February 9, 2024 at 04:55PM Researchers at Bitdefender have uncovered a new macOS backdoor, Trojan.MAC.RustDoor, linked to the BlackCat/ALPHV ransomware family known for targeting Windows. Written in Rust coding language, the malware masquerades as a Visual Studio code editor update. It has been active for at least three months, gathering and sending data to a … Read more
January 24, 2024 at 11:18AM A misconfiguration in Google Kubernetes Engine (GKE) has allowed a security loophole, enabling attackers to access sensitive information and take over clusters. Cloud security startup Orca Security reported that the issue is due to privileges granted to the system:authenticated group. Approximately 250,000 GKE clusters were found exposed, with over 1,300 … Read more
January 19, 2024 at 08:51AM Pirated macOS applications from Chinese websites harbor a backdoor allowing attackers remote control over infected machines. The malware, hosted on “macyy[.]cn,” uses a dropper to fetch backdoor and downloader components, which enable persistence and facilitate additional payloads. This echoes previous incidents involving the ZuRu malware, possibly indicating a successor. (Words: … Read more
December 19, 2023 at 03:40PM A new malware campaign, detected by IBM in March 2023, has targeted over 50,000 users across 40 banks globally, attempting to steal banking data. Using JavaScript web injections, the attackers intercepted user credentials and OTPs, gaining access to accounts, changing settings, and performing unauthorized transactions. The evasive campaign employs stealthy … Read more
December 16, 2023 at 05:41PM MongoDB experienced a cyberattack that breached its corporate systems and exposed customer data. The attack was detected by the company, and an investigation is ongoing. Although customer account metadata and contact information were compromised, data stored in MongoDB Atlas remains secure. The company urges customers to take security measures and … Read more
December 14, 2023 at 03:43PM Users of Ubiquiti networking devices have reported seeing other people’s devices and notifications through the company’s UniFi cloud services. Customers experienced receiving notifications and accessing devices belonging to others. Ubiquiti is investigating the issue and engaging with impacted customers. Some users are frustrated with the lack of a public statement … Read more
November 22, 2023 at 12:30PM Researchers at Aqua Security have discovered that hundreds of organizations and open-source projects are at risk due to the public exposure of Kubernetes configuration secrets. This vulnerability poses a severe supply chain attack threat as sensitive environments in the Software Development Life Cycle (SDLC) can be accessed. Aqua Security found … Read more