Author Info

A sophisticated cyberattack campaign is now targeting those in the Web3 sector through a phony video conferencing platform, affecting both Windows and macOS systems with malicious software designed to steal cryptocurrency. The "Meeten" Campaign Identified by Cado Security Labs, this cyber threat has been named "Meeten"

As cloud environments surpass traditional infrastructure in complexity and scale, they offer expansive audit capabilities via APIs. While theoretically enhancing threat detection and response, real-world challenges persist due to overwhelming data volumes and sophisticated attacker tactics. Enter Wiz Defend, which promises to transform cloud security operations. Challenges in Cloud Security

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has recently expanded its Known Exploited Vulnerabilities (KEV) catalog by adding several critical vulnerabilities that are currently being exploited. These affect Zyxel, North Grid Proself, ProjectSend, and CyberPanel products. Identified Vulnerabilities CVE-2024-51378: Rated with a CVSS score of 10.0, this

A cyber espionage campaign, potentially linked to a Chinese hacking group, infiltrated a prominent U.S. company earlier this year, compromising its systems for four months, according to a report by Symantec, a subsidiary of Broadcom. The attack, noticed initially on April 11, 2024, persisted until August, although experts speculate

A covert cyber threat group identified as Earth Minotaur is utilizing the MOONSHINE exploit toolkit in conjunction with a newly discovered backdoor dubbed DarkNimbus to conduct targeted surveillance activities against Tibetan and Uyghur communities. MOONSHINE Exploit Kit Initially detected in September 2019 targeting the Tibetan community, MOONSHINE uses vulnerabilities in

A new threat has emerged: the DroidBot Android remote access trojan (RAT). Targeting 77 banks, cryptocurrency exchanges, and major organizations, this malware exemplifies the evolving strategies cybercriminals are employing today. Advanced Capabilities and Techniques DroidBot stands out for its advanced features, as highlighted by Cleafy's cybersecurity experts Simone

Recently, the SmokeLoader malware has re-emerged, targeting key industries in Taiwan, including manufacturing, healthcare, and information technology. This latest threat highlights the malware's capacity to conduct complex attacks through its modular design. Fortinet FortiGuard Labs reports that SmokeLoader is exploiting its flexibility to execute attacks autonomously by downloading

A cybersecurity group aligned with North Korea, known as Kimsuky, has been identified in a series of sophisticated phishing attacks designed to steal user credentials. The method involves deploying emails that seemingly originate from Russian senders. Shift in Tactics Initially utilizing Japanese and Korean email services, Kimsuky shifted in mid-September

A Moscow court has handed a life sentence to Stanislav Moiseyev, identified as the orchestrator of Hydra Market, a globally notorious dark web marketplace. The court also imposed a fine of four million roubles on him, while fifteen of his associates received prison terms ranging from 8 to 23 years,