Malware & Threats CISA Warns of Second BeyondTrust Vulnerability Exploited in Attacks Attackers have been exploiting a second vulnerability in BeyondTrust’s remote management solutions, CISA warns. Ionut ArghireJanuary 14, 2025
Data Breaches Infostealer Infections Lead to Telefonica Ticketing System Breach Infostealer malware allowed threat actors to compromise Telefonica employees’ credentials and access the company’s internal ticketing system. Ionut ArghireJanuary 14, 2025
Malware & Threats Infostealer Masquerades as PoC Code Targeting Recent LDAP Vulnerability A fake proof-of-concept (PoC) exploit for a recent LDAP vulnerability distributes information stealer malware. Ionut ArghireJanuary 13, 2025
Malware & Threats Banshee macOS Malware Expands Targeting The latest version of the Banshee macOS information stealer no longer checks if the infected systems have the Russian language installed. Ionut ArghireJanuary 10, 2025
Malware & Threats Exploitation of New Ivanti VPN Zero-Day Linked to Chinese Cyberspies Google Cloud’s Mandiant has linked the exploitation of CVE-2025-0282, a new Ivanti VPN zero-day, to Chinese cyberspies. Eduard KovacsJanuary 9, 2025
Malware & Threats Ivanti Warns of New Zero-Day Attacks Hitting Connect Secure Product Ivanti confirms zero-day exploitation of a remotely exploitable code execution flaw in its Connect Security product line. Ryan NaraineJanuary 8, 2025
Malware & Threats Wallet Drainer Malware Used to Steal $500 Million in Cryptocurrency in 2024 Close to $500 million in cryptocurrency from over 332,000 addresses was stolen in 2024 using wallet drainer malware. Ionut ArghireJanuary 6, 2025
Malware & Threats FireScam Android Malware Packs Infostealer, Spyware Capabilities The FireScam Android infostealer monitors app notifications and harvests credentials and financial data and sends it to a Firebase database. Ionut ArghireJanuary 3, 2025
Malware & Threats In Other News: McDonald’s API Hacking, Netflix Fine, Malware Kills ICS Process Noteworthy stories that might have slipped under the radar: McDonald’s API hacking, Netflix fined nearly $5 million in Netherlands, experimental malware killing ICS process. SecurityWeek NewsDecember 20, 2024
IoT Security Botnet of 190,000 BadBox-Infected Android Devices Discovered Bitsight has discovered a BadBox botnet consisting of over 190,000 Android devices, mainly Yandex smart TVs and Hisense smartphones. Ionut ArghireDecember 20, 2024
Malware & Threats Juniper Warns of Mirai Botnet Targeting Session Smart Routers Juniper Networks says a Mirai botnet is ensnaring session smart router devices that are using default passwords. Ionut ArghireDecember 19, 2024
Malware & Threats FBI Warns of HiatusRAT Attacks on Cameras, DVR Systems FBI says HiatusRAT’s operators were seen scanning for web cameras and DVR systems affected by years-old vulnerabilities. Ionut ArghireDecember 17, 2024