DigiCert to Revoke more than 85K SSL/TLS Certificates
DigiCert to Revoke Certain SSL/TLS Certificates Due to Domain Validation Issue Summary of the Issue DigiCert has announced that it will revoke a subset of SSL/TLS certificates within 24 hours due to an error in their domain validation process. The company identified that it had not properly…
0 Comments4 Minutes
New Mandrake Spyware Version on Google Play Store
Mandrake Spyware Resurfaces in Google Play Store Apps A sophisticated Android spyware known as Mandrake has been detected in five applications available on the Google Play Store. This spyware remained undetected for two years before being discovered. According to Kaspersky, these infected apps…
0 Comments4 Minutes
Chrome Adds Password Verification for Archive Scans
Google Chrome has introduced new alerts to help users identify and avoid dangerous downloads. These improved warning messages are designed to provide quick and clear information about the potential risks of downloaded files. You might be interested in: MacOS Users Face New Threat from BeaverTail…
0 Comments4 Minutes
Videos Used to Spread Malware via Telegram
A significant security issue, dubbed EvilVideo, was discovered in Telegram’s Android app. This flaw allowed attackers to send harmful files disguised as seemingly harmless videos. Discovery and Resolution Timeline On June 6, 2024, the exploit was listed for sale on an underground forum for an…
0 Comments6 Minutes
FrostyGoop: A New Threat to Industrial Control Systems
In January, a devastating cyber attack targeted an energy company in Lviv, Ukraine, marking the first known use of a new malware specifically designed to harm Industrial Control Systems (ICS). The industrial cybersecurity firm Dragos has identified this malware as FrostyGoop. Discovered in April…
0 Comments4 Minutes
Play Ransomware Hits Linux with New Variant
Security experts have discovered a fresh Linux version of the Play ransomware (also known as Balloonfly or PlayCrypt) that specifically targets VMware ESXi systems. You might be interested in: Risks of AI Training on Your Data Expanding Attack Surface “This development indicates that the…
0 Comments6 Minutes
HotPage Malware Exploits Kernel Driver on Windows Systems
Cybersecurity experts have identified a deceptive advertising module that, under the guise of blocking adverts and harmful websites, secretly installs a kernel driver component. This allows attackers to execute arbitrary code with elevated privileges on Windows systems. You might be interested in:…
0 Comments5 Minutes
MacOS Users Face New Threat from BeaverTail Malware
Cybersecurity researchers have uncovered an enhanced version of the BeaverTail malware, previously used by attackers linked to the Democratic People’s Republic of Korea (DPRK) in cyber espionage campaigns targeting job seekers. You might be interested in: Poco RAT Phishing Scam Hits Spanish…
0 Comments5 Minutes
The Konfety Ad Fraud Operation
Details have emerged regarding a “massive ad fraud operation” that uses hundreds of apps from the Google Play Store to carry out a variety of illegal actions. You might be interested in: Managed Detection and Response (MDR): What is it? The Konfety Campaign Explained The campaign has…
0 Comments6 Minutes
Python Repositories at Risk After GitHub Token Leak
Cybersecurity researchers have discovered an accidentally leaked GitHub token that could have granted elevated access to the GitHub repositories of the Python language, Python Package Index (PyPI), and the Python Software Foundation (PSF). JFrog, the firm that identified the GitHub Personal Access…
0 Comments4 Minutes