Author Archives: Ravie Lakshmanan

A previously undocumented strain of Android spyware with extensive information gathering capabilities has been found disguised as a book likely designed to target the Uyghur community in China.
The malware comes under the guise of a book titled “The C… Continue reading Researchers Find New Android Spyware Campaign Targeting Uyghur Community→

QNAP has issued a new advisory urging users of its network-attached storage (NAS) devices to upgrade to the latest version of Photo Station following yet another wave of DeadBolt ransomware attacks in the wild by exploiting a zero-day flaw in the soft… Continue reading QNAP Warns of New DeadBolt Ransomware Attacks Exploiting Photo Station Flaw→

Popular short-form social video service TikTok denied reports that it was breached by a hacking group, after it claimed to have gained access to an insecure cloud server.
“TikTok prioritizes the privacy and security of our users’ data,” the ByteDance-… Continue reading TikTok Denies Data Breach Reportedly Exposing Over 2 Billion Users’ Information→

A vulnerable anti-cheat driver for the Genshin Impact video game has been leveraged by a cybercrime actor to disable antivirus programs to facilitate the deployment of ransomware, according to findings from Trend Micro.
The ransomware infection, which… Continue reading Ransomware Attackers Abuse Genshin Impact Anti-Cheat System to Disable Antivirus→

The notorious Android banking trojan known as SharkBot has once again made an appearance on the Google Play Store by masquerading as antivirus and cleaner apps.
“This new dropper doesn’t rely on Accessibility permissions to automatically perform the i… Continue reading Fake Antivirus and Cleaner Apps Caught Installing SharkBot Android Banking Trojan→

South Korean chaebol Samsung on Friday said it experienced a cybersecurity incident that resulted in the unauthorized access of some customer information, the second time this year it has reported such a breach.
“In late July 2022, an unauthorized thi… Continue reading Samsung Admits Data Breach that Exposed Details of Some U.S. Customers→

Google on Friday shipped emergency fixes to address a security vulnerability in the Chrome web browser that it said is being actively exploited in the wild.
The issue, assigned the identifier CVE-2022-3075, concerns a case of insufficient data validat… Continue reading Google Release Urgent Chrome Update to Patch New Zero-Day Vulnerability→

Researchers discovered a private Telegram channel-based backdoor in the information stealing malware, dubbed Prynt Stealer, which its developer added with the intention of secretly stealing a copy of victims’ exfiltrated data when used by other cyberc… Continue reading Prynt Stealer Contains a Backdoor to Steal Victims’ Data Stolen by Other Cybercriminals→

More details have emerged about the operators behind the first-known phishing campaign specifically aimed at the Python Package Index (PyPI), the official third-party software repository for the programming language.
Connecting it to a threat actor tr… Continue reading JuiceLedger Hackers Behind the Recent Phishing Attacks Against PyPI Users→

In another finding that could expose developers to increased risk of a supply chain attack, it has emerged that nearly one-third of the packages in PyPI, the Python Package Index, trigger automatic code execution upon downloading them.
“A worrying fea… Continue reading Warning: PyPI Feature Executes Code Automatically After Python Package Download→