π What's happening in cybersecurity today? π¨ #CyberAlerts Phishing Campaign Delivers Lumma Stealer Malware via Fake CAPTCHA Images Source: Jan Michael Alcantara via Netskope Ransomware Gangs Exploit Paragon Partition Flaws to Gain System Privileges Source: Carnegie Mellon University, Software Engineering Institute Trigon Exploit Reveals Critical Flaw in Apple Kernel Bypassing Security Protections Source: Alfie CG Njrat Malware Exploits Microsoft Dev Tunnels for Covert C2 Communications Source:...
Mar 03, 2025β’9 min
π What are the latest cybersecurity alerts, incidents, and news? π¨ #CyberAlerts New nRootTag Attack Exposes 1.5 Billion Apple Devices to Tracking Risks Source: Junming Chen, Xiaoyue Ma, Lannan Luo, Qiang Zeng from George Mason University via GitHub Lotus Blossom Hacker Group Uses Cloud Services for Espionage Campaigns Source: Joey Chen via Cisco Talos Vo1d Malware Botnet Grows to 1.6 Million Infected Devices Across 226 Countries Source: XLab Winos 4.0 Malware Targets Taiwanese Firms with Phish...
Feb 28, 2025β’9 min
π What's going on in the cyber world today? π¨ #CyberAlerts PolarEdge Botnet Targets Cisco ASUS QNAP and Synology Devices for Cyber Attacks Source: Jeremy Scion, Felix AimΓ© via Sekoia GitLab Warns of High-Risk Cross-Site Scripting Vulnerabilities Exposing User Data Source: GitLab Anubis Ransomware Group Emerges With Multiple Data Extortion Models Source: Kela Microsoft Removes Popular VSCode Extensions Over Security Risks Source: Amit Assaraf via ExtensionTotal on Medium Hackers Exploit Cross-S...
Feb 27, 2025β’9 min
π What's trending in cybersecurity today? π¨ #CyberAlerts New Auto-Color Linux Backdoor Targets Universities and Governments in North America Source: Alex Armstrong via Palo Alto Networks' Unit 42 New PicassoLoader Variant Targets Belarusian and Ukrainian Activists and Military Source: Tom Hegel via SentinelOne Large-Scale Malware Campaign Uses Vulnerable Truesight Driver to Deliver Gh0st RAT Source: Check Point Critical Cross-Site scripting Flaw Found in Essential Addons Plugin for WordPress S...
Feb 26, 2025β’9 min
π What's the latest in the cyber world today? π¨ #CyberAlerts Critical Remote Code Execution Flaw Discovered in MITRE Caldera Framework Source: MITRE Caldera via Medium Researchers Discover KernelSnitch Side Channel Attack in Linux Kernel Source: Lukas Maar, Jonas Juffinger, Thomas Steinbauer, Daniel Gruss, and Stefan Mangard, Graz University of Technology ScreamedJungle Campaign Use Stolen Browser Fingerprints to Bypass Fraud Detection Source: Dmitrii Yankelevich, Pavel Naumov, Dmitry Pisarev,...
Feb 25, 2025β’9 min
π What's happening in cybersecurity today? π¨ #CyberAlerts LockBit Attack Targets Atlassian Confluence in Coordinated Ransomware Operation Source: DFIR Labs Gamers Targeted in Counter-Strike 2 Streamjacking Scam Stealing Accounts Source: Alina BΓZGΔ via Bitdefender GhostSocks Malware Uses SOCKS5 Proxy for Evasion and Financial Exploitation Source: Infrawatch SpyLend Malware Masquerades as Loan App to Steal Data and Extort Users in India Source: Cyfirma Phishing Scam Targets ChatGPT Users with F...
Feb 24, 2025β’9 min
π What are the latest cybersecurity alerts, incidents, and news? π¨ #CyberAlerts Resurgence of Bookworm Malware Targets ASEAN with DLL Sideloading Tactics Source: Robert Falcone via Palo Alto Networksβ Unit 42 New Darcula Phishing-as-a-Service Platform Allows Do-It-Yourself Attacks Source: Harry Freeborough via Netcraft Shadowpad Malware Targets 15 Countries with New Ransomware Variant Source: Daniel Lunghi via Trend Micro Microsoft Patches Critical Power Pages Vulnerability in Latest Update So...
Feb 21, 2025β’9 min
π What's going on in the cyber world today? π¨ #CyberAlerts Snake Keylogger Variant Targets Multiple Countries and Evades Detection Using AutoIt Source: Kevin Su via Fortinet NailaoLocker Ransomware Targets European Healthcare with Cyber-Espionage Tactics Source: Orange Cyberdefense CryptoBytes Intensifies Attacks with Modified UxCryptor Ransomware Source: SonicWall CISA and FBI Warn of Growing Threat from Ghost Ransomware Attacks Source: CISA Russian Hackers Target Ukrainian Signal Users with ...
Feb 20, 2025β’9 min
π What's trending in cybersecurity today? π¨ #CyberAlerts FrigidStealer Targets macOS Users in Fake Update Campaign Delivered via Web Injects Source: Proofpoint OpenSSH Vulnerabilities Open Door for Man-in-the-Middle and Denial-of-Service Attacks Source: Saeed Abbasi via Qualys EagerBee Malware Targets Middle East Governments and ISPs with Advanced Tactics Source: SOCRadar Surge in IRS Tax-Themed Cyber Attacks Exploit Tax Season to Target Taxpayers Source: Broadcom AI-Generated Deepfakes Used i...
Feb 19, 2025β’10 min
π What's the latest in the cyber world today? π¨ #CyberAlerts New Vgod Ransomware Targets Windows with Advanced Encryption Tactics Source: CYFIRMA Phishing Emails Disguise as Timesheet Reports to Spread Tycoon 2FA Kit Source: SpiderLabs via X ChatGPT Operator Faces Data Leak Risks from Prompt Injection Exploits Source: Embrace The Red Blog WordPress Sites Targeted by Sophisticated Malware in mu-Plugins Directory Campaign Source: Puja Srivastava via Sucuri Xerox VersaLink Printers Exposed to Pas...
Feb 18, 2025β’10 min
π What's happening in cybersecurity today? π¨ #CyberAlerts New XCSSET Malware Targets macOS Developers with Advanced Techniques Source: Microsoft Threat Intelligence Lazarus Group Targets Developers with Marstech1 Implant in Supply Chain Attacks Source: SecurityScorecard New Golang-Based Backdoor Uses Telegram Bot API for Command and Control Source: Leandro FrΓ³es via Netskope Fake Blue Screen of Death Python Script Uses Tkinter to Fool Users Source: SANS Technology Institute EarthKapre Espionag...
Feb 17, 2025β’8 min
π What are the latest cybersecurity alerts, incidents, and news? π¨ #CyberAlerts New Astaroth Phishing Kit Bypasses 2FA with Real-Time Credential Capture Source: Daniel Kelley via SlashNext Storm-2372 Phishing Attack Exploits Device Code Flow to Hijack Tokens Source: Microsoft Threat Intelligence New PostgreSQL Zero-Day Vulnerability Linked to Attack on BeyondTrust Source: Stephen Fewer via Rapid7 CISA and FBI Urge Memory-Safe Practices to Fix Buffer Overflow Vulnerabilities Source: CISA High S...
Feb 14, 2025β’9 min
π What's going on in the cyber world today? π¨ #CyberAlerts New Malware Uses Microsoft Outlook and Graph API for Espionage Campaign Source: Cyril FranΓ§ois, Jia Yu Chan, Salim Bitam, and Daniel Stepanic via Elastic BadPilot Campaign Expands Russian Cyberattacks to Global Infrastructure Targets Source: Microsoft Threat Intelligence ZeroLogon Exploit Puts Domain Controllers at Risk of Full Network Compromise Source: Vito Alfano, Nam Le Phuong, and Mahmoud Zohdy via Group-IB Google Patches Critical...
Feb 13, 2025β’9 min
π What's trending in cybersecurity today? π¨ #CyberAlerts AWS Web Console Vulnerabilities Expose IAM Users to Enumeration Risks Source: Nate Wilson via Rhino Security Labs Ratatouille Malware Uses Invisible Internet Project Network for Stealthy Attacks Source: Pierre Le Bourhis via Sekoia Sandworm Hackers Target Ukraine With Pirated Key Management Service Tools Source: Arda BΓΌyΓΌkkaya via EclecticIQ Hackers Can Exploit Windows Lightweight Directory Access Protocol Critical Flaw Source: Microsoft...
Feb 12, 2025β’10 min
π What's the latest in the cyber world today? π¨ #CyberAlerts Apple Fixes Exploited USB Mode Vulnerability in Latest iOS and iPadOS Updates Source: Apple Ubuntu 22.04 Vulnerability Exposes Printing System to Remote Exploitation Risk Source: Aleksandar Nikolic via Cisco Talos QR Codes Targeted by New Quishing Attack to Steal Data and Deliver Malware Source: Dylan Berger via Tripwire DragonRank Targets Internet Information Services Servers in Malware Campaign Source: Ted Lee, Lenart Bermejo via T...
Feb 11, 2025β’9 min
π What's happening in cybersecurity today? π¨ #CyberAlerts Global Brute Force Attack Targets VPNs and Firewalls Across Multiple Vendors Source: Shadowserver Foundation Hackers Exploit Google Tag Manager to Steal Credit Card Data From Magento Sites Source: Puja Srivastava via Sucuri Phishing Campaign Targets Facebook Users to Steal Login Data Using Fake Notices Source: Check Point Critical Remote Code Execution Vulnerability Found in Marvel Rivals Game Source: Shalzuth CISA Warns of Active Explo...
Feb 10, 2025β’9 min
π What are the latest cybersecurity alerts, incidents, and news? π¨ #CyberAlerts Microsoft Warns of ViewState Injection Attacks Exploiting Exposed ASP.NET Keys Source: Microsoft Malicious Models Found on Hugging Face Exploiting Pickle Vulnerabilities Source: Karlo Zanki via Reversing Labs Hackers Exploit DeepSeek and Qwen AI Models for Sophisticated Malware Attacks Source: Check Point Research Microsoft Releases Critical Edge Update to Fix Remote Code Execution Flaws Source: Microsoft Threat Ac...
Feb 07, 2025β’9 min
π What's going on in the cyber world today? π¨ #CyberAlerts FatBoyPanel Malware Campaign Targets Indian Bank Users to Steal Financial Data Source: Aazim Yaswant via Zimperium Kimsuky Hacking Group Escalates Attacks Using Remote Desktop Protocol Tools Source: AhnLab SEcurity intelligence Center (ASEC) Cisco Fixes Critical Flaws in Identity Services Engine Allowing Remote Code Execution Source: Cisco Lazarus Group Uses Fake LinkedIn Job Offers to Deliver Malware Source: Ionut Alexandru Baltariu, ...
Feb 06, 2025β’10 min
π What's trending in cybersecurity today? π¨ #CyberAlerts Malicious Go Package Exploited to Gain Remote Access to Developer Systems Source: Kirill Boychenko via Socket 7-Zip Security Flaw Exploited to Deliver SmokeLoader Malware in Targeted Attacks Source: Peter Girnus via Trend Micro Researchers Expose Security Flaw in Abandoned AWS S3 Buckets Source: WatchTowr Labs Apache Cassandra Flaw Lets Attackers Access Data Centers Remotely Source: Openwall Veeam Updater Flaw Allows Remote Attacks on Ba...
Feb 05, 2025β’10 min
π What's the latest in the cyber world today? π¨ #CyberAlerts Malicious PyPI Packages Target Developers with Data Harvesting Tools Source: Positive Technologies Expert Security Center (PT ESC) FlexibleFerret Malware Targets macOS Users and Evades Apple XProtect Detection Source: Phil Stokes and Tom Hegel via SentinelOne Google Patches Android Kernel Zero-Day Exploited in Active Attacks on Devices Source: Google ValleyRAT Malware Targets Finance Departments with Advanced Techniques Source: Shmue...
Feb 04, 2025β’9 min
π What's happening in cybersecurity today? π¨ #CyberAlerts GitHub Trusted Infrastructure Used to Spread Lumma Stealer Malware Source: Buddy Tancio, Fe Cureg, Jovit Samaniego via Trend Micro Arm Discloses Critical Vulnerabilities in Mali GPU Drivers with Real-World Exploits Source: Arm Cybercriminals Abuse AWS and Azure for Infrastructure Laundering Source: Silent Push WantToCry Ransomware Targets Server Message Block Services for Attacks Source: Umar Khan A via Seqrite Fake Google Ads Campaign ...
Feb 03, 2025β’9 min
π What are the latest cybersecurity alerts, incidents, and news? π¨ #CyberAlerts Vulnerabilities Exposed in DeepSeek LLMs Through Jailbreak Techniques Source: Palo Alto Networkβs Unit 42 Phorpiex Botnet Resurges to Automate Delivery of LockBit Ransomware Attacks Source: Cybereason Malicious Browser Extensions Allow Hackers to Hijack Browsers and Devices Source: SquareX Time Bandit Jailbreak in ChatGPT Allows Attackers to Bypass Safety Features Source: Dave Kuszmar and the CERT Coordination Cent...
Jan 31, 2025β’10 min
π What's going on in the cyber world today? π¨ #CyberAlerts Aquabotv3 Botnet Targets Vulnerable Mitel Phones for DDoS Attacks and More Source: Kyle Lefton and Larry Cashdollar via Akamai New RDP Exploit Enables Unauthorized Control Over Windows Systems Source: Justus Hoffmann via Insinuator Cybersecurity Experts Warn About Devil-Traff Phishing Tool Fueling Global Attacks Source: Daniel Kelley via Slash Net Lazarus Group Targets Global Developers with Operation Phantom Circuit Source: STRIKE Sur...
Jan 30, 2025β’10 min
π What's trending in cybersecurity today? π¨ #CyberAlerts Broadcom Urges Immediate Fix for VMware Avi Load Balancer SQL Injection Flaw Source: Broadcom OAuth Flaw in Airline Travel Service Exposes Millions to Account Hijacking Risk Source: Amit Elbirt via Salt Labs Apple Processors Flaws Expose Sensitive Data Through Browser Attacks Source: Jason Kim, Jalen Chuang, and Daniel Genkin from Georgia Institute of Technology and Yuval Yarom from Ruhr University Bochum FleshStealer Malware Targets Sen...
Jan 29, 2025β’10 min
π What's the latest in the cyber world today? π¨ #CyberAlerts Apple Addresses Exploited Security Flaws in Latest Software Updates Across Devices Source: Apple USPS Phishing Attack Uses Hidden Links in Malicious PDFs to Steal User Information Source: Zimperium GitHub Desktop Exposes Credentials Due to Multiple Vulnerabilities Source: GMO Flatt Security Amazon Prime Phishing Campaign Targets Sensitive Data Including Credit Cards info Source: Unit 42 Intel Trust Domain Extensions Flaw Exposes Sens...
Jan 28, 2025β’9 min
π What's happening in cybersecurity today? π¨ #CyberAlerts RANsacked Study Finds Over 100 Flaws in LTE and 5G Implementations Source: Florida Institute for Cybersecurity Research Critical Apache Solr Vulnerability Puts Windows Systems at Risk of Exploitation Source: Apache High Severity Meta Llama Framework Flaw Allows Arbitrary Code Execution Source: Avi Lumelsky via Oligo Zyxel Issues Warning Over Faulty Security Update Causing Critical Errors Source: Zyxel Andariel Hacking Group Uses Relativ...
Jan 27, 2025β’10 min
π What are the latest cybersecurity alerts, incidents, and news? π¨ #CyberAlerts FBI Warns of North Korean IT Workers Steal Source Code to Extort Employers Source: FBI QakBot Malware Revives With New BackConnect Module to Steal System Data Source: Joshua Platt, Jason Reaves and Jonathan McCay via Walmart Global Tech Blog Lumma Stealer Targeting Global Industries Using Fake CAPTCHA Campaigns Source: Leandro FrΓ³es via Netskope ChatGPT Security Flaw Could Facilitate DDoS Attacks on Targeted Server...
Jan 24, 2025β’10 min
π What's going on in the cyber world today? π¨ #CyberAlerts Ross Ulbricht X Scam Spreads Malware Through Fake Telegram Verification Source: vx-underground via X Tycoon 2FA Phishing Kit Update Bypasses MFA and Evades Detection Techniques Source: Deerendra Prasad via Barracuda ββCritical Cookie Sandwich Attack Exploits HttpOnly Vulnerability to Steal Data Source: Zakhar Fedotkin via PortSwigger Triplestrength Targets Cloud for Cryptojacking and Ransomware Attacks Source: Google Cisco Updates Addr...
Jan 23, 2025β’10 min
π What's trending in cybersecurity today? π¨ #CyberAlerts Ransomware Gangs Use Teams Calls and Email Bombing to Install Malware Source: Mark Parsons, Colin Cowie, Daniel Souter, Hunter Neal, Anthony Bradshaw, Sean Gallagher via Sophos Murdoc Botnet Exploits IoT Device Flaws to Launch Widespread DDoS Attacks Source: Shilpesh Trivedi via Qualys Hackers Use Fake Homebrew Site in Google Ads Campaign to Spread AmosStealer Source: Ryan Chenkie via X Malicious Visual Studio Code Extension Impersonates...
Jan 22, 2025β’10 min
π What's the latest in the cyber world today? π¨ #CyberAlerts DoNot Team Deploys Android Malware Tanzeem in Targeted Cyberattacks Source: Cyfirma Azure DevOps Faces Security Risks From Server-Side Request Forgery Vulnerabilities Source: Torjus Bryne RetterstΓΈl via Binary Security Critical Security Flaw Discovered in OpenVPN Easy-RSA Encryption Tool Source: OpenVPN Ukraine's Computer Emergency Team Warns of Fake AnyDesk Security Audit Requests Source: Computer Emergency Response Team of Ukraine ...
Jan 21, 2025β’10 min
