Cybercrime
-
New macOS Malware ZuRu Discovered Targeting Users Through Legitimate Software
Security researchers have identified a new macOS malware called ZuRu, which propagates via trojanized versions of legitimate software such as Termius. Discovered by SentinelOne, the malware adapts techniques to target users seeking trusted apps, reflecting an opportunistic threat landscape for macOS users.
-
AMD Issues Warning on New Transient Scheduler Vulnerabilities in Chipsets
AMD has issued a warning regarding new vulnerabilities termed Transient Scheduler Attacks (TSA) that could expose sensitive data across its chipsets, necessitating immediate attention and remedial updates.
-
New Espionage Group Exploits Microsoft Exchange Zero-Day Vulnerability to Target Chinese High-Tech Industries
A report reveals that the NightEagle Group, an advanced persistent threat, has exploited a zero-day vulnerability in Microsoft Exchange to extract intelligence from Chinese military and tech firms, raising concerns about cyber espionage and the implications for national security.
-
DoNot APT Expands Cyber Espionage Attacks in Europe
Recent cyber espionage activities attributed to the DoNot APT group highlight an alarming expansion of their operations targeting European foreign affairs ministries and other government entities, utilizing sophisticated malware to harvest sensitive information.
-
Iranian Ransomware Crew Resurfaces with Increased Threats to US and Israel
An Iranian ransomware operation, Pay2Key.I2P, has reemerged after five years, targeting U.S. and Israeli organizations with lucrative offers for cybercriminals. This resurgence poses a significant threat amid escalating geopolitical tensions.
-
Widespread Browser Hijacking Campaign Disguised as Popular Extensions
A report by Koi Security has exposed a malicious browser hijacking campaign that has infected over 2.3 million users through seemingly legitimate extensions, highlighting significant security concerns in the browser extension ecosystem.
-
Android Malware Anatsa Targets US Banks Through Infiltrated Google Play Apps
The Anatsa banking trojan has returned to Google Play disguised as a PDF viewer app, compromising 50,000 downloads and targeting US banking customers. Security experts warn users to uninstall affected apps immediately and to secure their banking credentials.
-
Cybersecurity Firm Uncovers 17,000 Fake News Websites Exploiting Investment Scams
CTM360 has revealed over 17,000 fake news websites exploiting users for online investment scams across 50 countries. These sites simulate credible news sources, misleading victims into fraudulent transactions.
-
Pakistan-based Cyber Espionage Group Targets Indian Defence with New Linux Malware
A recent cyber espionage operation by the Pakistan-based group APT36 is targeting Indian defence personnel using sophisticated Linux malware that exploits phishing tactics and malicious software designed specifically for Linux environments.
-
Ingram Micro Confirms Ransomware Attack Amid Ongoing IT Outage
Ingram Micro is facing a significant cybersecurity crisis due to a ransomware attack that has resulted in a multi-day IT outage, seriously disrupting services for customers and partners globally. The company is working with cybersecurity experts to manage the breach and restore operations.
