Connect with us
A new malware named ‘DarkWatchman’ has emerged in the cybercrime underground, and it’s a lightweight and highly-capable JavaScript RAT (Remote Access Trojan) paired with a C#...
Since the middle of 2020, a Chinese state-sponsored threat actor called ‘Tropic Trooper’ has been targeting transportation organizations and government entities related to transportation sector, Trend Micro...
More than 35,000 Java packages, amounting to over 8% of the Maven Central repository (the most significant Java package repository), have been impacted by the recently disclosed log4j...
Ransomware attackers are creating ‘industry standards’ and using them to define an ideal target for their campaigns. The Ideal Target: Location, Revenue and Other Criteria In...
Mozilla has fixed an issue in its Firefox browser where usernames and passwords were being recorded in the Windows Cloud Clipboard feature, in what the organization...
Lately, several DeFi firms have fallen victim to threat actors. Cryptocurrency users and platforms are being targeted on a regular basis. As per Chainalysis’ 2022 Crypto Crime...
Long-term monitoring of the Earth Centaur group has revealed additional information regarding its tools and techniques. It was found targeting transportation firms and government agencies related...
OSS-Fuzz is now on the lookout for the Log4j Java library flaw. The remotely exploitable flaw in Log4j – the widely deployed Java error logging library...
A basic Javascript WebSocket connection can trigger a local Log4j remote code attack via a drive-by compromise. Wonderful. Truly wonderful. It doesn’t rain, but it pours....
VMware on Thursday announced the release of patches for a critical server-side request forgery (SSRF) vulnerability in Workspace ONE UEM console. An attacker could exploit the...
