Phishing is a type of cybercrime that involves tricking people into divulging sensitive information such as usernames, passwords, and credit card numbers. This is typically done through fake emails, texts, or websites…
Category: English
Understanding Malware: Types and Risks – VIDEO
Malware, short for malicious software, refers to a type of software that is designed to harm, disrupt or take control of computer systems, networks, and devices without the user’s knowledge or consent….
Vice Society’s Custom Exfiltration Tool
The Vice Society ransomware gang has been spotted using a custom-made PowerShell tool to exfiltrate data from networks they have compromised. This tool is built to avoid detection by using in-built data…
Chinese hacking group uses GC2
Chinese state-sponsored hacking group APT41, also known as HOODOO, has been found using the Google Command and Control (GC2) tool to conduct data theft attacks against a Taiwanese media company and an…
Qbot’s Phishing Evolution
Qbot, a former banking trojan that generates initial access to corporate networks, has evolved into a malware that started using phishing campaigns to infect Windows devices. Security researchers noted that Qbot is…
New Android Vulnerabilities Threaten Security
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added two vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog. The first vulnerability, CVE-2023-20963, is an Android Framework Privilege Escalation Vulnerability that enables…
Backdoor Risk on x86 Machines
Despite ARM making progress, x86 machines still dominate the desktop and laptop space. However, these machines have a significant flaw that can compromise privacy and security: a hardware backdoor that can access…
Kodi Rebuilds After Data Breach
Kodi, the open source home theater software developer, has announced that it is rebuilding its user forum after suffering a data breach in February. The breach was disclosed last week after a…
MSI confirms cyber attack
Taiwanese PC manufacturer, MSI, has confirmed a cyber attack on its systems, after detecting “network anomalies.” The company did not provide any further details regarding the nature of the attack or if…
JavaScript sandbox library has vulnerability
The vm2 JavaScript sandbox library, commonly used in IDEs, code editors, and security tools, has a critical vulnerability (CVE-2023-29017) that allows threat actors to escape the sandbox and execute arbitrary code. The…