Author Archives: Ravie Lakshmanan

The operators behind the Lornenz ransomware operation have been observed exploiting a now-patched critical security flaw in Mitel MiVoice Connect to obtain a foothold into target environments for follow-on malicious activities.
“Initial malicious acti… Continue reading Lorenz Ransomware Exploit Mitel VoIP Systems to Breach Business Networks→

A Linux variant of a backdoor known as SideWalk was used to target a Hong Kong university in February 2021, underscoring the cross-platform abilities of the implant. 
Slovak cybersecurity firm ESET, which detected the malware in the university’s netwo… Continue reading SparklingGoblin APT Hackers Using New Linux Variant of SideWalk Backdoor→

Palo Alto Networks Unit 42 has detailed the inner workings of a malware called OriginLogger, which has been touted as a successor to the widely used information stealer and remote access trojan (RAT) known as Agent Tesla.
A .NET based keylogger and re… Continue reading Researchers Detail OriginLogger RAT — Successor to Agent Tesla Malware→

Tech giant Microsoft on Tuesday shipped fixes to quash 64 new security flaws across its software lineup, including one zero-day flaw that has been actively exploited in real-world attacks.
Of the 64 bugs, five are rated Critical, 57 are rated Importan… Continue reading Microsoft’s Latest Security Update Fixes 64 New Flaws, Including a Zero-Day→

A zero-day flaw in the latest version of a WordPress premium plugin known as WPGateway is being actively exploited in the wild, potentially allowing malicious actors to completely take over affected sites.
Tracked as CVE-2022-3180 (CVSS score: 9.8), t… Continue reading Over 280,000 WordPress Sites Attacked Using WPGateway Plugin Zero-Day Vulnerability→

Government and state-owned organizations in a number of Asian countries have been targeted by a distinct group of espionage hackers as part of an intelligence gathering mission that has been underway since early 2021.
“A notable feature of these attac… Continue reading Asian Governments and Organizations Targeted in Latest Cyber Espionage Attacks→

Hackers tied to the Iranian government have been targeting individuals specializing in Middle Eastern affairs, nuclear security, and genome research as part of a new social engineering campaign designed to hunt for sensitive information.
Enterprise se… Continue reading Iranian Hackers Target High-Value Targets in Nuclear Security and Genomic Research→

Apple has released another round of security updates to address multiple vulnerabilities in iOS and macOS, including a new zero-day flaw that has been used in attacks in the wild.
The issue, assigned the identifier CVE-2022-32917, is rooted in the Ker… Continue reading Apple Releases iOS and macOS Updates to Patch Actively Exploited Zero-Day Flaw→

China has accused the U.S. National Security Agency (NSA) of conducting a string of cyberattacks aimed at aeronautical and military research-oriented Northwestern Polytechnical University in the city of Xi’an in June 2022.
The National Computer Virus … Continue reading China Accuses NSA’s TAO Unit of Hacking its Military Research University→

A hacktivist collective called GhostSec has claimed credit for compromising as many as 55 Berghof programmable logic controllers (PLCs) used by Israeli organizations as part of a “Free Palestine” campaign.
Industrial cybersecurity firm OTORIO, which d… Continue reading Hacktivist Group GhostSec Compromises 55 Berghof PLCs Across Israel→