Cybersecurity Blog
New Specula Tool Uses Outlook for Remote Code Execution in Windows
TrustedSec released a post-exploitation framework called “Specula”, which exploits CVE-2017-11774 to create ...
Cybercriminals Deploy 100K+ Malware Android Apps to Steal OTP Codes
A new malicious campaign has been observed making use of malicious Android apps to steal users’ SMS messages since ...
Cyber Espionage Group XDSpy Targets Companies in Russia and Moldova
Companies in Russia and Moldova have been the target of a phishing campaign orchestrated by a little-known cyber ...
Mandrake Spyware Infects 32,000 Devices via Google Play Apps
Initially detected in May 2020 by Bitdefender, Mandrake went undetected for four years. In April 2024, Kaspersky ...
Researchers Study Evolution of Ransomware Gang UNC4393’s Campaigns After Qakbot Takedown
Initially relying on Qakbot botnet infections, UNC4393 now uses custom malware and diverse access techniques after the ...
IBM: Cost of a Breach Reaches Nearly $5 Million, With Healthcare Being Hit the Hardest
Breaches impacted 17 industries across 16 countries and regions, with costs related to detecting breaches, notifying ...
Meta Settles for $1.4 Billion with Texas Over Illegal Biometric Data Collection
Meta, the parent company of Facebook, Instagram, and WhatsApp, agreed to a record $1.4 billion settlement with the U.S. ...
Meta’s AI Safety System Manipulated by Space Bar Characters to Enable Prompt Injection
A bug hunter discovered a bypass in Meta’s Prompt-Guard-86M model by inserting character-wise spaces between ...