Author Archives: Ravie Lakshmanan

A cloud threat actor group tracked as 8220 has updated its malware toolset to breach Linux servers with the goal of installing crypto miners as part of a long-running campaign.
“The updates include the deployment of new versions of a crypto miner and … Continue reading Microsoft Warns of Cryptomining Malware Campaign Targeting Linux Servers→

Amazon, in December 2021, patched a high severity vulnerability affecting its Photos app for Android that could have been exploited to steal a user’s access tokens.
“The Amazon access token is used to authenticate the user across multiple Amazon APIs,… Continue reading Amazon Quietly Patches ‘High Severity’ Vulnerability in Android Photos App→

Google’s Threat Analysis Group (TAG) on Thursday disclosed it had acted to block as many as 36 malicious domains operated by hack-for-hire groups from India, Russia, and the U.A.E.
In a manner analogous to the surveillanceware ecosystem, hack-for-hire… Continue reading Google Blocks Dozens of Malicious Domains Operated by Hack-for-Hire Groups→

One of the commissioners of the U.S. Federal Communications Commission (FCC) has renewed calls asking for Apple and Google to boot the popular video-sharing platform TikTok from their app stores citing “its pattern of surreptitious data practices.”
“I… Continue reading U.S. FCC Commissioner Asks Apple and Google to Remove TikTok from App Stores→

A former Canadian government employee this week agreed to plead guilty in the U.S. to charges related to his involvement with the NetWalker ransomware syndicate.
Sebastien Vachon-Desjardins, who was extradited to the U.S. on March 10, 2022, is accused… Continue reading Ex-Canadian Government Employee Pleads Guilty Over NetWalker Ransomware Attacks→

The notorious North Korea-backed hacking collective Lazarus Group is suspected to be behind the recent $100 million altcoin theft from Harmony Horizon Bridge, citing similarities to the Ronin bridge attack in March 2022.
The finding comes as Harmony c… Continue reading North Korean Hackers Suspected to be Behind $100M Horizon Bridge Hack→

Cybersecurity researchers have documented a new information-stealing malware that targets YouTube content creators by plundering their authentication cookies.
Dubbed “YTStealer” by Intezer, the malicious tool is likely believed to be sold as a service… Continue reading New YTStealer Malware Aims to Hijack Accounts of YouTube Content Creators→

Cybersecurity researchers from Palo Alto Networks Unit 42 disclosed details of a new security flaw affecting Microsoft’s Service Fabric that could be exploited to obtain elevated permissions and seize control of all nodes in a cluster.
The issue, whic… Continue reading New ‘FabricScape’ Bug in Microsoft Azure Service Fabric Impacts Linux Workloads→

A new security vulnerability has been disclosed in RARlab’s UnRAR utility that, if successfully exploited, could permit a remote attacker to execute arbitrary code on a system that relies on the binary.
The flaw, assigned the identifier CVE-2022-30333… Continue reading New UnRAR Vulnerability Could Let Attackers Hack Zimbra Webmail Servers→

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) this week moved to add a Linux vulnerability dubbed PwnKit to its Known Exploited Vulnerabilities Catalog, citing evidence of active exploitation.
The issue, tracked as CVE-2021-4034 (CV… Continue reading CISA Warns of Active Exploitation of ‘PwnKit’ Linux Vulnerability in the Wild→