Crypto Malware Python Packages Spreading On Stack Exchange
Recent media reports have shed light on crypto malware that is being distributed via Python packages on a developer Q&A platform, Stack Exchange. The malware, if activated, is capable of draining cryptocurrency wallets belonging to the targeted users. In this article, we’ll focus on how the code works, the malicious ... Read More
CrowdStrike Alert: Phishing Attacks Targets German Customers
In a recent turn of events, CrowdStrike has issued a warning pertaining to an unfamiliar threat actor. According to the CrowdStrike alert, the threat actor aims to capitalize on the CrowdStrike Falcon Sensor update. In this article, we’ll dive deep in the details of the alert and how German customers ... Read More
North Korean Ransomware Attacks: DoJ Indicts Threat Actor
As per recent media reports, the United States (US) Department of Justice (DoJ) released an indictment against a threat actor being deemed responsible for North Korean ransomware attacks. It has been identified that the threat actor is an intelligence operative of the North Korean military. In this article, we’ll learn ... Read More
Google Vulnerability: ConfusedFunctions Leads To Data Access
Cybersecurity researchers, as of recent, have discovered a Google vulnerability impacting the Cloud Functions service. The Google vulnerability being categorized as one pertaining to privilege escalation, has been named ConfusedFunctions. In this article, we’ll dive into the details of the flaw and how it can be exploited by cybercriminals. ConfusedFunctions ... Read More
SmartScreen Flaw Exploited To Deliver Information Stealers
As per recent media reports, a SmartScreen flaw in Microsoft Defender that has now been patched was part of a new campaign-based exploit. The exploit was used to deliver information stealers that include ACT stealer, Meduza, and Lumma. In this article, we’ll explore the flaw in detail, allowing you to ... Read More
Sextortion Scam: 63K Instagram Account In Nigeria Removed
Meta has recently announced that steps were taken to remove around 63,000 Instagram accounts in Nigeria. According to media reports these accounts were used in financial sextortion scams and some attempted to target minors. In this article, we’ll learn more about the sextortion scams and efforts that were adopted to ... Read More
Alert: SAP AI Core Vulnerabilities Put Customer Data At Risk
As per recent media reports, multiple SAP AI Core vulnerabilities have been discovered by cybersecurity researchers. This is a cloud-based platform used for creating and deploying AI workflows. In this article, we’ll look at how these SAP AI Core flaws were discovered and what they could be exploited for. Let’s ... Read More
LockBit Ransomware: Two Russians Plead Guilty For Attacks
As per recent media reports, two Russian nationals have pleaded guilty in a United States (US) court for affiliate participation in the LockBit ransomware attacks. The two individuals part of the LockBit ransomware scheme have been identified as Ruslan Magomedovich Astamirov and Mikhail Vasiliev. In this article, we’ll dive into ... Read More
SolarWinds Patch: Critical ARM Flaws Fixed Before Exploits
SolarWinds has recently addressed 8 critical vulnerabilities pertaining to its Access Rights Manager (ARM) software. This SolarWinds patch has been released prior to the SolarWinds security flaws being exploited in the wild. In this article, we’ll focus on what that patch entails and what the consequences would have been if ... Read More
Cisco Security Patches: Max Severity Security Flaw Fixed
Cisco has recently released patches pertaining to a maximum severity security flaw. As per recent reports, the Cisco security patches are for flaws within the Smart Software Manager On-Prem (Cisco SSM On-Prem). In this article, we’ll dive into the details of the vulnerability and learn what could happen if the ... Read More
