Author Archives: Ravie Lakshmanan

Microsoft on Friday disclosed a potential connection between the Raspberry Robin USB-based worm and an infamous Russian cybercrime group tracked as Evil Corp.
The tech giant said it observed the FakeUpdates (aka SocGholish) malware being delivered via… Continue reading Microsoft Links Raspberry Robin USB Worm to Russian Evil Corp Hackers→

A threat actor operating with interests aligned with North Korea has been deploying a malicious extension on Chromium-based web browsers that’s capable of stealing email content from Gmail and AOL.
Cybersecurity firm Volexity attributed the malware to… Continue reading North Korean Hackers Using Malicious Browser Extension to Spy on Email Accounts→

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday added the recently disclosed Atlassian security flaw to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation.
The vulnerability, tracked as CVE… Continue reading CISA Warns of Atlassian Confluence Hard-Coded Credential Bug Exploited in Attacks→

A malicious campaign leveraged seemingly innocuous Android dropper apps on the Google Play Store to compromise users’ devices with banking malware.
These 17 dropper apps, collectively dubbed DawDropper by Trend Micro, masqueraded as productivity and u… Continue reading Over a Dozen Android Apps on Google Play Store Caught Dropping Banking Malware→

The decentralized file system solution known as IPFS is becoming the new “hotbed” for hosting phishing sites, researchers have warned.
Cybersecurity firm Trustwave SpiderLabs, which disclosed specifics of the spam campaigns, said it identified no less… Continue reading Researchers Warn of Increase in Phishing Attacks Using Decentralized IPFS Network→

Details have been shared about a security vulnerability in Dahua’s Open Network Video Interface Forum (ONVIF) standard implementation, which, when exploited, can lead to seizing control of IP cameras. 
Tracked as CVE-2022-30563 (CVSS score: 7.4), the … Continue reading Dahua IP Camera Vulnerability Could Let Attackers Take Full Control Over Devices→

Spanish law enforcement officials have announced the arrest of two individuals in connection with a cyberattack on the country’s radioactivity alert network (RAR), which took place between March and June 2021.
The act of sabotage is said to have disab… Continue reading Spanish Police Arrest 2 Nuclear Power Workers for Cyberattacking the Radiation Alert System→

A week after Atlassian rolled out patches to contain a critical flaw in its Questions For Confluence app for Confluence Server and Confluence Data Center, the shortcoming has now come under active exploitation in the wild.
The bug in question is CVE-2… Continue reading Latest Critical Atlassian Confluence Vulnerability Under Active Exploitation→

With Microsoft taking steps to block Excel 4.0 (XLM or XL4) and Visual Basic for Applications (VBA) macros by default across Office apps, malicious actors are responding by refining their tactics, techniques, and procedures (TTPs).
“The use of VBA and… Continue reading Hackers Opting New Attack Methods After Microsoft Blocked Macros by Default→

Google on Wednesday said it’s once again delaying its plans to turn off third-party cookies in the Chrome web browser from late 2023 to the second half of 2024.
“The most consistent feedback we’ve received is the need for more time to evaluate and tes… Continue reading Google Delays Blocking 3rd-Party Cookies in Chrome Browser Until 2024→