For three years now, more than a thousand social media accounts have been reposting the same pro-India, anti-Pakistan content on Facebook and X.
Автор: Nate Nelson, Contributing Writer
North Korean APT Exploits Novel Chromium, Windows Bugs to Steal Crypto
DPRK’s innovative tack chains together previously unknown browser issues, then adds a rootkit to the mix to gain deep system access.
BlackCat Spinoff ‘Cicada3301’ Uses Stolen Creds on the Fly, Skirts EDR
Malware authors have iterated on one of the premier encryptors on the market, building something even bigger and better.
Brazilian Ad Fraud Network ‘Camu’ Hits 2B+ Daily Bid Requests
The global Internet helps just about everything to scale more easily, including piracy and ad fraud.
South Korean APT Exploits 1-Click WPS Office Bug, Nabs Chinese Intel
The most popular office software suite in China actually has two critical vulnerabilities, which allowed hackers the opportunity for remote code execution. Time to patch.
Hundreds of LLM Servers Expose Corporate, Health & Other Online Data
LLM automation tools and vector databases can be rife with sensitive data — and vulnerable to pilfering.
Hackers Use Rare Stealth Techniques to Down Asian Military, Gov’t Orgs
A threat actor resembling APT41 performed "AppDomainManager Injection," which is like DLL sideloading, but arguably easier and stealthier.
Patch Now: Second SolarWinds Critical Bug in Web Help Desk
The disclosure of CVE-2024-28987 means that, in two weeks, there have been two critical bugs and corresponding patches for SolarWinds’ less-often-discussed IT help desk software.
Infostealers Waltz Through macOS to Grab Crypto Wallets, Browser Creds
Ironically, Macs’ lower risk profile may make them more susceptible to any given threat than the average Windows or Linux system.
Chinese Threat Actors Use MSI Files to Bypass Windows, VT Detection
Analysts have been picking up increased cases of malware delivery via Windows Installer files in Southeast Asia.