Recent Security News
-
How Multi-Stage Phishing Attacks Exploit QRs, CAPTCHAs, and Steganography
November 21, 2023 at 06:24AM QR code-based phishing techniques, known as “quishing,” are becoming popular among cybercriminals. By embedding malicious links in QR codes, attackers can bypass spam filters and evade detection. CAPTCHAs are also being exploited in phishing attacks to mask credential-harvesting forms on fake websites. Additionally, steganography is being used to hide malicious…
-
Maintaining a state of readiness to deal with cyber attacks
November 21, 2023 at 06:01AM Cyber security professionals can stay ahead of hackers by continuously training themselves in the latest threats and mitigation techniques. The SANS Institute offers a wide range of courses planned for 2024, both in-person and online, covering various disciplines such as Cloud Security, Digital Forensics, and Offensive Operations. The training is…
-
Kinsing Hackers Exploit Apache ActiveMQ Vulnerability to Deploy Linux Rootkits
November 21, 2023 at 05:12AM Kinsing threat actors are using a critical security flaw in Apache ActiveMQ servers to infect Linux systems with cryptocurrency miners and rootkits. The malware deploys a cryptocurrency mining script that utilizes the host’s resources, causing damage to infrastructure and system performance. The group adapts to new vulnerabilities and targets misconfigured…
-
Mustang Panda Hackers Targets Philippines Government Amid South China Sea Tensions
November 21, 2023 at 02:06AM The China-linked cyber espionage group Mustang Panda targeted a Philippines government entity using legitimate software to sideload malicious files. Mustang Panda, also known as Bronze President and other aliases, is a Chinese advanced persistent threat (APT) that has been active since at least 2012. The group has targeted NGOs and…