Author Archives: Ravie Lakshmanan

The threat actors behind a large-scale adversary-in-the-middle (AiTM) phishing campaign targeting enterprise users of Microsoft email services have also set their sights on Google Workspace users.
“This campaign specifically targeted chief executives … Continue reading Researchers Warn of AiTM Attack Targeting Google G-Suite Enterprise Users→

DevOps platform GitLab this week issued patches to address a critical security flaw in its software that could lead to arbitrary code execution on affected systems.
Tracked as CVE-2022-2884, the issue is rated 9.9 on the CVSS vulnerability scoring sys… Continue reading GitLab Issues Patch for Critical Flaw in its Community and Enterprise Software→

The Iranian government-backed actor known as Charming Kitten has added a new tool to its malware arsenal that allows it to retrieve user data from Gmail, Yahoo!, and Microsoft Outlook accounts.
Dubbed HYPERSCRAPE by Google Threat Analysis Group (TAG),… Continue reading Google Uncovers Tool Used by Iranian Hackers to Steal Data from Email Accounts→

The operators of the XCSSET macOS malware have upped the stakes by making iterative improvements that add support for macOS Monterey by upgrading its source code components to Python 3.
“The malware authors have changed from hiding the primary executa… Continue reading XCSSET Malware Updates with Python 3 to Target macOS Monterey Users→

A suspected Iranian threat activity cluster has been linked to attacks aimed at Israeli shipping, government, energy, and healthcare organizations as part of an espionage-focused campaign that commenced in late 2020.
Cybersecurity firm Mandiant is tra… Continue reading Suspected Iranian Hackers Targeted Several Israeli Organizations for Espionage→

A novel data exfiltration technique has been found to leverage a covert ultrasonic channel to leak sensitive information from isolated, air-gapped computers to a nearby smartphone that doesn’t even require a microphone to pick up the sound waves.
Dubb… Continue reading New Air-Gap Attack Uses MEMS Gyroscope Ultrasonic Covert Channel to Leak Data→

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a security flaw impacting Palo Alto Networks PAN-OS to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation.
The high-severity vulnerabil… Continue reading CISA Warns of Active Exploitation of Palo Alto Networks’ PAN-OS Vulnerability→

Budget Android device models that are counterfeit versions associated with popular smartphone brands are harboring multiple trojans designed to target WhatsApp and WhatsApp Business messaging apps.
The malware, which Doctor Web first came across in Ju… Continue reading Researchers Find Counterfeit Phones with Backdoor to Hack WhatsApp Accounts→

Details of an eight-year-old security vulnerability in the Linux kernel have emerged that the researchers say is “as nasty as Dirty Pipe.”
Dubbed DirtyCred by a group of academics from Northwestern University, the security weakness exploits a previous… Continue reading “As Nasty as Dirty Pipe” — 8 Year Old Linux Kernel Vulnerability Uncovered→

Researchers have disclosed multiple vulnerabilities impacting Ultra-wideband (UWB) Real-time Locating Systems (RTLS), enabling threat actors to launch adversary-in-the-middle (AitM) attacks and tamper with location data.
“The zero-days found specifica… Continue reading RTLS Systems Found Vulnerable to MiTM Attacks and Location Tampering→