Category

China

China page 1

cyber feud china india cyber attacks website scanning phishing attacks

Cyber Feud India-China: Information Security Wars

Cybersecurity experts from Singapore have notably recorded recent attacks to India prominent ministries. The said security firm seen the offensive in cyberspace after running their standard website scanning, targeting mainly the Ministries of Defense, Foreign Affairs, and Information & Broadcasting. Second to these are well-known companies such as Reliance Jio, Airtel, BSNL, Micromax, Cipla, Sun...
Continue Reading
google chrome extention spyware malware malicious script

Resurgence of a more dangerous spyware in Chrome Extension

Buzzing news from a threat intelligence firm released recently about Google Chrome browser crawling with Spyware that blends onto their browser extension. Speculations that these rupture in the Chrome extension targeted sectors ranging from financial, healthcare, and government organization. With almost 32 million recorded downloads of this fake extension, this is a report that cannot...
Continue Reading
google analytics hacker's tool magecart exploit

Hacker’s Analytics – How Magecart stays rampant

Another hot plate dish on Magecart where Cybersecurity experts have recently exposed activities concerning online stores. This new rupture is targeting e-commerce companies to stealthily steal credit card information for people that make purchases through stores online. This activity can bypass the multi-layered security protocol called Content Security Policy (CSP), which is imposed by hosts...
Continue Reading
zoom end to end encryption meeting e2ee

Zoom: Stepping up by using End to End Encryption

End to End Encryption will be available to Zoom users Zoom is now one of the most used video conferencing software because of the new normal set up that we need to adapt. The company has finally announced that it will offer more robust security encryption for all Zoom users paid or free. The sought-after...
Continue Reading
elasticsearch honeypot threat actors threat advisory

Elasticsearch: Honeypot method gets the attention of Threat actors

Elasticsearch is an Open Source software project that was developed by Elastic. There were instances of leaked, lost, or stolen data because the data was not securely stored. The mentioned instances are one of the reasons why Threat actors are targeting this software. They can find unsecured Elasticsearch quicker than search engines.   Security team...
Continue Reading
Strandhogg Vulnerability firmware bug android mobile

Strandhogg Vulnerability, the danger of using older Android firmware

Android Strandhogg is a Norwegian term referring to mistreatment by Vikings; now, it is a malware term. It was back in 2017 when the malware was first seen as an exploit in Android’s multitasking system. The malware allows malicious apps to masquerade as virtually any other Apps present on the targeted device. The base of...
Continue Reading
octopus scanner malware github repositories

Github: repositories got infected by Octopus Scanner Malware

Cybersecurity experts from a well-known open resource repository for developers – Github, announced that a backdoor malware had infected some of the uploaded projects. The backdoor malware is named Octopus Scanner. Just like this creature, single library code can tangle to multiple developed software as long as malware injects itself into the project. With its...
Continue Reading
Naikon APT Asia Pacific cyber espionage

Naikon APT – Rampant Asia Pacific cyber espionage

Naikon APT lurking in the dark  Notoriously known for their malicious attack back in 2015, a recent report from a Cybercrime Solutions researcher confirmed that the group ‘Naikon APT,’ never halted their operations but instead went under the radar for years. The group’s origins were traced back from China, specializing in intel gathering and military...
Continue Reading
dark web alert accounts for sale

Dark Web Alert: 550 Million stolen user accounts – For sale on hacking forum

Hackers and Dark Web enthusiasts are currently feasting on what data collectors consider as one of the most massive data collection sale s of the year. According to several reports, the leak includes accounts from alleged forum users. A few days ago, a hacker just posted on a hacking forum several extensive databases for sale,...
Continue Reading
symantec secure web gateware vulnerability

Symantec Secure Web Gateways: Exploited

Hoaxcalls – The unpatched vulnerability Here is the latest vulnerability news in the Cyberworld community; this has created an opportunity again for fraudsters to perform its magic . The story was about the bug found on the Symantec Secure Web Gateway version 5.0.2.8. This product reached its end-of-life (EOL) in 2015 and end-of-support-life (EOSL) in...
Continue Reading
1 2 3