July 25, 2024 at 05:01PM Threat actors are exploiting ServiceNow flaws to breach government agencies, data centers, energy providers, and software firms in data theft attacks. Over 300,000 internet-exposed instances make it a popular target. Resecurity reports tens of thousands of systems remain vulnerable despite security updates released on July 10, 2024, urging users to … Read more
July 11, 2024 at 06:39AM A new email phishing campaign targeting Spanish language victims delivers a remote access trojan called Poco RAT since February 2024. The attacks primarily aim at mining, manufacturing, hospitality, and utilities sectors. The malware uses various tactics such as finance-themed lures and legitimate services abuse to evade detection. Additionally, the article … Read more
November 21, 2023 at 10:56AM A sophisticated phishing campaign using DarkGate and PikaBot malware is posing a significant threat to organizations. The campaign began after the takedown of the Qakbot operation and is considered one of the most advanced since then. The attackers employ tactics similar to the previous Qakbot campaigns, indicating a shift to … Read more