Recent Security News
-
Iran-Linked Imperial Kitten Cyber Group Targeting Middle East’s Tech Sectors
November 10, 2023 at 03:21AM A group with links to Iran, known as Imperial Kitten, targeted transportation, logistics, and technology sectors in the Middle East, including Israel, in October 2023. They utilize social engineering and various techniques such as watering hole attacks, one-day exploits, phishing, and targeting IT service providers for initial access. Microsoft notes…
-
ICBC hit by ransomware impacting global trades
November 10, 2023 at 03:06AM China’s largest bank, ICBC, experienced a ransomware attack that disrupted its financial services systems. The incident has impacted US Treasury markets and prevented the settling of trades on behalf of other market players. The attack exploited an unpatched Citrix Netscaler box. The ransomware gang LockBit is suspected to be behind…
-
Stealthy Kamran Spyware Targeting Urdu-speaking Users in Gilgit-Baltistan
November 10, 2023 at 12:45AM A watering hole attack has targeted Urdu-speaking readers in the Gilgit-Baltistan region via the Hunza News website. The attack delivers a new spyware called Kamran, which is disguised as an Android app. The malware collects sensitive information from infected devices and uploads it to a command-and-control server. Kamran lacks remote…
-
‘BlazeStealer’ Python Malware Allows Complete Takeover of Developer Machines
November 9, 2023 at 06:16PM Malicious Python packages masquerading as code obfuscation tools are targeting developers through the PyPI code repository. Known as “BlazeStealer,” the malware can steal data, launch keyloggers, encrypt files, and execute commands. Hackers target developers engaged in code obfuscation due to the valuable and sensitive information they work with. BlazeStealer is…
-
MOVEit Hackers Pivot to SysAid Zero-Day in Ransomware Attacks
November 9, 2023 at 06:09PM A new zero-day exploit has been discovered that uses a vulnerability in on-premises deployments of SysAid IT Support software to deploy Clop ransomware. Microsoft has announced the flaw and SysAid has issued a patch. The threat actor behind the exploit is Lace Tempest, known for deploying Clop ransomware. Enterprise teams…