New Threat Actor Targeting Drone Manufacturers in Taiwan A newly discovered threat actor, identified by Trend Micro as TIDRONE, has emerged with suspected connections to Chinese-speaking groups. This entity has set its sights on drone manufacturers in Taiwan, launching a cyber attack campaign that kicked off in 2024. Trend Micro’s investigations suggest that the primary…
Ongoing kibernetska kampanja skupine Lazarus Ongoing kibernetska kampanja skupine Lazarus je letos doživela porast aktivnosti, pri čemer ima centralno vlogo zlonamerna programska oprema BeaverTail, ki se je razvila za ciljanje na različne platforme, vključno z Windows, macOS in Node.js. Lazarus uporablja zavajajoče taktike, kot so ponarejeni zaposlitveni razgovori in lažne aplikacije za video konferenčne klice,…
U.S. Government and International Partners Attribute Russian Hacking Group In a bold move, the U.S. government, along with an international coalition, has pointed fingers at a Russian hacking group by the name of Cadet Blizzard. This group has been closely tracked back to the General Staff Main Intelligence Directorate (GRU) 161st Specialist Training Center, also…
Metasploit je nepogrešljivo orodje v arzenalu vsakega varnostnega strokovnjaka, ki se ukvarja s penetracijskim testiranjem in etičnim hekiranjem. Razvit s strani podjetja Rapid7, ta okvir omogoča identifikacijo in odpravo ranljivosti v računalniških sistemih. V tem podrobnejšem blogu bomo raziskali, kaj je Metasploit, kako deluje, njegove ključne komponente in primere uporabe. Uvod v Metasploit Metasploit je…
Hiter Razcvet Web3 Odpira Nova Vrata za Kibernetske Napade na Finančni Sektor Hitro rastoči Web3 je ustvaril nove priložnosti za kibernetske kriminalce, zlasti na področju decentraliziranih financ (DeFi). Severna Koreja je bila pomemben akter na tem področju, organizirajoč velike tatvine, kot je bil napad na Ronin Bridge leta 2022. Niso sami; od leta 2020 je…
V sodobnem poslovnem svetu, kjer so kibernetske grožnje vedno bolj kompleksne in raznolika, je učinkovito upravljanje varnosti ključnega pomena za zaščito podjetij. Wazuh, odprtokodni varnostni informacijski in upravljavski sistem (SIEM), je v zadnjih letih postal priljubljena izbira za podjetja, ki iščejo celovito rešitev za zaznavanje groženj in odzivanje nanje. V tem blogu bomo raziskali, ali…
North Korean Threat Actors Targeting Developers on LinkedIn Threat actors linked to North Korea have developed a crafty scheme to target developers through LinkedIn, as highlighted in a recent report by Mandiant, owned by Google. This deceptive operation involves using fake job recruitment tactics to entice unsuspecting victims. Using Coding Tests as an Initial Attack…
Two Men Indicted in the U.S. for Alleged Involvement in Dark Web Marketplace In a recent turn of events, two individuals, Alex Khodyrev from Kazakhstan and Pavel Kublitskii from Russia, have been charged in the U.S. for their alleged roles in managing a dark web marketplace known as WWH Club. This illicit platform specialized in…
Kritična ranljivost v Infineonovi kriptografski knjižnici ogroža varnost naprav YubiKey in YubiHSM 2 Varnostni strokovnjaki so odkrili kritično ranljivost v Infineonovi kriptografski knjižnici, ki se uporablja v napravah YubiKey 5 Series, Security Key Series in YubiHSM 2. Ta ranljivost bi lahko potencialno omogočila napadalcem, da si opomorejo zasebne ključe, shranjene na teh napravah, kar predstavlja…
Security Flaw in OSGeo GeoServer GeoTools Exploited by Cybercriminals A significant security vulnerability has been uncovered in the OSGeo GeoServer GeoTools, which cyber attackers have swiftly taken advantage of in various campaigns. This flaw has been utilized to disseminate harmful software such as cryptocurrency miners, botnet malware like Condi and JenX, as well as a…