Microsoft Seizes Malicious Websites Used by Prolific Chinese APT Group
The so-called Nikel cyber espionage attack group - aka APT15, Vixen Panda, KE3CHANG, Royal APT, and Playful Dragon - has…
Fake support agents call victims to install Android banking malware
The BRATA Android remote access trojan (RAT) has been spotted in Italy, with threat actors calling victims of SMS attacks…
Remote Browser Isolation Stars in Content Protection Role
The entertainment industry has long had to deal with the challenge of protecting their high-value content and intellectual property. Enter…
Hackers use in-house Zoho ServiceDesk exploit to drop webshells
An advanced persistent threat (APT) group that had been exploiting a flaw in the Zoho ManageEngine ADSelfService Plus software has pivoted to…
Key Characteristics of Malicious Domains: Report
Newer top-level domains and certain hosting providers are frequent sources of malicious content, while newly registered domains and free SSL…
Nine WiFi routers used by millions were vulnerable to 226 flaws
Security researchers analyzed nine popular WiFi routers and found a total of 226 potential vulnerabilities in them, even when running…
New malware hides as legit nginx process on e-commerce servers
eCommerce servers are being targeted with remote access malware that hides on Nginx servers in a way that makes it…
APT Groups Adopt New Phishing Method. Will Cybercriminals Follow?
APT actors from Russia, China, and India have been observed using the RTF-template injection technique that researchers say is poised…
Malicious Android app steals Malaysian bank credentials, MFA codes
A fake Android app is masquerading as a housekeeping service to steal online banking credentials from the customers of eight…
Mozilla fixes critical bug in cross-platform cryptography library
Mozilla has addressed a critical memory corruption vulnerability affecting its cross-platform Network Security Services (NSS) set of cryptography libraries. [...]