A new, widespread phishing campaign has been seen that circumvents security measures and compromises workplace email accounts by leveraging adversary-in-the-middle (AitM) tactics. It employs…
General
General
Most Replicated Software in Malware Attacks, According to VirusTotal
Threat actors are increasingly imitating trustworthy programmes like Skype, Adobe Reader, and VLC Player in order to take advantage of trust connections and raise…
General
University eMail Users Are At Risk For Cyberattacks
According to a DMARC analysis by Proofpoint, American businesses have some of the worst defenses against spoofing and don’t have defenses against fake emails.…
General
Auto Industry at Higher Risk of Cyberattacks in 2023
Cyberattacks are happening more often across a variety of industries. Everyone is affected by the increase in cybercrime, although some industries are more vulnerable…
General
Emotet Downloader Document Execution Relies on Regsvr32
Executive Summary This document examines a recent Emotet infiltration and describes the system installation of the Emotet payload. The main findings are: Excel macros…
General
Golang-based Applications are Affected by a New “ParseThru” Parameter Smuggling Vulnerability
A new vulnerability called ParseThru has been identified by security experts that affects Golang-based applications and might be used to get unauthorised access to…
General
Attacks Using Path Traversal Are Susceptible To Millions Of Arris Routers
The MIT-licensed muhttpd web server has security flaws, according to a report by security expert Derek Abdine. The Arris firmware, which is featured in…
General
Malware That Steals Credentials Raccoon Updated To More Effectively Collect Passwords
An examination of the new version of the well-known Raccoon Stealer virus has been published by security specialists from the online system Zscaler. The…
General
More Than 3,200 Apps Leak Twitter API Keys, Some of Which Enable Account Takeover
Researchers in cybersecurity have found 3,207 mobile apps that expose Twitter API keys to the public, potentially allowing a threat actor to hijack users’…
General
It’s Time For India to Implement a Unified Cybersecurity Law Since Cyber Sovereignty is at Stake
The Information Technology Act of 2000 and the National Cyber Security Policy of 2013, among others, are examples of decades-old legislative architecture that cannot…