A technique to abuse Microsoft’s built-in source code editor has finally made it into the wild, thanks to China’s Mustang Panda APT.
Автор: Nate Nelson, Contributing Writer
When Startup Founders Should Start Thinking About Cybersecurity
Most investors aren’t demanding cybersecurity preparedness from startups, but founders should still be worried about the risks.
Hackers Proxyjack & Cryptomine Selenium Grid Servers
A vendor honeypot caught two attacks intended to leverage the tens of thousands of exposed Selenium Grid Web app testing servers.
Air-Gapped Networks Vulnerable to Acoustic Attack via LCD Screens
In the "PixHell" attack, sound waves generated by pixels on a screen can transmit information across seemingly impenetrable air gaps.
Chinese Tag Team APTs Keep Stealing Asian Gov’t Secrets
A PRC threat cluster known as "Crimson Palace" is demonstrating the benefits of having specialized units carry out distinct stages of a wider attack chain.
Malvertising Campaign Builds a Phish for Lowe’s Employees
Retail employees are being duped into divulging their credentials by typosquatting malvertisements.
Indian Army Propaganda Spread by 1.4K AI-Powered Social Media Accounts
For three years now, more than a thousand social media accounts have been reposting the same pro-India, anti-Pakistan content on Facebook and X.
North Korean APT Exploits Novel Chromium, Windows Bugs to Steal Crypto
DPRK’s innovative tack chains together previously unknown browser issues, then adds a rootkit to the mix to gain deep system access.
BlackCat Spinoff ‘Cicada3301’ Uses Stolen Creds on the Fly, Skirts EDR
Malware authors have iterated on one of the premier encryptors on the market, building something even bigger and better.
Brazilian Ad Fraud Network ‘Camu’ Hits 2B+ Daily Bid Requests
The global Internet helps just about everything to scale more easily, including piracy and ad fraud.