Internet Security

Chinese threat actors use Quad7 botnet in password-spray attacks

November 3, 2024 add comment
Microsoft warns Chinese threat actors are using the Quad7 botnet to carry out password-spray attacks and steal credentials. Chinese threat actors use the Quad7 botnet in password-spray attacks to... Read more »

FBI arrested former Disney World employee for hacking computer menus and mislabeling allergy info

November 2, 2024 add comment
A former Disney World employee hacked servers after being fired, altering prices, adding profanities, and mislabeling allergy info. A former Walt Disney World employee hacked servers after being fired... Read more »

Sophos details five years of China-linked threat actors’ activity targeting network devices worldwide

November 2, 2024 add comment
Sophos used custom implants to monitor China-linked thret actors targeting firewall zero-days in a years-long battle. Sophos revealed a years-long “cat-and-mouse” battle with China-linked threat actors, using custom implants... Read more »

PTZOptics cameras zero-days actively exploited in the wild

November 2, 2024 add comment
Hackers are exploiting two zero-day vulnerabilities, tracked as CVE-2024-8956 and CVE-2024-8957, in PTZOptics cameras. Threat actors are attempting to exploit two zero-day vulnerabilities, tracked as CVE-2024-8956 and CVE-2024-8957, in PTZOptics pan-tilt-zoom (PTZ) live streaming... Read more »

New LightSpy spyware version targets iPhones with destructive capabilities

November 1, 2024 add comment
New LightSpy spyware targets iPhones supporting destructive features that can block compromised devices from booting up. In May 2024, ThreatFabric researchers discovered a macOS version of LightSpy spyware that... Read more »

LottieFiles confirmed a supply chain attack on Lottie-Player

November 1, 2024 add comment
LottieFiles confirmed a supply chain attack on Lottie-Player, and threat actors targeted cryptocurrency wallets to steal funds. LottieFiles confirmed that threat actors have hacked the Lottie-Player software in a... Read more »

Threat actor says Interbank refused to pay the ransom after a two-week negotiation

October 31, 2024 add comment
Peruvian Interbank confirmed a data breach after threat actors accessed its systems and leaked stolen information online. Interbank, formally the Banco Internacional del Perú Service Holding S.A.A. is a leading Peruvian provider... Read more »

QNAP fixed second zero-day demonstrated at Pwn2Own Ireland 2024

October 31, 2024 add comment
QNAP addressed the second zero-day vulnerability demonstrated by security researchers during the recent Pwn2Own Ireland 2024. Taiwanese manufacturer QNAP patched the second zero-day vulnerability, tracked as CVE-2024-50387, which was exploited... Read more »

New version of Android malware FakeCall redirects bank calls to scammers

October 31, 2024 add comment
The latest FakeCall malware version for Android intercepts outgoing bank calls, redirecting them to attackers to steal sensitive info and bank funds. Zimperium researchers spotted a new version of... Read more »

Russia-linked Midnight Blizzard APT targeted 100+ organizations with a spear-phishing campaign using RDP files

October 30, 2024 add comment
Microsoft warns of a new phishing campaign by Russia-linked APT Midnight Blizzard targeting hundreds of organizations. Microsoft warns of a large-scale spear-phishing campaign by Russia-linked APT Midnight Blizzard (aka... Read more »
Subscribe to our Newsletter