Malware & Threats Stealth Techniques Used in ‘Operation Triangulation’ iOS Attack Dissected Kaspersky analyzes the stealth techniques that were used in the ‘Operation Triangulation’ iOS zero-click attacks. Ionut ArghireOctober 24, 2023
Malware & Threats Number of Cisco Devices Hacked via Zero-Day Remains High as Attackers Update Implant The number of Cisco devices hacked via recent zero-days remains high, but the attackers have updated their implant. Eduard KovacsOctober 24, 2023
Malware & Threats Cisco Finds Second Zero-Day as Number of Hacked Devices Apparently Drops Cisco has found a second zero-day vulnerability that has been exploited in recent attacks as the number of hacked devices has started dropping. Eduard KovacsOctober 23, 2023
Cybercrime Authorities Shut Down RagnarLocker Ransomware Infrastructure The RagnarLocker ransomware group’s dark web leak site has been seized in a coordinated law enforcement operation. Ionut ArghireOctober 20, 2023
Malware & Threats Number of Cisco Devices Hacked via Unpatched Vulnerability Increases to 40,000 The number of Cisco devices hacked via the CVE-2023-20198 zero-day has reached 40,000, including many in the US. Eduard KovacsOctober 19, 2023
Cybercrime Three Months After Patch, Gov-Backed Actors Exploiting WinRAR Flaw Google says it is still catching government-backed groups linked to China and Russia launching WinRAR exploits in targeted attacks. Ryan NaraineOctober 18, 2023
Malware & Threats Tens of Thousands of Cisco Devices Hacked via Zero-Day Vulnerability Tens of thousands of Cisco devices have reportedly been hacked via the exploitation of the zero-day vulnerability CVE-2023-20198. Eduard KovacsOctober 18, 2023
Malware & Threats Signal Pours Cold Water on Zero-Day Exploit Rumors Privacy-focused messaging firm Signal is pouring cold water on widespread rumors of a zero-day exploit in its popular encrypted chat app. Ryan NaraineOctober 16, 2023
Malware & Threats Spyware Caught Masquerading as Israeli Rocket Alert Applications A threat actor targets Israelis with spyware masquerading as an Android application for receiving rocket alerts. Ionut ArghireOctober 16, 2023
Data Breaches SEC Investigating Progress Software Over MOVEit Hack Progress Software confirms the SEC has launched its own investigation into costly ransomware zero-days in the MOVEit file transfer software. Ionut ArghireOctober 12, 2023
Malware & Threats Backdoor Malware Found on WordPress Website Disguised as Legitimate Plugin A backdoor deployed on a compromised WordPress website poses as a legitimate plugin to hide its presence. Ionut ArghireOctober 12, 2023
Application Security Microsoft Fixes Exploited Zero-Days in WordPad, Skype for Business Microsoft patches more than 100 vulnerabilities across the Windows ecosystem and warned that three are already being exploited in the wild. Ryan NaraineOctober 10, 2023