The MANGA(aka Dark Mirai) botnet operators’ exploitation of a vulnerability in the TP-Link TL-WR4840N EU V5 has come to light. The vulnerability allows hackers to execute codes remotely. Botnets keep evolving—keep getting better— to target new vulnerabilities for breaching the…
Latest posts - Page 75
CS energy prevents Ransomware attack
A ransomware attack on CS energy network was warded off. If the ransomware attack had been successful, the attack would have deprived millions of homes of electricity. Chinese attackers, on November 27, tried to hack CS energy’s network but the…
BitMart loses $200 million worth of cryptocurrencies
BitMart, a cryptocurrency trading platform, revealed a “large-scale security breach” caused by a stolen private key. The breach led to the theft of more than $150 million spanning different cryptocurrencies. The breach affected two of its most hot wallets on…
Popular browsers vulnerable to Cross-site leaks
14 new cross-site data leakage have been uncovered by researchers. The attack affects most of the modern web browsers: Mozilla Firefox, Google Chrome, Microsoft Edge, Apple Safari, and Opera. The attacks are made possible by bugs that plague these browsers.…
Payment data-stealing malware found in Nginx Process
New malware is targeting E-commerce platforms in U.S., Germany, and France. The malware attacks the Nginx servers to conceal its identity and go undetected by security solutions. “This novel code injects itself into a host Nginx application and is nearly…
RTF template injection used for phishing attacks
Threat actors from three countries—China, Russia, India—are using a new method, RTF (Rich Text Format) template injection, to plant malware in targeted systems. “RTF template injection is a novel technique that is ideal for malicious phishing attachments because it is…
Vulnerability in Mozilla’s NSS Crypto Library impacts software
Mozilla released patches for vulnerabilities in its cross-platform Network Security Services (NSS) cryptographic library. The vulnerability can be exploited for crashing an application or executing arbitrary code remotely. The vulnerability labelled CVE-2021-43527 plagues earlier NSS versions before 3.73 ESR. the…
A new difficult to detect ransomware has been identified
A small but potent ransomware campaign has been carrying out attacks, and these cyberattacks, for the most part, have gone undetected mainly because of their size and new methods. Mandiant stated that the campaign labelled UNC2190 or “Sabbath,” launched in…
Android devices – more than 9 million jeopardized – CyberDaily
A new class of malware plagues at least 9.3 million Android devices. The malware camouflages as arcade, shooter, and strategy games on Huawei’s AppGallery marketplace to obtain device details and victim’s mobile numbers. Doctor Web classifies the trojan as “Android.…
Babadeda crypter used for camouflaging Malware
An unknown malware attack has been identified targeting cryptocurrency, non-fungible token (NFT), and Defi aficionados. The attack uses discord channels to plant a crypter named “Babadeda”, which can evade antivirus programs. “This malware installer has been used in a variety…