Category: Uncategorized
-
Detour Dog Caught Running DNS-Powered Malware Factory for Strela Stealer [email protected] (The Hacker News)
A threat actor named Detour Dog has been outed as powering campaigns distributing an information stealer known as Strela Stealer. That’s according to findings from Infoblox, which found the threat actor to maintain control of domains hosting the first stage of the stealer, a backdoor called StarFish. The DNS threat intelligence firm said it has…
-
Rhadamanthys Stealer Evolves: Adds Device Fingerprinting, PNG Steganography Payloads [email protected] (The Hacker News)
The threat actor behind Rhadamanthys has also advertised two other tools called Elysium Proxy Bot and Crypt Service on their website, even as the flagship information stealer has been updated to support the ability to collect device and web browser fingerprints, among others. “Rhadamanthys was initially promoted through posts on cybercrime forums, but soon it…
-
6 confidential computing use cases that secure data in use
Confidential computing bridges a critical security gap by encrypting data in use. Learn about its enterprise use cases, from AI protection to data sovereignty.Read More
-
News brief: Cybersecurity weakened by government shutdown
Check out the latest security news from the Informa TechTarget team.Read More
-
Researchers Warn of Self-Spreading WhatsApp Malware Named SORVEPOTEL [email protected] (The Hacker News)
Brazilian users have emerged as the target of a new self-propagating malware that spreads via the popular messaging app WhatsApp. The campaign, codenamed SORVEPOTEL by Trend Micro, weaponizes the trust with the platform to extend its reach across Windows systems, adding the attack is “engineered for speed and propagation” rather than data theft or ransomware.…
-
HashiConf highlights security opportunities to support scale
HashiCorp’s latest tools and updates help security teams collaborate with DevOps teams for efficient, scalable cloud security.Read More
-
Product Walkthrough: How Passwork 7 Addresses Complexity of Enterprise Security [email protected] (The Hacker News)
Passwork is positioned as an on-premises unified platform for both password and secrets management, aiming to address the increasing complexity of credential storage and sharing in modern organizations. The platform recently received a major update that reworks all the core mechanics. Passwork 7 introduces significant changes to how credentials are organized, accessed, and managed, reflectingRead…
-
New “Cavalry Werewolf” Attack Hits Russian Agencies with FoalShell and StallionRAT [email protected] (The Hacker News)
A threat actor that’s known to share overlaps with a hacking group called YoroTrooper has been observed targeting the Russian public sector with malware families such as FoalShell and StallionRAT. Cybersecurity vendor BI.ZONE is tracking the activity under the moniker Cavalry Werewolf. It’s also assessed to have commonalities with clusters tracked as SturgeonPhisher, Silent Lynx,…
-
CISA Flags Meteobridge CVE-2025-4008 Flaw as Actively Exploited in the Wild [email protected] (The Hacker News)
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a high-severity security flaw impacting Smartbedded Meteobridge to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The vulnerability, CVE-2025-4008 (CVSS score: 8.7), is a case of command injection in the Meteobridge web interface that could result in code execution. “Read More
-
BRICKSTORM Espionage Campaign
What is the Attack? BRICKSTORM is a stealthy, Go-based backdoor deployed by the China-nexus actor UNC5221, enabling long-term persistence and espionage via compromised network appliances in US organizations. Since March 2025, GTIG (Google Threat Intelligence Group) and Mandiant have tracked BRICKSTORM activity impacting legal services, SaaS, BPO, and technology firms. The campaign suggests objectives beyond…