StrongPity APT Back with Kurdish-Aimed Watering Hole Attacks
The spy malware is being delivered via a complex infrastructure with multiple layers, in an effort to avoid analysis.
The spy malware is being delivered via a complex infrastructure with multiple layers, in an effort to avoid analysis.
Jessica spends 12 hours a day on the internet managing security for web assets and loves her macha tea
An authentication-bypass vulnerability allows attackers to access network assets without credentials when SAML is enabled on certain firewalls and enterprise VPNs.
Jessica spends 12 hours a day on the internet managing security for web assets and loves her macha tea
Cybersecurity researchers today uncovered new details of watering hole attacks against the Kurdish community in Syria and Turkey for surveillance and intelligence exfiltration purposes. The advanced persistent threat behind the operation, called StrongPity, has retooled with new tactics to control compromised machines, cybersecurity firm Bitdefender said in a report shared with The Hacker News. “Using…
The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter. Source link Jessica VenkatJessica spends 12 hours a day…
In what’s one of the most innovative hacking campaigns, cybercrime gangs are now hiding malicious code implants in the metadata of image files to covertly steal payment card information entered by visitors on the hacked websites. “We found skimming code hidden within the metadata of an image file (a form of steganography) and surreptitiously loaded…
A United States federal district court has finally sentenced a Russian hacker to nine years in federal prison after he pleaded guilty of running two illegal websites devoted to facilitating payment card fraud, computer hacking, and other crimes. Aleksei Yurievich Burkov, 30, pleaded guilty in January this year to two of the five charges against…
Threat actors shift focus from COVID-19 to employee coronavirus training and current events like Black Lives Matter as cyber-attacks continue to rise.
Jessica spends 12 hours a day on the internet managing security for web assets and loves her macha tea
Several high-severity flaws in Nvidia’s GPU display drivers for Windows users could lead to code-execution, DoS and more.
Jessica spends 12 hours a day on the internet managing security for web assets and loves her macha tea
A first-stage malware loader spotted in active campaigns has added additional exploits and a new backdoor capability.
Jessica spends 12 hours a day on the internet managing security for web assets and loves her macha tea
Lawmakers proposed a new bill that would ban the use of facial recognition by law enforcement nationwide.
Jessica spends 12 hours a day on the internet managing security for web assets and loves her macha tea