Category: Uncategorized
-

Hackers Exploit Legitimate Websites to Deliver BadSpace Windows Backdoor [email protected] (The Hacker News)
Legitimate-but-compromised websites are being used as a conduit to deliver a Windows backdoor dubbed BadSpace under the guise of fake browser updates. “The threat actor employs a multi-stage attack chain involving an infected website, a command-and-control (C2) server, in some cases a fake browser update, and a JScript downloader to deploy a backdoor into the…
-

NiceRAT Malware Targets South Korean Users via Cracked Software [email protected] (The Hacker News)
Threat actors have been observed deploying a malware called NiceRAT to co-opt infected devices into a botnet. The attacks, which target South Korean users, are designed to propagate the malware under the guise of cracked software, such as Microsoft Windows, or tools that purport to offer license verification for Microsoft Office. “Due to the nature…
-

U.K. Hacker Linked to Notorious Scattered Spider Group Arrested in Spain [email protected] (The Hacker News)
Law enforcement authorities have allegedly arrested a key member of the notorious cybercrime group called Scattered Spider. The individual, a 22-year-old man from the United Kingdom, was arrested this week in the Spanish city of Palma de Mallorca as he attempted to board a flight to Italy. The move is said to be a joint…
-

Grandoreiro Banking Trojan Hits Brazil as Smishing Scams Surge in Pakistan [email protected] (The Hacker News)
Pakistan has become the latest target of a threat actor called the Smishing Triad, marking the first expansion of its footprint beyond the E.U., Saudi Arabia, the U.A.E., and the U.S. “The group’s latest tactic involves sending malicious messages on behalf of Pakistan Post to customers of mobile carriers via iMessage and SMS,” Resecurity said…
-

Pakistani Hackers Use DISGOMOJI Malware in Indian Government Cyber Attacks [email protected] (The Hacker News)
A suspected Pakistan-based threat actor has been linked to a cyber espionage campaign targeting Indian government entities in 2024. Cybersecurity company Volexity is tracking the activity under the moniker UTA0137, noting the adversary’s exclusive use of a malware called DISGOMOJI that’s written in Golang and is designed to infect Linux systems. “It is a modified…
-

Meta Halts AI Training on EU User Data Amid Privacy Concerns [email protected] (The Hacker News)
Meta on Friday said it’s delaying its efforts to train the company’s large language models (LLMs) using public content shared by adult users on Facebook and Instagram in the European Union following a request from the Irish Data Protection Commission (DPC). The company expressed disappointment at having to put its AI plans on pause, stating…
-
Vermont Governor Vetoes Data Privacy Bill, Saying State Would be Most Hostile to Businesses Associated Press
Republican Gov. Phil Scott said the legislation would have made Vermont “a national outlier and more hostile than any other state to many businesses and non-profits.” The post Vermont Governor Vetoes Data Privacy Bill, Saying State Would be Most Hostile to Businesses appeared first on SecurityWeek. Read More
-
Veeam executives discuss data protection trends, future IPO
Post ContentRead More
-
Pakistani Threat Actors Caught Targeting Indian Gov Entities Ionut Arghire
Security researchers at Cisco Talos and Volexity flag two Pakistani espionage campaigns targeting Indian government entities. The post Pakistani Threat Actors Caught Targeting Indian Gov Entities appeared first on SecurityWeek. Read More
-
Congress grills Microsoft president over security failures
Post ContentRead More
