Cybersecurity Blog

North Korea-linked APT Citrine Sleet Exploit Chrome Zero-Day to Deliver FudModule Rootkit

A North Korean APT used a Google Chrome zero-day flaw, CVE-2024-7971, to deploy the FudModule rootkit. Microsoft ...

Roblox Developers Under Attack by New Malicious NPM Campaign

Roblox developers are being targeted by a new malicious npm campaign. Cybercriminals have created fake Roblox npm ...

Novel Attack on Windows Spotted in Chinese Phishing Campaign

The malicious DLL implant for the Cobalt Strike attack toolkit gets injected into the Windows binary ...

Secrets Exposed: Why Your CISO Should Worry About Slack

In the digital realm, secrets (API keys, private keys, username and password combos, etc.) are the keys to the kingdom. ...

New Flaws in Microsoft macOS Apps Could Allow Hackers to Gain Unrestricted Access

Eight vulnerabilities have been uncovered in Microsoft applications for macOS that an adversary could exploit to gain ...

Ex-Engineer Charged in Missouri for Failed $750,000 Bitcoin Extortion Attempt

A 57-year-old man from the U.S. state of Missouri has been arrested in connection with a failed data extortion campaign ...

RansomHub Ransomware Group Targets 210 Victims Across Critical Sectors

Threat actors linked to the RansomHub ransomware group encrypted and exfiltrated data from at least 210 victims since ...

A Macro Look at the Most Pressing Cybersecurity Risks

A Forescout report highlighted a 43% increase in published vulnerabilities, with 23,668 reported in H1 2024. Ransomware ...

1 38 39 40 41 42 43 44 45 46 47 48 667