Recent Security News
-
New Threat Actor Uses SQL Injection Attacks to Steal Data From APAC Companies
December 14, 2023 at 11:18AM Group-IB reports a new hacking group, GambleForce, targeting 24 organizations in Asia-Pacific using SQL injections and CMS vulnerabilities to steal sensitive information. The group relies on open source tools and has successfully exfiltrated data from organizations in Australia, Indonesia, the Philippines, and South Korea. GambleForce’s C&C has been taken down…
-
116 Malware Packages Found on PyPI Repository Infecting Windows and Linux Systems
December 14, 2023 at 11:00AM Cybersecurity researchers have found 116 malicious packages in the Python Package Index repository infecting Windows and Linux systems, targeting around 10,000 downloads since May 2023. Attackers employ various techniques to bundle malicious code, mainly aiming to compromise hosts with backdoor malware, including W4SP Stealer and clipper malware. Python developers are…
-
Israeli Company Hires Overseas Attackers in ‘Hack-Back’ Effort
December 14, 2023 at 10:50AM Israeli CEO Doron Amir has recruited hackers from around the world to counter anti-Israel online activity. He believes that permitting offensive cyber operations, with proper supervision, would deter cyberattacks. This concept has been met with skepticism by cybersecurity experts, citing concerns about sufficient oversight and accountability. CyTaka has not commented…
-
Safeguarding Our Children’s Digital Future: A Call to Action
December 14, 2023 at 10:15AM Schools are increasingly targeted by cybercriminals, leading to grave consequences for students and the education sector. The reasons behind this vulnerability include aging IT infrastructure, inadequate cybersecurity expertise, and the increased use of technology by students without proper cybersecurity education. Urgent solutions include improving teacher salaries, reforming credit monitoring, and…