Daily Archives: 14/12/2024
US indicts, puts up bounty for North Koreans over IT worker fraud scheme
At least $88 million have already been earned by North Korean state-sponsored firms Yanbian Silverstar and Volasys Silverstar for leadi...
US, Israeli critical infrastructure subjected to attacks with novel IOCONTROL malware
Identified within a Gasboy fuel control system's payment terminal believed to have been targeted by the Iranian state-backed operation ...
New BoneSpy, PlainGnome Android spyware deployed by Gamaredon
Malicious battery charge tracking and photo gallery apps, as well as a phony Samsung Knox app and trojanized Telegram app, have been le...
PDQ Deploy users warned of credential-theft risk
The CERT Coordination Center (CERT/CC) published a vulnerability note regarding the risk of admin credential theft for users of PDQ Dep...
Upstart Pumakit Linux rootkit malware examined
Attacks with Pumakit commence with the deployment of the cron dropper, which executes the '/memfd:tgt' and '/memfd:wpn' payloads, with ...
DoS attacks, data compromise threaten over 330K Prometheus instances
More than 330,000 internet-exposed Prometheus monitoring and alerting toolkit servers and exporters could be subjected to data exfiltra...
Byte Federal breach exposes 58K clients
Major U.S. Bitcoin ATM operator Byte Federal had personal information from 58,000 customers inappropriately accessed following a cybera...
Immediate patching of actively exploited Cleo flaw urged
Organizations leveraging Cleo's Harmony, LexiCom, and VLTrader managed file transfer products have been urged by the firm to promptly a...