Category

China

China page 1

cyber threats malware AvosLocker ransomware

AvosLocker ransomware enters the cyber threat scene

A cyber-attack on a Microsoft Exchange server has alarmed Malwarebytes Labs around mid-July of 2021, wherein the attacker has taken advantage of this entry point to access the Domain Controller and trigger a ransomware deployment to the server. This particular ransomware – called AvosLocker – is a variant that the Malwarebytes Labs have newly discovered, thus describing it as a...
Continue Reading
microsoft windows OS security update zero day vulnerabilities

Update Windows to Patch 108 new vulnerabilities and 9 Zero-days 

Microsoft has recently released a total of 117 patches to fix 108 newly discovered security vulnerabilities and 9 Zero-day. Four are known to be actively exploited in the wild by adversaries, potentially enabling them to take control of the targeted Windows system.  The patch update aims to fix several Microsoft products, including Windows, Exchange Server, Bing, Office,...
Continue Reading
microsoft patch tuesday zero day vulnerability windows OS

Microsoft released patches to fix Windows OS zero-day vulnerabilities

Last Tuesday, Microsoft released its monthly security updates, known as Patch Tuesday in the IT industry. The security patch release aims to fix 50 vulnerabilities, including six critical Windows zero-day flaws actively being exploited in the wild. This batch is the most active zero-day flaw patch that addresses bugs actively exploited in a single release...
Continue Reading
swarmshop hacked data 623,000 payment cards compromised data

623,000 payment cards stolen from Swarmshop, an underground community of hackers

Breaking news in the underground cybercommunity is the latest hacking incident that the Swarmshop recently experienced from an unknown adversary. Swarmshop has been active in the underground since April 2019 and had suffered a known breach in January 2020. The latest is this March. Swarmshop is an underground community specialized in hacking card details that have been...
Continue Reading
LinkedIn hacked data leak 500 million user data

LinkedIn hacked again: 500 million user data at risk

According to multiple sources, about 500 million to 550 million amount on data was leaked from LinkedIn from a notorious low-level hacking forum to a private and exclusive only data trading forum. From the low-level hacking forum, the latest LinkedIn breach is popping up for sale like crazy. One user particularly caught my attention due...
Continue Reading
android malware system update remote access trojan spyware

Android Malware app named System Update can take complete control of victim’s device

A powerful new Android malware disguised as a crucial critical system update has been discovered by cybersecurity researchers. The malware can take complete control of a victim’s mobile device, leading to stealing personal private and financial data.     This android malware was bundled with an app named “System Update” installed outside of Google Play Store,...
Continue Reading
android mobile phone qualcomm chipset zero day vulnerability flaw

Newly disclosed Android mobile zero-day vulnerability is under active exploitation

Another disclosure to a now patched zero-day vulnerability has been made by Google, affecting those Android devices that use Qualcomm chipsets, enabling adversaries to weaponise the device in launching targeted cyberattacks. Being tracked as CVE-2020-11261 with a CVSS score of 8.4, this vulnerability concerns the “improper input validation” issue on Qualcomm Graphic chip components that...
Continue Reading
seo gootkit remote access trojan malware

Excellent SEO score before deploying malware to victims

Hackers and threat actors are always innovative in terms of finding new ways to deploy malware payloads. Cybersecurity researchers have recently discovered a new scheme, and they have eyed search engine optimisation or SEO techniques as another method to deliver malware and malicious scripts. Webmasters have used SEO optimisation to increase a website’s reach and...
Continue Reading
google alerts fake adobe flash player update malware spyware campaign

Google Alerts used on campaign to push fake Adobe Flash Player update

For better customization and personalization of accounts, Google launched the Google Alerts service feature to provide email or RSS (Really Simple Syndication) feed to its users on the latest and hottest news about a specific keyword or topic of user’s interest that tops or adds on the Google search index. As an easy to use...
Continue Reading
hack MasterCard PIN bypass VisaCard cash card

New hack allow cyber-attackers to do MasterCard PIN bypass when using a Visa Card

A new type of hack to exploit cash cards has been disclosed by cybersecurity researchers that allow cybercriminals to trick and bypass POS terminals to enable a transaction to use a victim’s Mastercard contactless card functioning as a Visa card. A group of academic researchers delved into demonstrating a PIN bypass hack that permits threat...
Continue Reading
1 2 3 7