New Darcula phishing service targets iPhone users via iMessage
    March 27, 2024   06:12 PM   0 A new phishing-as-a-service (PhaaS) named ‘Darcula’ uses 20,000 domains to spoof brands and steal credentials from Android and iPhone users in more than 100 countries. Darcula has been used against various services and organizations, from postal, financial, government, taxation departments, to telcos, airlines, utility, offering fraudsters over 200 templates to choose from. One thing that makes the service...
    By AFFA 2024-03-28 15:37:25 0 2
    Google: Spyware vendors behind 50% of zero-days exploited in 2023
    March 27, 2024   09:00 AM   0 Google's Threat Analysis Group (TAG) and Google subsidiary Mandiant said they've observed a significant increase in the number of zero-day vulnerabilities exploited in attacks in 2023, many of them linked to spyware vendors and their clients. Last year's count reached 97 zero-days exploited in attacks, representing a surge of over 50 percent compared to the previous year's 62 vulnerabilities. Despite this rise, the figure remains...
    By AFFA 2024-03-27 14:52:00 0 5
    US sanctions APT31 hackers behind critical infrastructure attacks
    March 25, 2024   12:06 PM   0 The U.S. Treasury Department has sanctioned a Wuhan-based company used by the Chinese Ministry of State Security (MSS) as cover in attacks against U.S. critical infrastructure organizations. The Office of Foreign Assets Control (OFAC) has also designated two Chinese nationals (Zhao Guangzong and Ni Gaobin) linked to the APT31 Chinese state-backed hacking group and who...
    By AFFA 2024-03-26 14:55:53 0 29
    Hackers poison source code from largest Discord bot platform
    March 25, 2024   02:00 PM   0 The Top.gg Discord bot community with over 170,000 members has been impacted by a supply-chain attack aiming to infect developers with malware that steals sensitive information. The threat actor has been using several tactics, techniques, and procedures (TTPs) over the years including hijacking GitHub accounts, distributing malicious Python packages, using a fake Python infrastructure, and social engineering. One of the...
    By AFFA 2024-03-26 14:53:43 0 17
    Over 100 US and EU orgs targeted in StrelaStealer malware attacks
    March 24, 2024   10:19 AM   0 A new large-scale StrelaStealer malware campaign has impacted over a hundred organizations across the United States and Europe, attempting to steal email account credentials. StrelaStealer was first documented in November 2022 as a new information-stealing malware that steals email account credentials from Outlook and Thunderbird. One notable characteristic of the malware was using a polyglot file infection method to...
    By AFFA 2024-03-24 16:44:15 0 19
    Russian hackers target German political parties with WineLoader malware
    March 22, 2024   03:27 PM   1 Researchers are warning that a notorious hacking group linked to Russia's Foreign Intelligence Service (SVR) is targeting political parties in Germany for the first time, shifting their focus away from the typical targeting of diplomatic missions. The phishing attacks are designed to deploy a backdoor malware named WineLoader, which allows threat actors to gain remote access to compromised devices and networks. APT29 (also known...
    By AFFA 2024-03-22 23:05:12 0 36
    Windows 11, Tesla, and Ubuntu Linux hacked at Pwn2Own Vancouver
    March 21, 2024   03:07 AM   1 On the first day of Pwn2Own Vancouver 2024, contestants demoed Windows 11, Tesla, and Ubuntu Linux zero-day vulnerabilities and exploit chains to win $732,500 and a Tesla Model 3 car. The competition started with Haboob SA's Abdul Aziz Hariri using an Adobe Reader exploit that combined an API restriction bypass and a command injection bug to gain code execution on macOS to earn $50,000. Synacktiv won the Tesla Model 3 and $200,000...
    By AFFA 2024-03-21 15:36:04 0 35
    Ukraine arrests hackers trying to sell 100 million stolen accounts
    March 19, 2024   02:15 PM   0 The Ukrainian cyber police, in collaboration with investigators from the national police (ГУНП), have arrested three individuals who are accused of hijacking over 100 million emails and Instagram accounts worldwide. The three suspects, aged between 20 and 40, used specialized software to brute-force account passwords and then steal them. Brute force is the means of guessing account passwords through an automated trial-and-error...
    By AFFA 2024-03-20 17:02:56 0 41
    Chinese Earth Krahang hackers breach 70 orgs in 23 countries
    March 18, 2024   04:49 PM   0 A sophisticated hacking campaign attributed to a Chinese Advanced Persistent Threat (APT) group known as 'Earth Krahang' has breached 70 organizations and targeted at least 116 across 45 countries. According to Trend Micro researchers monitoring the activity, the campaign has been underway since early 2022 and focuses primarily on government organizations. Specifically, the hackers have compromised 48 government organizations, 10...
    By AFFA 2024-03-19 15:23:43 0 65
    New AcidPour data wiper targets Linux x86 network devices
    March 19, 2024   10:33 AM   0 A new destructive malware named AcidPour was spotted in the wild, featuring data-wiper functionality and targeting Linux x86 IoT and networking devices. Data wipers are a category of malware designed for destructive attacks that delete files and data on targeted devices. This type of malware is commonly used to disrupt an organization's operations for political reasons or as a distraction from a larger attack. The new malware...
    By AFFA 2024-03-19 15:22:09 0 74
    Hackers exploit Aiohttp bug to find vulnerable networks
    March 16, 2024   10:17 AM   0 The ransomware actor 'ShadowSyndicate' was observed scanning for servers vulnerable to CVE-2024-23334, a directory traversal vulnerability in the aiohttp Python library. Aiohttp is an open-source library built on top of Python's asynchronous I/O framework, Asyncio, to handle large amounts of concurrent HTTP requests without traditional thread-based networking. It is used by tech firms, web developers, backend engineers, and data...
    By AFFA 2024-03-17 15:40:53 0 61
    New acoustic attack determines keystrokes from typing patterns
    March 17, 2024   10:22 AM   0 Researchers have demonstrated a new acoustic side-channel attack on keyboards that can deduce user input based on their typing patterns, even in poor conditions, such as environments with noise. Though the method achieves an average success rate of 43%, which is significantly lower than other methods presented in the past, it it does not require controlled recording conditions or a specific typing platform. This makes it...
    By AFFA 2024-03-17 15:39:32 0 63
    McDonald's: Global outage was caused by "configuration change"
    March 15, 2024   02:32 PM   0 McDonald's has blamed a third-party service provider's configuration change, not a cyberattack, for the global outage that forced many of its fast-food restaurants to close. According to a statement shared by the company's Chief Information Officer Brian Rice, the global technology system outage began around midnight CDT on Friday. However, the outage still impacts some McDonald's restaurants even though the root issues...
    By AFFA 2024-03-16 17:25:13 0 56
    International Monetary Fund email accounts hacked in cyberattack
    March 15, 2024   03:48 PM   0 The International Monetary Fund (IMF) disclosed a cyber incident on Friday after unknown attackers breached 11 IMF email accounts earlier this year. This international financial institution, funded by 190 member countries, is also a major United Nations financial agency headquartered in Washington, D.C. According to a press release published today, the IMF detected the incident in February and is now conducting an investigation to...
    By AFFA 2024-03-16 17:22:00 0 61
    Hackers exploit Aiohttp bug to find vulnerable networks
    March 16, 2024   10:17 AM   0 The ransomware actor 'ShadowSyndicate' was observed scanning for servers vulnerable to CVE-2024-23334, a directory traversal vulnerability in the aiohttp Python library. Aiohttp is an open-source library built on top of Python's asynchronous I/O framework, Asyncio, to handle large amounts of concurrent HTTP requests without traditional thread-based networking. It is used by tech firms, web developers, backend engineers, and data...
    By AFFA 2024-03-16 17:19:58 0 59
More Articles
Read More
Google: Spyware vendors behind 50% of zero-days exploited in 2023
March 27, 2024   09:00 AM   0 Google's Threat Analysis Group (TAG)...
By AFFA 2024-03-27 14:52:00 0 5
Microsoft says Windows 10 21H2 support is ending in June
March 11, 2024   04:59 PM   0 Microsoft announced today that it...
By AFFA 2024-03-12 16:02:43 0 29
Ransomware gang claims they stole 6TB of Change Healthcare data
February 28, 2024   02:33 PM   0 Image: Midjourney The...
By AFFA 2024-02-29 18:52:01 0 56
BlackCat ransomware turns off servers amid claim they stole $22 million ransom
March 4, 2024   12:44 PM   0 The ALPHV/BlackCat ransomware gang...
By AFFA 2024-03-04 18:39:04 0 41
Windows 11 24H2 upgrades Bluetooth accessories’ discoverability
Windows 11 24H2 intends to change the way of discovering nearby Bluetooth devices. Currently,...
By AFFA 2024-02-17 17:25:48 0 64