Recent Security News
-
NS-STEALER Uses Discord Bots to Exfiltrate Your Secrets from Popular Browsers
January 22, 2024 at 07:18AM Cybersecurity researchers have uncovered a new Java-based information stealer, NS-STEALER, which uses a Discord bot to extract sensitive data from compromised systems. The malware disguises itself as cracked software within ZIP archives and exfiltrates data to a Discord Bot channel. The threat actors behind the Chaes malware have released an…
-
Chinese Spies Exploited VMware vCenter Server Vulnerability Since 2021
January 22, 2024 at 06:12AM Mandiant reports that a Chinese cyberespionage group exploited a zero-day vulnerability in VMware vCenter Server (CVE-2023-34048) since 2021. The flaw allows remote code execution and was actively exploited, with evidence suggesting a sophisticated China-linked group, UNC3886, as responsible. VMware released patches and urged customers to apply them promptly. Key Takeaways…
-
ICO fines spam slinging financial services biz
January 22, 2024 at 06:09AM LADH Limited, a financial services company, was fined £50,000 by the UK’s data regulator for illegally sending over 31,000 spam text messages without consent. The company failed to offer recipients the chance to opt out, and claimed to have received consent from a third party without written confirmation. The ICO…
-
Safeguarding against the global ransomware threat
January 22, 2024 at 04:57AM Ransomware poses a severe threat to businesses, governments, and organizations worldwide, with potentially irreversible data loss and devastating economic and operational consequences. Data Resilience Strategist at Object First, Sterling Wilson, emphasizes the need for proactive cybersecurity measures, advocating for immutable backup storage solutions like Ootbi to protect valuable data from…