July 23, 2024 at 12:29PM Telegram has addressed a zero-day flaw in older Android app versions, allowing attackers to hide malicious payloads in video files. ESET researchers discovered the flaw, “EvilVideo”, on a hacker forum. Exploit affected versions 10.14.4 and below. Updates to version 10.14.5 and above fix the issue. Users should update immediately to … Read more
April 2, 2024 at 11:39AM A high-severity XSS vulnerability in WP-Members Membership plugin, tracked as CVE-2024-1852, allows attackers to inject malicious scripts into web pages via user registration functionality. The issue arises from insufficient input sanitization and output escaping. Version 3.4.9.3 contains a patch, but users are urged to update installations promptly due to the … Read more
March 29, 2024 at 02:09AM The Python Package Index (PyPI) temporarily halted new user sign-ups due to an influx of malicious projects aimed at developers. Threat actors used typosquatting to upload deceptive versions of popular packages, targeting sensitive data and crypto wallets. Over 500 suspicious packages were uploaded within days, highlighting the increasing risk of … Read more
December 4, 2023 at 04:47PM A US aerospace company was the target of a yearlong cyberespionage campaign by a group named “AeroBlade.” Using phishing emails with Word documents, the attackers injected malicious templates to deploy a reverse shell, collecting data and ensuring persistence. Advanced stealth tactics allowed them to evade detection, suggesting a commercial espionage … Read more
November 6, 2023 at 10:06AM Researchers have discovered a new dropper-as-a-service (DaaS) for Android called SecuriDropper that bypasses Google’s security restrictions and delivers malware. Dropper malware on Android is a lucrative business for threat actors, allowing them to install malicious payloads on compromised devices. SecuriDropper disguises itself as a harmless app and uses different Android … Read more