Author Archives: Ravie Lakshmanan

A high-severity vulnerability has been disclosed in the SQLite database library, which was introduced as part of a code change dating all the way back to October 2000 and could enable attackers to crash or control programs.
Tracked as CVE-2022-35737 (… Continue reading 22-Year-Old Vulnerability Reported in Widely Used SQLite Database Library→

The Hive ransomware-as-a-service (RaaS) group has claimed responsibility for a cyber attack against Tata Power that was disclosed by the company less than two weeks ago.
The incident is said to have occurred on October 3, 2022. The threat actor has al… Continue reading Hive Ransomware Hackers Begin Leaking Data Stolen from Tata Power Energy Company→

Cybersecurity researchers have disclosed details about a pair of vulnerabilities in Microsoft Windows, one of which could be exploited to result in a denial-of-service (DoS).
The exploits, dubbed LogCrusher and OverLog by Varonis, take aim at the Even… Continue reading Researchers Detail Windows Event Log Vulnerabilities: LogCrusher and OverLog→

Two point-of-sale (PoS) malware variants have been put to use by a threat actor to steal information related to more than 167,000 credit cards from payment terminals.
According to Singapore-headquartered cybersecurity company Group-IB, the stolen data… Continue reading Cybercriminals Used Two PoS Malware to Steal Details of Over 167,000 Credit Cards→

Tech giant Apple on Monday rolled out updates to remediate a zero-day flaw in iOS and iPadOS that it said has been actively exploited in the wild.
The weakness, given the identifier CVE-2022-42827, has been described as an out-of-bounds write issue in… Continue reading Apple Releases Patch for New Actively Exploited iOS and iPadOS Zero-Day Vulnerability→

SideWinder, a prolific nation-state actor mainly known for targeting Pakistan military entities, compromised the official website of the National Electric Power Regulatory Authority (NEPRA) to deliver a tailored malware called WarHawk.
“The newly disc… Continue reading SideWinder APT Using New WarHawk Backdoor to Target Entities in Pakistan→

U.S. cybersecurity and intelligence agencies have published a joint advisory warning of attacks perpetrated by a cybercrime gang known as the Daixin Team primarily targeting the healthcare sector in the country.
“The Daixin Team is a ransomware and da… Continue reading CISA Warns of Daixin Team Hackers Targeting Health Organizations With Ransomware→

Researchers have disclosed details about a now-patched critical flaw in the Move virtual machine that powers the Aptos blockchain network.
The vulnerability “can cause Aptos nodes to crash and cause denial of service,” Singapore-based Numen Cyber Labs… Continue reading Critical Flaw Reported in Move Virtual Machine Powering the Aptos Blockchain Network→

The notorious Emotet botnet has been linked to a new wave of malspam campaigns that take advantage of password-protected archive files to drop CoinMiner and Quasar RAT on compromised systems.
In an attack chain detected by Trustwave SpiderLabs researc… Continue reading Emotet Botnet Distributing Self-Unlocking Password-Protected RAR Files to Drop Malware→

A now-patched vulnerability in VMware Workspace ONE Access has been observed being exploited to deliver both cryptocurrency miners and ransomware on affected machines.
“The attacker intends to utilize a victim’s resources as much as possible, not only… Continue reading Multiple Campaigns Exploit VMware Vulnerability to Deploy Crypto Miners and Ransomware→