Bleeping Computer

Fake Microsoft Store, Spotify Sites Being Used to Spread Infostealing Malware

Attackers are promoting sites impersonating the Microsoft Store, Spotify, and an online document converter that distribute malware to steal credit cards and passwords saved in web browsers.

Zero-Day Flaw in Pulse Secure VPN Allows Attackers to Hack Defense Firms, Government Agencies

To mitigate the vulnerability tracked as CVE-2021-22893 (with a 10/10 severity score), Pulse Secure advises customers with gateways running PCS 9.0R3 and higher to upgrade to the 9.1R.11.4 release.

Google Alerts continues to be a hotbed of scams and malware

To deceive Google into thinking they are legitimate sites rather than scams, threat actors use a black hat search engine optimization (SEO) technique called 'cloaking' to avoid getting flagged.

US sanctions cryptocurrency addresses linked to Russian cyberactivities

The US government sanctioned this week twenty-eight cryptocurrency addresses allegedly associated with entities or individuals linked to Russian cyberattacks or election interference.

Attackers Demand Discord Nitro Gift Codes as Ransomware Payments

In a novel approach to ransom demands, a new ransomware calling itself 'NitroRansomware' encrypts victim's files and then demands a Discord Nitro gift code to decrypt files.

Major BGP leak disrupts thousands of networks globally

Although the BGP routing leak occurred in Vodafone's autonomous network (AS55410) based in India, it has impacted U.S. companies, including Google, according to various sources.

Celsius email system breach leads to phishing attack on customers

On Thursday, Celsius CEO Alex Mashinsky stated that Celsius' third-party marketing server was compromised, and threat actors gained access to a partial Celsius customer list.

HackBoss Malware Poses as Hacker Tools on Telegram to Steal Cryptocurrency

Although there is nothing sophisticated about HackBoss, the scheme proves to be effective as it tempts victims with the prospect of getting hacking tools, mostly for brute-forcing passwords.

Scammers and Malware Attackers Target Rarible NFT Marketplace

A report by Bolster shows how threat actors use typosquatting domain names that impersonate the popular Rarible.com site but lead them to scams, malware, and other unwanted content.

SAP fixes critical bugs in Business Client, Commerce, and NetWeaver

SAP's security updates for this month address multiple critical vulnerabilities. The most serious of them, rated with the highest severity score, affects the company's Business Client product.

Defend Against Threats with Cyber Fusion

Cyware is the leading provider of cyber fusion solutions that power threat intelligence sharing , end-to-end automation and 360-degree threat response.

Trending Tags