Android App Trojans Sold on Dark Web for $25-$20,000
A Kaspersky study reveals security threats to the Google Play app store and how they have been exposing Android users to malware threats.
Microsoft and Fortra to Take Down Malicious Cobalt Strike Infrastructure
Cobalt Strike is a legitimate post-exploitation tool designed by Raphael Mudge of Fortra for adversary simulation but it has also been abused by cybercriminals.
New Dark Web Market Styx: Focuses on Money Laundering, Identity Theft
Styx has quickly gained traction as a hub for various illicit activities, following the recent seizure of the Genesis dark web market.
Beware of new YouTube phishing scam using authentic email address
Watch out for a new YouTube phishing scam and ignore any email from YouTube that claims to provide details about "Changes in YouTube rules and policies | Check the Description."
New Strain of Rorschach Ransomware Targeting US- Firms
Rorschach ransomware boasts advanced encryption technology and can spread automatically on the machine if executed on a domain controller.
Rilide Malware – New Crypto Stealer Hits Chromium-Based Browsers
The Chromium-based browsers include Google Chrome, Microsoft Edge, Brave, Opera, Vivaldi, and several others.
WiFi Flaws Allow Network Traffic Interception on Linux, iOS, and Android
The findings are to be presented at the Usenix Security Symposium.
New VPN Malvertising Attack Drops OpcJacker Crypto Stealer
Researchers warned that the campaign works through a network of fake websites that promote seemingly harmless crypto apps and other software.
Zimbra email platform vulnerability exploited to steal European govt emails
Researchers have noted that attackers are targeting a medium-severity Zimbra vulnerability that the company patched in version 9.0.0 Patch 24, one year ago.
Popular PABX platform, 3CX Desktop App suffers supply chain attack
According to cybersecurity researchers, a nation-state actor, LABYRINTH CHOLLIMA, is suspected to be behind the multi-stage attack on 3CXDesktopApp.