January 17, 2024 at 04:09PM Rapper Punchmade Dev, known for his music on cybercriminal activities, now promotes an online shop selling hacked bank accounts, payment cards, software for fake checks, and identity data. The shop offers various services through Cash App, PayPal, Linkable CC, Chime, Wu, and OTP BOT. It remains uncertain if Punchmade Dev … Read more
January 17, 2024 at 03:47PM Dubai Police and Ghana’s Cyber Security Authority issued warnings about unsolicited scam messages and fraudulent websites, with scammers using SEO tactics to rank high on search results. Experts note the public’s default trust in authority figures and susceptibility online, emphasizing the need for more vigilance to counter these threats. Hurdles … Read more
January 17, 2024 at 03:39PM Microsoft warns that an Iranian hacker group, linked to the IRGC, is targeting high-profile individuals in research organizations and universities in Europe and the US using spearphishing attacks. The attackers use custom-tailored phishing emails and new backdoor malware called MediaPl to steal sensitive data and gather intelligence aligning with Iranian … Read more
January 17, 2024 at 02:37PM Vicarius, a New York vulnerability management firm, secured $30 million in a Series B funding round led by Bright Pixel. With total funding exceeding $56 million, the company offers automated vulnerability management through vRx and a PLG model. Their LLM-based approach with vuln_GPT aims to combat AI attacks, and the … Read more
January 17, 2024 at 01:57PM Summary: The cybercrime syndicate ‘Bigpanzi’ has been infecting Android TV and eCos set-top boxes to create a large botnet used for illegal activities, including media streaming, DDoS attacks, and content provision. Their customized malware, pandoraspear and pcdn, poses serious cybersecurity threats. The scale of their operations, involving over 1.3 million … Read more
January 17, 2024 at 01:36PM CISA has directed U.S. federal agencies to secure their systems against recently patched Citrix NetScaler and Google Chrome zero-days. The urgency is due to active exploitation of the vulnerabilities. The agencies have specific timelines for patching, with the most critical CVE-2023-6548 vulnerability requiring resolution within a week. CISA urges all … Read more
January 17, 2024 at 01:30PM Microsoft has uncovered a sophisticated spear-phishing campaign by the ‘Mint Sandstorm’ hackers, associated with Iran’s military intelligence. The attacks target high-profile individuals in Middle Eastern affairs, using impersonation of journalists and benign emails to build trust before delivering malicious content. The hackers utilize compromised accounts to send phishing lures and … Read more
January 17, 2024 at 01:30PM Pro-Russian group “NoName” conducted a cyberattack on Swiss government websites, citing President Zelensky’s Davos visit. National Cyber Security Centre promptly restored access, as expected security measures were in place. The attack used distributed denial-of-service, impacting ministries and offices, but not the main portal. “NoName” group previously targeted Switzerland after Zelensky’s … Read more
January 17, 2024 at 01:21PM The FBI and CISA have issued an alert about a malware campaign targeting Apache webservers and websites using the Laravel Web application framework. The campaign aims to steal credentials for high-profile applications such as AWS, Microsoft 365, Twilio, and SendGrid. The threat actors use a known malware called “Androxgh0st” to … Read more
January 17, 2024 at 01:07PM Security researchers discovered a method to detect spyware infections like Pegasus, Reign, and Predator on compromised Apple mobile devices by analyzing the Shutdown.log file. Kaspersky released Python scripts to automate this process and recommend regular device restarts to capture signs of infection. The method proved reliable in identifying spyware-related behaviors … Read more