Author Archives: Ravie Lakshmanan

A cyber mercenary that “ostensibly sells general security and information analysis services to commercial customers” used several Windows and Adobe zero-day exploits in limited and highly-targeted attacks against European and Central American entities… Continue reading Microsoft Uncovers Austrian Company Exploiting Windows and Adobe Zero-Day Exploits→

The team behind LibreOffice has released security updates to fix three security flaws in the productivity software, one of which could be exploited to achieve arbitrary code execution on affected systems.
Tracked as CVE-2022-26305, the issue has been … Continue reading LibreOffice Releases Software Update to Patch 3 New Vulnerabilities→

The U.S. State Department has announced rewards of up to $10 million for any information that could help disrupt North Korea’s cryptocurrency theft, cyber-espionage, and other illicit state-backed activities.
“If you have information on any individual… Continue reading U.S. Offers $10 Million Reward for Information on North Korean Hackers→

As many as 30 malicious Android apps with cumulative downloads of nearly 10 million have been found on the Google Play Store distributing adware.
“All of them were built into various programs, including image-editing software, virtual keyboards, syste… Continue reading These 28+ Android Apps with 10 Million Downloads from the Play Store Contain Malware→

Facebook business and advertising accounts are at the receiving end of an ongoing campaign dubbed Ducktail designed to seize control as part of a financially driven cybercriminal operation. 
“The threat actor targets individuals and employees that may… Continue reading New Ducktail Infostealer Malware Targeting Facebook Business and Ad Accounts→

Threat actors are increasingly abusing Internet Information Services (IIS) extensions to backdoor servers as a means of establishing a “durable persistence mechanism.”
That’s according to a new warning from the Microsoft 365 Defender Research Team, wh… Continue reading Malicious IIS Extensions Gaining Popularity Among Cyber Criminals for Persistent Access→

Cybersecurity researchers have reiterated similarities between the latest iteration of the LockBit ransomware and BlackMatter, a rebranded variant of the DarkSide ransomware strain that closed shop in November 2021.
The new version of LockBit, called … Continue reading Experts Find Similarities Between New LockBit 3.0 and BlackMatter Ransomware→

As many as 207 websites have been infected with malicious code designed to launch a cryptocurrency miner by leveraging WebAssembly (Wasm) on the browser.
Web security company Sucuri, which published details of the campaign, said it launched an investi… Continue reading Hackers Increasingly Using WebAssembly Coded Cryptominers to Evade Detection→

Malicious actors are exploiting a previously unknown security flaw in the open source PrestaShop e-commerce platform to inject malicious skimmer code designed to swipe sensitive information.
“Attackers have found a way to use a security vulnerability … Continue reading Hackers Exploit PrestaShop Zero-Day to Steal Payment Data from Online Stores→

FileWave’s mobile device management (MDM) system has been found vulnerable to two critical security flaws that could be leveraged to carry out remote attacks and seize control of a fleet of devices connected to it.
“The vulnerabilities are remotely ex… Continue reading Critical FileWave MDM Flaws Open Organization-Managed Devices to Remote Hackers→