Cybersecurity Blog
APT-C-60 Group Exploit WPS Office Flaw to Deploy SpyGlace Backdoor
A South Korea-aligned cyber espionage has been linked to the zero-day exploitation of a now-patched critical remote code ...
Microsoft’s Sway Serves as Launchpad for ‘Quishing’ Campaign
A new QR code phishing campaign is using Microsoft Sway to steal credentials. The attacks primarily target users in Asia ...
New Phishing Campaign Steals VPN Credentials Using Social Engineering Methods
The GuidePoint Research and Intelligence Team (GRIT) discovered attacker domain names and IP addresses targeting over ...
China’s Volt Typhoon Exploits Zero-Day Flaw in Versa’s SD-WAN Director Servers
Lumen researchers identified the bug and reported it to Versa in June, with active exploitation by Volt Typhoon observed ...
Check Point Acquires Cybersecurity Startup Cyberint
Israeli cybersecurity firm Check Point Software Technologies has announced the acquisition of threat intelligence ...
South Korean APT Group Exploits WPS Office Zero-Day for Espionage
ESET uncovered a new cyber-espionage campaign tied to a South Korean APT group that used a remote code execution (RCE) ...
Cryptojacking via CVE-2023-22527: Dissecting a Full-Scale Cryptomining Ecosystem
CVE-2023-22527 is a critical vulnerability exploited for cryptojacking activities. Attack tactics include shell scripts, ...
BlackByte Ransomware Exploits VMware ESXi Flaw in Latest Attack Wave
The threat actors behind the BlackByte ransomware group have been observed likely exploiting a recently patched security ...