Recent Security News
-
iOS Trojan Collects Face and Other Data for Bank Account HackingĀ
February 19, 2024 at 05:39AM Group-IB researchers discovered iOS trojan GoldPickaxe, utilized by Chinese cybercriminal group GoldFactory in APAC region. Trojan collects personal and banking info, including face profiles, SMS, and ID photos. It was distributed through fake apps and MDM profiles, while the Android version has more features. Group-IB warns of potential expansion beyond…
-
Safeguarding cyber-physical systems for a smart future
February 19, 2024 at 04:04AM Cyber-physical systems (CPS) are essential in the Fourth Industrial Revolution, bridging computation and physical infrastructure. They enable innovations like smart roads for driverless cars, user-aware energy grids, and smart medical treatments. However, integrating various systems poses cybersecurity risks that require complex solutions. The Claroty Buyers Checklist helps organizations evaluate and…
-
Russian-Linked Hackers Breach 80+ Organizations via Roundcube Flaws
February 19, 2024 at 12:45AM Belarus and Russia-linked threat actors, identified as Winter Vivern, conducted a cyber espionage campaign exploiting vulnerabilities in Roundcube webmail servers, targeting over 80 organizations in Georgia, Poland, and Ukraine. The campaign aimed to gather intelligence on European political and military activities, demonstrating high sophistication in attack methods. TAG-70 also targeted…
-
Iranian Hackers Target Middle East Policy Experts with New BASICSTAR Backdoor
February 18, 2024 at 11:57PM Charming Kitten, an Iranian-origin threat actor also known as APT35, has been linked to new attacks aimed at Middle East policy experts using a new backdoor called BASICSTAR through a fake webinar portal. The group, affiliated with Iran’s Revolutionary Guard Corps, uses a range of social engineering tactics, including phishing…
-
Feds post $15 million bounty for info on ALPHV/Blackcat ransomware crew
February 18, 2024 at 08:38PM The US government is offering rewards of up to $15 million for information leading to the takedown of the APLHV/Blackcat ransomware gang. Critical infrastructure attacks by APLHV are a significant concern. Siemens has reported critical vulnerabilities across various devices. The EncroChat service takedown continues to aid law enforcement in criminal…