Author Archives: Ravie Lakshmanan

A late-stage candidate encryption algorithm that was meant to withstand decryption by powerful quantum computers in the future has been trivially cracked by using a computer running Intel Xeon CPU in an hour’s time.
The algorithm in question is SIKE —… Continue reading Single-Core CPU Cracked Post-Quantum Encryption Candidate Algorithm in Just an Hour→

Threat actors are increasingly mimicking legitimate applications like Skype, Adobe Reader, and VLC Player as a means to abuse trust relationships and increase the likelihood of a successful social engineering attack.
Other most impersonated legitimate… Continue reading VirusTotal Reveals Most Impersonated Software in Malware Attacks→

A new, large-scale phishing campaign has been observed using adversary-in-the-middle (AitM) techniques to get around security protections and compromise enterprise email accounts.
“It uses an adversary-in-the-middle (AitM) attack technique capable of … Continue reading Researchers Warns of Large-Scale AiTM Attacks Targeting Enterprise Users→

Virtualization services provider VMware on Tuesday shipped updates to address 10 security flaws affecting multiple products that could be abused by unauthenticated attackers to perform malicious actions.
The issues, tracked from CVE-2022-31656 through… Continue reading VMware Releases Patches for Several New Flaws Affecting Multiple Products→

Researchers have disclosed a new offensive framework referred to as Manjusaka that they call is a “Chinese sibling of Sliver and Cobalt Strike.”
“A fully functional version of the command-and-control (C2), written in Golang with a User Interface in Si… Continue reading Chinese Hackers Using New Manjusaka Hacking Framework Similar to Cobalt Strike→

Security researchers have discovered a new vulnerability called ParseThru affecting Golang-based applications that could be abused to gain unauthorized access to cloud-based applications.
“The newly discovered vulnerability allows a threat actor to by… Continue reading New ‘ParseThru’ Parameter Smuggling Vulnerability Affects Golang-based Applications→

A threat actor associated with the LockBit 3.0 ransomware-as-a-service (RaaS) operation has been observed abusing the Windows Defender command-line tool to decrypt and load Cobalt Strike payloads. 
According to a report published by SentinelOne last w… Continue reading LockBit Ransomware Abuses Windows Defender to Deploy Cobalt Strike Payload→

A 24-year-old Australian national has been charged for his purported role in the creation and sale of spyware for use by domestic violence perpetrators and child sex offenders.
Jacob Wayne John Keen, who currently resides at Frankston, Melbourne, is s… Continue reading Australian Hacker Charged with Creating, Selling Spyware to Cyber Criminals→

Researchers have uncovered a list of 3,207 mobile apps that are exposing Twitter API keys in the clear, some of which can be utilized to gain unauthorized access to Twitter accounts associated with them.
The takeover is made possible, thanks to a leak… Continue reading Researchers Discover Nearly 3,200 Mobile Apps Leaking Twitter API Keys→

The operators of the Gootkit access-as-a-service (AaaS) malware have resurfaced with updated techniques to compromise unsuspecting victims.
“In the past, Gootkit used freeware installers to mask malicious files; now it uses legal documents to trick us… Continue reading Gootkit Loader Resurfaces with Updated Tactic to Compromise Targeted Computers→