January 9, 2024 at 11:47AM Researchers from Cisco Talos and the Dutch police obtained a decryption tool for the Tortilla variant of Babuk ransomware, leading to the arrest of the operator. This variant emerged after the original malware leaked. The threat actor targeted Microsoft Exchange servers using ProxyShell exploits. Avast released a decrypter for Babuk … Read more
January 7, 2024 at 03:37PM An ongoing campaign has been distributing the AsyncRAT malware for the past 11 months, utilizing various loader samples and domains. AsyncRAT, a Windows remote access tool, facilitates unauthorized access, data theft, and malware deployment. The attacks target specific individuals and companies, employing sophisticated techniques to avoid detection. Researchers provide detection … Read more
December 28, 2023 at 10:54AM Kaspersky’s GReAT team uncovered a hidden iPhone feature, exploited through CVE-2023-38606, allowing attackers to evade memory protection. The issue affected iPhones on iOS up to 16.6 and may have been for testing or debugging. The team’s thorough analysis revealed a sophisticated attack vector, demonstrating how even advanced hardware protection can … Read more
December 22, 2023 at 09:55AM Three Chrome extensions masquerading as VPNs were found to be malware, infecting users’ machines through pirated video game installers. ReasonLabs discovered the malicious extensions and reported their findings to Google, resulting in their removal from the Chrome Web Store. The extensions targeted Russian-speaking users, stealing data, manipulating web requests, and … Read more
December 21, 2023 at 11:49AM OpenAI has addressed a data exfiltration bug in ChatGPT that could leak conversation details. The latest fix includes client-side checks, but it’s not perfect and attackers may still exploit it under certain conditions. Safety checks are not yet implemented in the iOS app, leaving the risk unaddressed. The issue was … Read more
December 21, 2023 at 11:28AM A new variant of the Android banking Trojan, Chameleon, has evolved to target users in Australia, Poland, UK, and Italy by bypassing biometric security and utilizing new commands. This includes the ability to interrupt biometric operations, employ Android’s Accessibility service for device takeover attacks, and task scheduling through the AlarmManager … Read more
December 21, 2023 at 08:33AM ESET releases patches to fix a high-severity vulnerability in its endpoint and server security products. The flaw, CVE-2023-5594, affected the SSL/TLS protocol scanning feature and could make web browsers trust untrustworthy sites. The patch is automatically rolling out via product updates since November 21, with no user interaction required. ESET … Read more
December 17, 2023 at 04:44PM The developers of Rhadamanthys malware have released two major versions, enhancing its information-stealing capabilities. Sold via subscription, it’s distributed through various channels. Check Point’s analysis of version 0.5.0 revealed a new plugin system, improved stub construction, and targeted crypto apps. Version 0.5.1 introduces a new Clipper plugin and other advanced … Read more
December 14, 2023 at 06:35PM Kraft Heinz confirmed their systems are normal with no evidence of a breach listed by an extortion group. Kraft Heinz, a leading food and beverage company, is being threatened by the Snatch extortion group, but no proof of breach was provided. The company is investigating claims but sees no evidence … Read more
December 14, 2023 at 10:50AM Israeli CEO Doron Amir has recruited hackers from around the world to counter anti-Israel online activity. He believes that permitting offensive cyber operations, with proper supervision, would deter cyberattacks. This concept has been met with skepticism by cybersecurity experts, citing concerns about sufficient oversight and accountability. CyTaka has not commented … Read more