Recent Security News
-
Microsoft: Iranian hackers target researchers with new MediaPl malware
January 17, 2024 at 03:39PM Microsoft warns that an Iranian hacker group, linked to the IRGC, is targeting high-profile individuals in research organizations and universities in Europe and the US using spearphishing attacks. The attackers use custom-tailored phishing emails and new backdoor malware called MediaPl to steal sensitive data and gather intelligence aligning with Iranian…
-
Vulnerability Management Firm Vicarius Raises $30 Million
January 17, 2024 at 02:37PM Vicarius, a New York vulnerability management firm, secured $30 million in a Series B funding round led by Bright Pixel. With total funding exceeding $56 million, the company offers automated vulnerability management through vRx and a PLG model. Their LLM-based approach with vuln_GPT aims to combat AI attacks, and the…
-
Bigpanzi botnet infects 170,000 Android TV boxes with malware
January 17, 2024 at 01:57PM Summary: The cybercrime syndicate ‘Bigpanzi’ has been infecting Android TV and eCos set-top boxes to create a large botnet used for illegal activities, including media streaming, DDoS attacks, and content provision. Their customized malware, pandoraspear and pcdn, poses serious cybersecurity threats. The scale of their operations, involving over 1.3 million…
-
CISA pushes federal agencies to patch Citrix RCE within a week
January 17, 2024 at 01:36PM CISA has directed U.S. federal agencies to secure their systems against recently patched Citrix NetScaler and Google Chrome zero-days. The urgency is due to active exploitation of the vulnerabilities. The agencies have specific timelines for patching, with the most critical CVE-2023-6548 vulnerability requiring resolution within a week. CISA urges all…