The U.S. and U.K. cyber agencies have issued a joint advisory warning about Russian Foreign Intelligence Service (SVR)-linked attackers, tracked as APT29 (a.k.a Cozy Bear or Midnight Blizzard)....
CVE-2024-40711 arises from the deserialization of untrusted data in the Veeam Backup & Replication software. This vulnerability can be exploited with low-complexity attacks, making it a threat to...
The US government is finally admitting there’s no need – instead, to fend off cyber-attacks we need passwords that are long but memorableOver the past decade or so, people have accumulated a vast...
A Bellingcat investigation has found that a far-right fashion brand affiliated with the white supremacist Active Club movement has its products designed by a streetwear shop in the Bulgarian city...
Recorded Future unveils new ransomware defense enhancements, empowering teams to proactively mitigate threats across the entire attack lifecycle.
Discover how Rhysida ransomware leverages multi-tiered infrastructure, CleanUp Loader C2s, and SEO poisoning. Learn how Recorded Future’s Network Intelligence detects victims on average 30 days in...
In the cloud, logs are often the only way to get real-time visibility into what's happening, making them critical to any cloud detection and response program.
An update on our commitments to customer security.
Could human risk in cybersecurity be managed with a cyber-rating, much like credit scores help assess people’s financial responsibility?
Interview with Malware Protection expert Leonid Rozenberg with Hudson Rock (www.hudsonrock.com) on exposing information stealers, protecting identities online, hackers who sell vulnerabilities,...
The blog post revolves around Google Androids security program but the results apply to other places. Android has produced more and more code in memory-safe languages like Rust instead of unsafe...
Rust is perfectly safe and we never have to worry again, right? In Rust, error handling is tedious and most be specifically handled. Because of this, many denial of service (DoS) vectors revolve...
ESET Research analyzed two separate toolsets for breaching air-gapped systems, used by a cyberespionage threat actor known as GoldenJackal
Attributing a cyberattack to a specific threat actor is a complex affair, as evidenced by new ESET research published this week
This summary provides an overview of the reports of APT and financial attacks on industrial enterprises that were disclosed in Q2 2024, as well as the related activities of groups that have been...
Content Security Policies (CSP) are an XSS defense mechanism. Of course, if you found XSS, you want to circumvent the CSP. This is a website with XSS gadgets known on various popular programs.
The Content-Type response header is used to tell the browser how to render a file. This page is a list of Content-Type header with the format they render that can be used for XSS. It even has a...
Researchers investigated the "perfctl malware," a Linux malware targeting misconfigurations and vulnerabilities on Linux servers. Perfctl employs rootkits, privilege escalation exploits, and...
In September 2024, threat actors conducted a campaign exploiting exposed AWS access keys to hijack AWS Bedrock services for operating illicit AI-powered roleplay chatbots. The attackers leverage...
Nuclear waste dump in Cumbria pleaded guilty to leaving data that could threaten national security exposed for four years, says regulatorSellafield will have to pay almost £400,000 after it...
ESET Research details the tools and activities of a new China-aligned threat actor, CeranaKeeper, focusing on massive data exfiltration in Southeast Asia
Bedrock protocol is a liquid staking protocol for various assets, one of which is Bitcoin. The Dedaub team discovered an issue in the protocol then messaged the developers on Twitter about it....
Two years ago, Sam Curry and friends released one of the most banger blog posts ever - hacking every car company. After some time, they decided to come back to see if things had changed. This...
Building efficient recovery options will drive ecosystem resilience
On September 22nd, a new PyPI user orchestrated a wide-ranging attack by uploading multiple packages within a short timeframe. These packages, bearing names like “AtomicDecoderss,”...
CERT Polska has recently observed new samples of the “Joker” mobile malware. The applications are present in the Google Play Store and target Polish users, among others.
Despite their benefits, awareness campaigns alone are not enough to encourage widespread adoption of cybersecurity best practices
In case you missed it, hackers have been utilizing a new technique to infect victims with Infostealers, it is done by setting a fake Captcha page that prompts the victim to paste a powershell...
October 1, 2024 According to detection statistics collected by Dr.Web Security Space for mobile devices, Android.FakeApp trojan apps, used by threat actors in various fraudulent schemes, were the...
October 1, 2024 According to the detection statistics collected by the Dr.Web antivirus, the total number of threats detected in the third quarter of 2024 was up 10.81% over the previous quarter....