Government Android Zero-Day Exploited in Spyware Campaigns, Amnesty International Points to Cellebrite Israeli forensics firm Cellebrite has been linked to an Android zero-day used to secretly install spyware on Serbian journalists' phones. Ryan NaraineDecember 16, 2024
Malware & Threats Undocumented DrayTek Vulnerabilities Exploited to Hack Hundreds of Orgs Undocumented vulnerabilities in DrayTek devices were exploited in ransomware campaigns that compromised over 300 organizations. Ionut ArghireDecember 16, 2024
Malware & Threats Germany Sinkholes Botnet of 30,000 BadBox-Infected Devices Germany’s cybersecurity agency BSI has sinkholed a botnet of 30,000 devices shipped with BadBox malware pre-installed. Ionut ArghireDecember 13, 2024
ICS/OT Iranian Hackers Use IOCONTROL Malware to Target OT, IoT Devices in US, Israel The Iranian threat group CyberAv3ngers has used custom-built malware named IOCONTROL to target IoT and OT devices in the US and Israel. Eduard KovacsDecember 13, 2024
Malware & Threats Mobile Surveillance Tool EagleMsgSpy Used by Chinese Law Enforcement Lookout details EagleMsgSpy, a surveillance tool used by Chinese law enforcement to collect data from Android devices. Ionut ArghireDecember 12, 2024
Malware & Threats Cleo Patches Exploited Flaw as Security Firms Detail Malware Pushed in Attacks Cleo has released patches for the exploited vulnerability and security firms have detailed the malware delivered in attacks. Eduard KovacsDecember 12, 2024
Malware & Threats No Doughnuts Today? Cyberattack Puts Krispy Kreme in a Sticky Situation The doughnut and coffeehouse chain confirmed a cyberattack took out parts of its online ordering system in parts of the United States. SecurityWeek NewsDecember 11, 2024
Malware & Threats Google Pays $55,000 for High-Severity Chrome Browser Bug Google pushes out major Chrome browser updates to fix multiple serious security defects. Ionut ArghireDecember 11, 2024
Malware & Threats Microsoft Ships Urgent Patch for Exploited Windows CLFS Zero-Day Patch Tuesday: Redmond patches 71 security flaws and calls immediate attention to an exploited Windows zero-day reported by CrowdStrike. Ryan NaraineDecember 10, 2024
Malware & Threats Critical OpenWrt Flaw Exposes Firmware Update Server to Exploitation The CVE-2024-54143 vulnerability affects the OpenWrt sysupgrade server and exposes users to risks of installing malicious firmware images. Ryan NaraineDecember 9, 2024
Malware & Threats I-O Data Confirms Zero-Day Attacks on Routers, Full Patches Pending Japanese device maker confirms zero-day router exploitation and warn that full patches won’t be available for a few weeks. Ryan NaraineDecember 5, 2024
Malware & Threats ‘DroidBot’ Android Trojan Targets Banking, Cryptocurrency Applications The newly discovered DroidBot Android trojan targets 77 banks, cryptocurrency exchanges, and national organizations. Ionut ArghireDecember 5, 2024