June 27, 2024 at 12:06PM State-sponsored actors have launched three novel credential-phishing campaigns compromising over 40,000 corporate users, including top executives, in just three months. These attacks use highly evasive tactics to circumvent security controls, focusing on stealing credentials from corporate users for cyber-espionage purposes. Security experts stress the need for organizations to adapt and … Read more
March 26, 2024 at 05:33AM UK’s Deputy Prime Minister, Oliver Dowden, asserts that China’s attempts to undermine UK elections were unsuccessful. The cyberattack on the 2021 Electoral Commission compromised voters’ data. China-linked APT31 targeted UK parliamentarians, prompting sanctions by the UK and US. The National Cyber Security Centre (NCSC) updated its guidance, and China is … Read more
December 20, 2023 at 04:44PM Google has released emergency updates to address the eighth Chrome zero-day vulnerability of the year, CVE-2023-7024, which was exploited in targeted attacks. The bug, discovered by Google’s Threat Analysis Group, affects the open-source WebRTC framework and poses a high-severity risk due to a heap buffer overflow weakness. Google aims to … Read more
November 20, 2023 at 02:00AM Appin Software Security, an Indian hack-for-hire group, has been conducting espionage, surveillance, and disruptive operations targeting various countries for over a decade. The group, initially an educational startup, has been involved in covert hacking operations since at least 2009. They have targeted high-value individuals, governmental organizations, and businesses involved in … Read more