Category: News

Ukraine’s Computer Emergency Response Team (CERT-UA) has discovered another sophisticated cyber espionage campaign that has been targeting Ukraine’s key national security institutions like military innovation centers, armed forces, Law enforcement agencies, and local governments—particularly in regions along the country’s eastern border. According to CERT-UA, the cyber threat activity, tracked under the identifier UAC-0226, has been … Continued

A new wave of phishing attacks impersonating E-Zpass and other U.S. toll authorities is sweeping across the U.S., tricking mobile users into handing over sensitive personal information to threat actors. Distribution The ongoing campaign, has intensified in recent days, is targeting victims through imessage and SMS text messages. These messages claim to be from popular … Continued

OpenVPN, a popular open-source VPN software, has rolled out an update to address a major vulnerability that could crash server and potentially allow remote code execution in certain situations. The flaw, tracked as CVE-2025-2704, affects OpenVPN servers when configured with specific settings and OpenVPN clients are unaffected. The issue has been fixed in the latest … Continued

As April 15 Tax Day deadline approaches, Microsoft cybersecurity experts have reported a spike in phishing campaigns targeting U.S. taxpayers. These campaigns use tax-related stuffs to lure victims, often using URL shorteners, QR codes, and malicious attachments. How It Happens These campaigns, primarily aimed at individuals and organizations in the United States. The phishing emails … Continued

Symantec has recently identified a series of phishing campaigns that targets users of Monex Securities (マネックス証券), one of Japan’s leading online securities companies. Monex Securities was formed through the merger of Monex, Inc. and Nikko Beans, Inc. and offers a range of financial services to individual investors in Japan. What Happened The phishing campaigns involve … Continued

A recently uncovered web skimming campaign is using a legacy Stripe API to validate stolen payment details before exfiltration, reducing the chances of detection. Researchers from Jscarambler identified at least 49 compromised merchants, with numbers expected to rise as more victims are uncovered. How the Attack Operates The attack employs multiple stages to load skimming … Continued

Multiple Vulnerabilities have been discovered in IBM AIX, a Unix-based operating system developed by IBM for its Power Servers. The vulnerabilities are tracked as CVE-2024-56346(CVSS:10) and CVE-2024-56347(CVSS:9.6) cause arbitrary code execution. These vulnerabilities could enable malicious actors to install software, manipulate or erase data, or even create new accounts with full administrative privileges, depending on … Continued

A new research by Kaspersky reveals that threat actors are using DeepSeek LLM as bait in multiple malicious campaigns. Initially discovered in early March, the TookPs downloader – discovered as a key malware strain- has now been found mimicking neural networks and 3D modeling tools. Targets Potential victims of this campaign include both individual users … Continued

A newly identified phishing-as-a-service (PhaaS) platform called Lucid has been found targeting more than 169 organization across 88 countries. The platform uses smishing technique via Apple iMessage and Rich Communication Services (RCS) on Android to orchestrate large-scale phishing attacks. Why It Matters Lucid’s methodology represents a drastic shift from traditional phishing techniques. By utilizing widely … Continued

A recent investigation by Wiz Threat Research has discovered a cryptomining campaign targeting publicly exposed PostgreSQL servers. This new campaign deploy’s XMRig-C3 cryptominers, that can bypass detection. Tracked as JINX-0126, the campaign was initially documented by Aqua Security but has since adapted to enhance its stealth capabilities. The Big Picture The attackers are using brute-force … Continued