of PyCharm on Google search results using Dynamic Search Ads. The website owner may not be aware that one of their ads was automatically created to promote a popular program for
Read More
**Main Points** • Canada has banned the usage of Tencent and Kaspersky’s apps on all government mobile devices. • The ban is driven by concerns of an “unacceptable level of risk to privacy and security.” • This action is part of the Canadian government’s ongoing efforts to secure their information and network. **Canada’s New Ban:
Read More
Meta to Offer Ad-Free Facebook and Instagram for Fees in Select EU Regions Meta announces plans to offer an ad-free version of Facebook and Instagram in the EU, EEA, and Switzerland. The move comes in an effort to adhere to ‘evolving’ data protection regulations in these regions. Pricing for the ad-free subscription will cost €9.99/month
Read MoreNo products in the cart.