GitHub Security Updates for Enterprise Server: Critical Bug Fixes GitHub has recently rolled out vital security updates for its Enterprise Server (GHES). These updates address multiple vulnerabilities, including a critical bug that could allow unauthorized access to an instance. The vulnerability, tracked as CVE-2024-9487, has a CVSS score of 9.5 out of 10.0, highlighting the…
Understanding the TrickMo Banking Trojan: New Threats and Features The Android banking trojan TrickMo is evolving. Recent discoveries indicate that new variants of TrickMo include undocumented features designed to capture a device's unlock pattern or PIN. This alarming development enables threat actors to operate on a device even while it is locked. Zimperium security researcher…
Understanding the North Korean FASTCash Malware Threat North Korean threat actors have recently been observed using a Linux variant of the well-known FASTCash malware family. This malware aims to steal funds as part of a financially motivated campaign. Cybersecurity experts, including a researcher known as HaxRob, have revealed that the malware is installed on payment…
New Malware Campaign Using PureCrypter: What You Need to Know Cybersecurity researchers recently disclosed a concerning malware campaign that uses a malware loader called PureCrypter to deliver a remote access trojan (RAT) known as DarkVision RAT. This alarming activity was observed by Zscaler ThreatLabz in July 2024. The campaign involves a multi-stage process designed to…
Understanding Zero-Day Vulnerabilities In recent years, the number and sophistication of zero-day vulnerabilities have surged. These are critical security flaws in software that are unknown to the vendor and remain unpatched at the time of discovery. Attackers exploit these vulnerabilities before any defensive measures can be implemented, making zero-days a potent weapon for cybercriminals. Organizations…
CVERC's Claims: Volt Typhoon as a Fabrication by the U.S. China's National Computer Virus Emergency Response Center (CVERC) has intensified its assertions that the threat actor known as Volt Typhoon is a creation of the U.S. and its allies. By collaborating with the National Engineering Laboratory for Computer Virus Prevention Technology, the agency presented a…
China's National Computer Virus Emergency Response Center (CVERC) has recently intensified its claims surrounding the threat actor known as Volt Typhoon. The agency asserts that Volt Typhoon is merely a creation of the United States and its allies, aimed at distracting attention from cyber activities prevalent among these nations. This assertion emerged from a joint…
New Malware Campaign: A Closer Look at Hijack Loader Cybersecurity researchers from the French firm HarfangLab have recently uncovered a new malware campaign. This campaign utilizes Hijack Loader artifacts that are signed with legitimate code-signing certificates. In particular, this attack targets users with a potent information stealer known as Lumma. The detection of this activity…
Jetpack WordPress Plugin Security Update: Critical Vulnerability Fixed The maintainers of the Jetpack WordPress plugin recently announced a security update to address a critical vulnerability. This issue could potentially allow logged-in users to access forms submitted by others on a website. Jetpack, owned by Automattic—the maker of WordPress—offers a powerful suite of tools for website…
Understanding Software Supply Chain Attacks Cybersecurity researchers have recently identified vulnerabilities in popular programming ecosystems like PyPI, npm, RubyGems, NuGet, Dart Pub, and Rust Crates. These entry points can be exploited to stage software supply chain attacks. Attackers can leverage these entry points to execute malicious code when specific commands are run. Consequently, this poses…