Researchers have uncovered a newly identified DFSCoerce Windows NTLM relay threat campaign that uses the MS-DFSNM, Microsoft’s Distributed File System, that aids hackers in controlling a Windows domain. Almost all organisations use the Microsoft Active Directory Certificate services since it is a public key infrastructure service utilised for authenticating users, devices, and services on a...Continue Reading
New research revealed that hackers could use GhostTouch to execute several cybercriminal actions, such as downloading malware and initiating calls. Any entity could utilise electromagnetic interference to activate arbitrary behaviour on mobile touchscreens. Modern tablets and smartphones take advantage of capacitive touchscreens that give multi-touch capabilities and can measure minimal electric fields. However, the charger...Continue Reading
A new ransomware operation has been found with a unique method of selling its decryptors through Roblox, a gaming platform that uses its in-game currency, Robux. Roblox is a game designed for kids, and one of its features is that it allows its members to develop their games and monetise them by selling ‘Game Passes.’...Continue Reading
A surge in the malicious activities of the Hello XD ransomware was recently identified, with new ransomware samples deployed to execute stronger encryption on the compromised networks. Experts explained that the ransomware variant has stemmed from the leaked source code of the Babuk ransomware. Based on its first observed activities last November, Hello XD had...Continue Reading
Researchers have monitored spam attacks spread by a new malware variant called SVCReady. The campaign has been operating since April, utilising an unorthodox malware delivery method via MS Word. According to the researchers, the operators behind it deployed numerous updates in May and noticed that the malware appears to be in the development stage and...Continue Reading
The Qbot hacking group and the Black Basta ransomware have joined forces to gain initial access to numerous targets such as corporate environments. Qbot is notorious for stealing banking credentials and Windows domain and launching additional payloads. Researchers have reported the ongoing partnership between the two groups after the traces of them were found present...Continue Reading
The most recent activity of the notorious hacktivist gang, Anonymous, involves their strike against Russia, leaking about 1TB of data from a Russian law firm called Rustam Kurmaev and Partners or RKP Law. The well-known law firm, RKP Law, has worked with the Russian government and other big-time Russian corporations from different sectors, such as...Continue Reading
LuoYu, a China-based hacking group, deployed the WinDealer infostealer malware by swapping legit applications updates with compromised payloads to organise a cyberespionage campaign. Reports revealed that the group monitored its target’s network traffic for application update requests connected to well known Asian apps such as WeChat, WangWang, and QQ. The threat actors then replace the...Continue Reading
Ransomware gangs may have been upgrading their extortion tactics after starting to hack corporate websites to post their ransom notes for the public to see, adding more pressure for their victims to pay up. Industrial Spy, a ransomware threat group, was the first that has been identified using this new extortion tactic. Initially, the threat...Continue Reading
In 2019, New South Wales in Australia launched a digital driver’s license (DDL) program to replace the physical driving licenses of drivers from the state. The officials who implemented the project claimed that the DDL is more secure, but security experts say otherwise. As of 2021, over half of the state’s population has used the...Continue Reading
This website stores cookies on your computer. These cookies are used to collect information about how you interact with our website and allow us to remember you. We use this information in order to improve and customize your browsing experience and for analytics and metrics about our visitors both on this website and other media.
If you decline, your information won’t be tracked when you visit this website. A single cookie will be used in your browser to remember your preference not to be tracked.