Author Archives: Ravie Lakshmanan

Google has removed two new malicious dropper apps that have been detected on the Play Store for Android, one of which posed as a lifestyle app and was caught distributing the Xenomorph banking malware.
“Xenomorph is a trojan that steals credentials fr… Continue reading Malicious Google Play Store App Spotted Distributing Xenomorph Banking Trojan→

Multiple high-severity flaws have been uncovered in the open source OpenLiteSpeed Web Server as well as its enterprise variant that could be weaponized to achieve remote code execution.
“By chaining and exploiting the vulnerabilities, adversaries coul… Continue reading Multiple High-Severity Flaw Affect Widely Used OpenLiteSpeed Web Server Software→

The U.S. Department of Justice (DoJ) has announced charges against a dual Russian and Canadian national for his alleged participation in LockBit ransomware attacks across the world.
The 33-year-old Ontario resident, Mikhail Vasiliev, has been taken in… Continue reading Russian-Canadian National Charged Over Involvement in LockBit Ransomware Attacks→

Microsoft on Thursday attributed the recent spate of ransomware incidents targeting transportation and logistics sectors in Ukraine and Poland to a threat cluster that shares overlaps with the Russian state-sponsored Sandworm group.
The attacks, which… Continue reading Microsoft Blames Russian Hackers for Prestige Ransomware Attacks on Ukraine and Poland→

Cybersecurity researchers are warning of “massive phishing campaigns” that distribute five different malware targeting banking users in India.
“The bank customers targeted include account subscribers of seven banks, including some of the most well-kno… Continue reading Warning: New Massive Malicious Campaigns Targeting Top Indian Banks’ Customers→

Google has resolved a high-severity security issue affecting all Pixel smartphones that could be trivially exploited to unlock the devices.
The vulnerability, tracked as CVE-2022-20465 and reported by security researcher David Schütz in June 2022, was… Continue reading Hacker Rewarded $70,000 for Finding Way to Bypass Google Pixel Phones’ Lock Screens→

A malicious package discovered on the Python Package Index (PyPI) has been found employing a steganographic trick to conceal malicious code within image files.
The package in question, named “apicolor,” was uploaded to the Python third-party repositor… Continue reading Researchers Uncover PyPI Package Hiding Malicious Code Behind Image File→

Citrix has released security updates to address a critical authentication bypass flaw in the application delivery controller (ADC) and Gateway that could be exploited to take control of affected systems.
Successful exploitation of the issues could ena… Continue reading Citrix Issues Patches for Critical Flaw Affecting ADC and Gateway Products→

Cybersecurity researchers have disclosed details of a new vulnerability in a system used across oil and gas organizations that could be exploited by an attacker to inject and execute arbitrary code.
The vulnerability, tracked as CVE-2022-0902 (CVSS sc… Continue reading High-Severity Flaw Reported in Critical System Used by Oil and Gas Companies→

PC maker Lenovo has addressed yet another set of three shortcomings in the Unified Extensible Firmware Interface (UEFI) firmware affecting several Yoga, IdeaPad, and ThinkBook devices.
“The vulnerabilities allow disabling UEFI Secure Boot or restoring… Continue reading New UEFI Firmware Flaws Reported in Several Lenovo Notebook Models→