Recent Security News

  • Risk of getting malicious extension from Chrome store way worse than Google’s letting on, study suggests

    June 23, 2024 at 06:45AM Google claims to effectively vet Chrome extensions to catch most malicious code, though researchers argue that the risk is more substantial. There has been considerable installation of risky extensions, representing a significant problem. The authors emphasize the critical need for stronger oversight by Google to address these issues. After reviewing…

    Read More

  • CDK Global outage caused by BlackSuit ransomware attack

    June 22, 2024 at 03:14PM The BlackSuit ransomware gang caused a massive IT outage at CDK Global, affecting North American car dealerships. CDK is negotiating with BlackSuit for a decryptor and to prevent data leaks. The outage led to manual operation of car dealerships. Major companies like Penske Automotive Group and Sonic Automotive were also…

    Read More

  • Ratel RAT targets outdated Android phones in ransomware attacks

    June 22, 2024 at 03:14PM The ‘Ratel RAT’ is an open-source Android malware widely used by cybercriminals to target outdated devices, often using ransomware to demand payment on Telegram. Check Point researchers detected over 120 campaigns using Rafel RAT, with high-profile organizations being targeted, particularly in the United States, China, and Indonesia. It’s crucial to…

    Read More

  • ExCobalt Cyber Gang Targets Russian Sectors with New GoRed Backdoor

    June 22, 2024 at 07:54AM ExCobalt, a cybercrime gang, is targeting Russian organizations with a new Golang-based backdoor called GoRed. The group engages in cyber espionage, using various sophisticated tools to attack sectors like government, IT, metallurgy, and telecommunications. ExCobalt demonstrates a high level of activity, constantly improving techniques and flexibly adapting its toolset to…

    Read More

  • Warning: New Adware Campaign Targets Meta Quest App Seekers

    June 22, 2024 at 07:54AM A new phishing attack targets Meta Quest (formerly Oculus) app seekers, tricking them into downloading an adware called AdsExhaust. This adware can capture screenshots, interact with browsers, and generate revenue for operators by clicking on ads. The attack also includes social engineering tactics and the use of YouTube videos to…

    Read More