August 30, 2024 at 01:06PM North Korean hackers utilized a patched Google Chrome zero-day to distribute the FudModule rootkit, gaining SYSTEM privileges through a Windows Kernel exploit. Microsoft attributed the attacks to the North Korean threat actor Citrine Sleet, known for targeting the cryptocurrency sector for financial gain. The group is also associated with other … Read more
August 8, 2024 at 12:34PM A vulnerability called “0.0.0.0 Day” was revealed 18 years ago, enabling harmful websites to circumvent security in Google Chrome, Mozilla Firefox, and Apple Safari, and access local network services. Based on the meeting notes, the key takeaway is that there is a serious vulnerability called “0.0.0.0 Day” that was disclosed … Read more
March 30, 2024 at 03:45AM Malicious ads and bogus websites are enabling the delivery of two different stealer malware targeting Apple macOS users. These attacks aim to steal sensitive data, with one attack leveraging counterfeit websites and the other exploiting a phony software offer. The development indicates an increasing threat to macOS environments from stealer … Read more
February 17, 2024 at 10:56AM Google is testing a new feature to prevent malicious websites from attacking devices and services on a user’s internal, private networks through their browser. The proposed “Private Network Access protections” in Chrome 123 will conduct checks before directing a browser to visit sites within the user’s private network, aiming to … Read more
January 12, 2024 at 12:11AM Trend Micro collaborated with INTERPOL to defend the FIFA World Cup, monitoring and reporting on potential cyber threats. They proactively identified and shared detections of malicious websites and scams, such as fake ticket sales, streaming sites, survey scams, and crypto scamming. Trend Micro aims to continue making the digital world … Read more
October 30, 2023 at 09:45AM Researchers at eSentire have discovered a new attack method called the Wiki-Slack attack, in which threat actors modify Wikipedia pages and share them in Slack to redirect users to malicious websites. By manipulating the formatting of the page, a hidden link is created that can entice users to click, leading … Read more