Difficult Ed25519 implementations have made hundreds of cryptography packages vulnerable to attacks. Ed25519 is a common digital signature method. Cryptographer Konstantinos Chalkias of MystenLabs,…
General
Cybersecurity Experts Warn of Emerging Threat of “Black Basta” Ransomware
Within two months of its release into the wild, the Black Basta ransomware-as-a-company (RaaS) syndicate has amassed nearly 50 victims in the United States,…
OpenSea reveals data breach; It warns users of phishing attacks
OpenSea, the most significant non-fungible token (NFT) marketplace, revealed a data breach; it warned users of phishing attacks. The NFT marketplace says more than…
Spanish Bank service users targeted by Trojan “Revive”
An unknown Android banking trojan has been tracked; the trojan has targeted users of the Spanish financial services company BBVA. The malware, assumed to…
Android virus called “Revive” poses as the 2FA app for BBVA bank.
The 2FA application necessary to access BBVA bank accounts in Spain is impersonated by a new Android banking malware called Revive. Instead of aiming…
$100 million cryptocurrency was stolen from the Blockchain company Harmony on Thursday evening
The company informed about the incident to the authorities; the FBI investigated the cyber attack taking the help of many cyber security firms. Harmony’s…
Google details commercial spyware that targets both Android and iOS devices
Google has issued a warning about a high-grade malware strain that targets users of Android and iOS mobile devices. A separate government- and enterprise-grade…
Python libraries for PyPi were found sending unprotected websites using stolen AWS keys
The PyPI repository is home to a number of malicious Python packages that have been found to steal sensitive data like AWS credentials and…
Chinese hackers are disseminating an SMS bomber tool that contains malware
As part of a recently revealed effort, a threat cluster connected to the hacking organisation Tropic Trooper has been seen employing previously unknown malware…
VMware servers are still being compromised via Log4Shell exploits
Today, CISA issued a warning about threat actors continuing utilising the Log4Shell (CVE-2021-44228) remote code execution vulnerability to attack VMware Horizon and Unified Access…