16 Mar Winter Vivern APT hackers use fake antivirus scans to install malwareAn advanced hacking group named ‘Winter Vivern’ targets European government organizations and telecommunication service providers to conduct espionage. […]
15 Mar CISA warns of Adobe ColdFusion bug exploited as a zero-dayCISA has added a critical vulnerability impacting Adobe ColdFusion versions 2021 and 2018 to its catalog of security bugs exploited in the wild. […]
15 Mar Mozilla Firefox gets built-in Firefox Relay controlsMozilla has announced the integration of Firefox Relay, an email protection system that helps users evade trackers and spammers, directly into the Firefox browser. […]
15 Mar ChipMixer platform seized for laundering ransomware payments, drug salesAn international law enforcement operation has seized the cryptocurrency mixing service ‘ChipMixer’ which is said to be used by hackers, ransomware gangs, and scammers to launder their proceeds. […]
15 Mar ChatGPT may be a bigger cybersecurity risk than an actual benefitChatGPT made a splash with its believable AI-generated responses. However, it can help threat actors create convincing personas to steal credentials in phishing attacks. […]
15 Mar First-known Dero cryptojacking operation seen targeting KubernetesThe first known cryptojacking operation mining the Dero coin has been found targeting vulnerable Kubernetes container orchestrator infrastructure with exposed APIs. […]
14 Mar SAP releases security updates fixing five critical vulnerabilitiesSoftware vendor SAP has released security updates for 19 vulnerabilities, five rated as critical, meaning that administrators should apply them as soon as possible to mitigate the associated risks. […]
14 Mar Rubrik confirms data theft in GoAnywhere zero-day attackCybersecurity company Rubrik has confirmed that its data was stolen using a zero-day vulnerability in the Fortra GoAnywhere secure file transfer platform. […]
14 Mar YoroTrooper cyberspies target CIS energy orgs, EU embassiesA new threat actor named ‘YoroTrooper’ has been running cyber-espionage campaigns since at least June 2022, targeting government and energy organizations in Commonwealth of Independent States (CIS) countries. […]
13 Mar NordVPN makes its Meshnet private tunnel free for everyoneNordVPN’s Meshnet private tunnel feature for Windows, macOS, and Linux is now free for everyone, even users who do not have a subscription to NordVPN. […]