After threat actors started aggressively using the ZK Java Framework remote code execution (RCE) flaw in attacks, the U.S. Cybersecurity & Infrastructure Security Agency (CISA) added CVE-2022-36537 to its “Known Exploited Vulnerabilities Catalog.” The ZK Framework versions 9.6.1, 9.6.0.1, 9.5.1.3,…
LastPass, a popular password management service, has revealed that it was hit by a coordinated second attack in 2022. The result was LastPass data theft from its Amazon AWS cloud storage servers for over two months. The company disclosed a…
Dutch Police Arrest Three Ransomware Actors Extorting €2.5 MillionDutch police have made significant progress in the fight against ransomware. On February 27, 2023, the Amsterdam cybercrime police team came to know about this. The team then arrested three young men…
A recent research report by Menlo Security revealed that the threat actors had delivered PureCrypter malware downloader through Discord to target government entities. Discord is a community chat app used by millions of people. The threat actor used Discord to…
The U.S. Federal Trade Commission (FTC) has revealed that Americans lost almost $8.8 billion to various types of scams in 2022. This marks a significant increase of over 30% compared to the previous year. The agency also reported that Americans…
A threat actor has posted images that disclosed the TELUS company’s payroll details and source code repositories. TELUS is the 2nd most prominent company in the telecom industry. After the threat actor had leaked the details, TELUS started investigating the…
The popularity of OpenAI’s chatbot, ChatGPT, has become a new target for hackers looking to distribute malware for Windows and Android devices. With over 100 million users by January 2023, the chatbot has become one of the fastest-growing consumer applications…
A safety and security defect in a Cisco ClamAV anti-malware scanning device item has produced a significant safety and safety danger for some things coming from networking titan Cisco. More significantly, susceptibility in the ClamAV checking collection (tracked as CVE-2023-20032)…
Europol has successfully dismantled a Franco-Israeli ‘CEO fraud’ group that employed business email compromise (BEC) attacks to divert payments from organizations to bank accounts under the threat actor’s control. The group managed to pilfer €38,000,000 ($40.3M) from a single company…
Activision has acknowledged that a data breach occurred in early December 2022 due to hackers deceiving an employee with an SMS phishing text to access the company’s internal systems. According to the video game developer, neither player information nor the…
