“Cyber warfare is as much about psychological strategy as technical prowess.”
― James Scott
-
Hackers Use Microsoft MSC Files to Deploy Obfuscated Backdoor in Pakistan Attacks [email protected] (The Hacker News)
A new phishing campaign has been observed employing tax-themed lures to deliver a stealthy backdoor payload as part of attacks targeting Pakistan. Cybersecurity company Securonix, which is tracking the activity under the name FLUX#CONSOLE, said it likely starts with a phishing email link or attachment, although it said it couldn’t obtain the original email used…
-
Even Great Companies Get Breached — Find Out Why and How to Stop It [email protected] (The Hacker News)
Even the best companies with the most advanced tools can still get hacked. It’s a frustrating reality: you’ve invested in the right solutions, trained your team, and strengthened your defenses. But breaches still happen. So, what’s going wrong? The truth is, that attackers are constantly finding new ways to slip through cracks that often go…
-
Bitter APT Targets Turkish Defense Sector with WmRAT and MiyaRAT Malware [email protected] (The Hacker News)
A suspected South Asian cyber espionage threat group known as Bitter targeted a Turkish defense sector organization in November 2024 to deliver two C++-malware families tracked as WmRAT and MiyaRAT. “The attack chain used alternate data streams in a RAR archive to deliver a shortcut (LNK) file that created a scheduled task on the target…
-
5 Practical Techniques for Effective Cyber Threat Hunting [email protected] (The Hacker News)
Addressing cyber threats before they have a chance to strike or inflict serious damage is by far the best security approach any company can embrace. Achieving this takes a lot of research and proactive threat hunting. The problem here is that it is easy to get stuck in endless arrays of data and end up…
-
Are password managers safe for enterprise use?
Post ContentRead More
-
The pros and cons of biometric authentication
Post ContentRead More
-
Hackers Exploit Webview2 to Deploy CoinLurker Malware and Evade Security Detection [email protected] (The Hacker News)
Bogus software update lures are being used by threat actors to deliver a new stealer malware called CoinLurker. “Written in Go, CoinLurker employs cutting-edge obfuscation and anti-analysis techniques, making it a highly effective tool in modern cyber attacks,” Morphisec researcher Nadav Lorber said in a technical report published Monday. The attacks make use of fake…
-
What is PKI (public key infrastructure)?
Post ContentRead More
-
What is passwordless authentication?
Post ContentRead More
-
The Mask APT Resurfaces with Sophisticated Multi-Platform Malware Arsenal [email protected] (The Hacker News)
A little-known cyber espionage actor known as The Mask has been linked to a new set of attacks targeting an unnamed organization in Latin America twice in 2019 and 2022. “The Mask APT is a legendary threat actor that has been performing highly sophisticated attacks since at least 2007,” Kaspersky researchers Georgy Kucherin and Marc…
“Security used to be an inconvenience sometimes, but now it’s a necessity all the time.”
― Martina Navratilova