Internet Security

Zyxel firewall and VPN devices affected by critical flaws

May 25, 2023 add comment
Zyxel fixed two critical flaws in multiple firewall and VPN products that can lead to remote code execution or cause a DoS condition. Zyxel addressed two critical buffer overflow vulnerabilities, tracked... Read more »

China-linked APT Volt Typhoon targets critical infrastructure organizations

May 25, 2023 add comment
A China-linked APT group, tracked as Volt Typhoon, breached critical infrastructure organizations in the U.S. and Guam without being detected. China-linked APT cyber espionage group Volt Typhoon infiltrated critical... Read more »

North Korea-linked Lazarus APT targets Microsoft IIS servers to deploy malware

May 25, 2023 add comment
North Korea-linked APT group Lazarus actor has been targeting vulnerable Microsoft IIS servers to deploy malware. AhnLab Security Emergency response Center (ASEC) researchers reported that the Lazarus APT Group is... Read more »

Iran-linked Tortoiseshell APT behind watering hole attacks on shipping and logistics Israeli websites

May 25, 2023 add comment
Iran-linked threat actor Tortoiseshell targeted shipping, logistics, and financial services companies in Israel with watering hole attacks. ClearSky Cyber Security uncovered a watering hole attack on at least eight... Read more »

Barracuda Email Security Gateway (ESG) hacked via zero-day bug

May 24, 2023 add comment
Barracuda warned customers that some of its Email Security Gateway (ESG) appliances were breached exploiting a zero-day vulnerability. Network security solutions provider Barracuda warned customers that some of its... Read more »

The US government sanctioned four entities and one individual for supporting cyber operations conducted by North Korea

May 24, 2023 add comment
The US Department of the Treasury sanctioned four entities and one individual for their role in cyber operations conducted by North Korea. The US Department of the Treasury’s Office... Read more »

Ukraine’s CERT-UA warns of espionage activity conducted by UAC-0063

May 24, 2023 add comment
The Computer Emergency Response Team of Ukraine (CERT-UA) warns of a cyberespionage campaign targeting state bodies in the country. The Computer Emergency Response Team of Ukraine (CERT-UA) has warned... Read more »

AhRat Android RAT was concealed in iRecorder app in Google Play

May 24, 2023 add comment
ESET found a new remote access trojan (RAT), dubbed AhRat, on the Google Play Store that was concealed in an Android screen recording app. ESET researchers have discovered an... Read more »

The previously undocumented GoldenJackal APT targets Middle East, South Asia entities

May 23, 2023 add comment
A previously undocumented APT group tracked as GoldenJackal has been targeting government and diplomatic entities in the Middle East and South Asia since 2019. Kaspersky researchers shared details about... Read more »

Google announced its Mobile VRP (vulnerability rewards program)

May 23, 2023 add comment
Google introduced Mobile VRP (vulnerability rewards program), a new bug bounty program for reporting vulnerabilities in its mobile applications. Google announced a new bug bounty program, named Mobile VRP... Read more »
Subscribe to our Newsletter