Cisco Issues Warning: Decade-Old Flaw Exposed Cisco has alerted its customers of an active exploitation of a security flaw affecting its Adaptive Security Appliance (ASA). This vulnerability, tracked as CVE-2014-2120, has been around for nearly a decade. With a CVSS score of 4.3, it’s classified as a moderate risk. The flaw arises from insufficient input…
Exploits in VPN Clients: Understanding the Risks and Protections Cybersecurity researchers have uncovered significant vulnerabilities in Palo Alto Networks and SonicWall virtual private network (VPN) clients. These flaws can potentially be exploited to gain remote code execution on both Windows and macOS systems. By targeting the implicit trust that VPN clients assign to servers, attackers…
Understanding the Kimsuky Threat Actor and Their Phishing Attacks Kimsuky, a North Korea-aligned threat actor, has been linked to a series of phishing attacks. These attacks frequently use Russian email addresses to execute credential theft. According to South Korean cybersecurity company Genians, phishing emails were primarily sent via email services in Japan and Korea until…
New Malware Campaign: Horns & Hooves Targets Russian Users and Businesses A newly discovered malware campaign is targeting private users, retailers, and service businesses in Russia. Kaspersky has named this campaign "Horns & Hooves." It primarily delivers two types of Remote Access Trojans (RATs): NetSupport RAT and BurnsRAT. Since its inception in March 2023, the…
SmokeLoader Malware Targets Taiwanese Entities Taiwanese entities in the manufacturing, healthcare, and information technology sectors are under threat from a new campaign distributing the SmokeLoader malware. This versatile malware is known for its advanced evasion techniques and modular design, which allows it to carry out a wide range of attacks. According to Fortinet FortiGuard Labs,…
Artificial Intelligence (AI) is no longer a distant concept; it’s fully integrated into our everyday lives. From the simplest tasks, like ordering coffee, to complex functions, such as diagnosing health issues, AI has transformed numerous industries. However, as you embark on developing your next innovative AI-powered application, it’s crucial to remember that hackers are also…
What Happens in the Digital World While You Blink? Ever wonder what happens in the digital world every time you blink? Here's something wild – hackers launch about 2,200 attacks every single day. That means someone's trying to break into a system somewhere every 39 seconds! While we often worry about traditional hackers, a new…
Artificial Intelligence (AI) is no longer a far-off dream—it’s here, changing the way we live and work. From ordering coffee to diagnosing diseases, AI is everywhere. However, as you create the next big AI-powered app, it’s important to remember that hackers are already figuring out ways to break into these systems. Every AI application presents…
Overview of SpyLoan Malware in Android Apps Recent findings from McAfee Labs have revealed a concerning issue involving over a dozen malicious Android apps on the Google Play Store. These apps have been downloaded more than 8 million times and contain malware known as SpyLoan. This software poses a significant threat to users, as it…
A recent global law enforcement operation has resulted in significant strides against financial crimes. More than 5,500 suspects have been arrested, alongside the seizure of over $400 million in virtual assets and government-backed currencies. This remarkable initiative, known as Operation HAECHI-V, involved authorities from 40 countries, territories, and regions and aimed to disrupt criminal networks…