Apple’s iOS and iPadOS Updates Address Critical Security Flaws Apple has recently released updates for iOS and iPadOS that fix two significant security issues. One of these vulnerabilities could have allowed a user's passwords to be read aloud by the VoiceOver assistive feature. This flaw, known as CVE-2024-44204, is a logic problem found in the…
Microsoft and the DoJ Seize 107 Russia-Linked Domains On Thursday, Microsoft and the U.S. Department of Justice (DoJ) made a significant announcement regarding cybersecurity. They revealed the seizure of 107 internet domains utilized by state-sponsored threat actors connected to Russia. These domains facilitated computer fraud and abuse in the United States. This move highlights the…
Cloudflare recently announced that it successfully mitigated a record-breaking distributed denial-of-service (DDoS) attack that peaked at an astonishing 3.8 terabits per second (Tbps). This attack lasted for a brief 65 seconds, showcasing the growing challenges in online security. For a month, Cloudflare defended against over one hundred hyper-volumetric L3/4 DDoS attacks, many of which exceeded…
Rising Threat: Perfctl Malware Targeting Linux Servers Linux servers are facing a serious and ongoing threat from a stealthy malware known as Perfctl. This malware has emerged from a growing campaign that aims to deploy cryptocurrency miners and proxyjacking software on compromised systems. What is Perfctl? Perfctl is designed to be elusive and persistent. According…
Overview of VeilShell and Threat Actor Activity Threat actors with ties to North Korea have been delivering a new, previously undocumented backdoor and remote access trojan (RAT) called VeilShell. This malicious software is part of a broader campaign that seems to target Cambodia and potentially other Southeast Asian countries. The activity has been named SHROUDED#SLEEP…
INTERPOL has announced the arrest of eight individuals in Côte d'Ivoire and Nigeria, targeting phishing scams and romance cyber fraud. This initiative, termed Operation Contender 2.0, is aimed at curbing cyber-enabled crimes in West Africa. Phishing scams are becoming increasingly common, with one recent event causing significant financial losses for Swiss citizens. The operation reflects…
Major Crackdown on LockBit Ransomware Operation A new wave of international law enforcement actions has recently unfolded, leading to four arrests and the takedown of nine servers linked to the LockBit ransomware operation. This group, also known as Bitwise Spider, was previously notorious for its financially motivated cybercrimes. Law enforcement’s decisive moves mark a significant…
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) recently added a significant security flaw affecting Endpoint Manager (EPM) to its Known Exploited Vulnerabilities (KEV) catalog. This move comes after evidence emerged showing that the flaw is actively exploited in the wild. The vulnerability, identified as CVE-2024-29824, has been assigned a high CVSS score of 9.6…
Behind the Scam: Understanding Fake Trading Apps and Investment Fraud A large-scale fraud campaign has recently come to light, revealing how fake trading apps have been used to defraud victims. Published on both the Apple App Store and Google Play Store, these deceptive applications have also appeared on various phishing sites. According to findings from…
CeranaKeeper: New Threat Actor Targeting Southeast Asia A previously undocumented threat actor, CeranaKeeper, has been linked to a series of data exfiltration attacks specifically targeting Southeast Asia. Slovak cybersecurity firm ESET observed these campaigns hitting governmental institutions in Thailand, which began in 2023. They have attributed this activity group to China, and the tools used…