The Kransom ransomware has been found embedded within the StarRail gaming application, employing DLL side-loading tactics alongside a legitimate certificate from COGNOSPHERE PTE. LTD. This malware successfully evades detection while delivering its encrypted payload. Analysts can study this threat within the interactive sandbox provided by ANY.RUN. Investigators at ANY.RUN have…
The FBI and CISA Release Advisory Addressing New Ransomware Threats The FBI and the Cybersecurity and Infrastructure Security Agency (CISA) have issued a joint advisory aimed at mitigating the rising threat of ransomware attacks, as part of their ongoing #StopRansomware initiative. Released on August 29, 2023, the advisory, identified as…
New Malware Campaign Targets Linux Servers for Cryptocurrency Mining Recent discoveries by cybersecurity researchers have unveiled a new malware operation specifically designed to target Linux environments for illicit cryptocurrency mining and the deployment of botnet malware. This campaign notably focuses on the Oracle WebLogic server, aiming to distribute a malware…
A hacktivist collective identified as Head Mare has emerged as a notable threat actor, launching targeted cyber attacks against organizations in Russia and Belarus. According to Kaspersky’s analysis released earlier this week, Head Mare employs sophisticated techniques to gain initial access to their targets, distinguishing themselves from other groups in…
Emerging Security Flaw in Apple Vision Pro Headset Addressed Following Responsible Disclosure Recent revelations have highlighted a security vulnerability in Apple’s Vision Pro mixed reality headset, now resolved following careful disclosure practices. This flaw, identified as CVE-2024-40865 and referred to as "GAZEploit," posed a significant risk, permitting malicious actors to…
Wing Security Launches SaaS Pulse: A Free Solution for Continuous SaaS Risk Management In a bid to address the ever-evolving landscape of cybersecurity risks associated with Software as a Service (SaaS) applications, Wing Security has unveiled SaaS Pulse, a free tool designed to provide organizations with ongoing surveillance and actionable…
The United States government, in conjunction with a coalition of international partners, has officially linked a Russian hacking group known as Cadet Blizzard to the General Staff Main Intelligence Directorate (GRU) 161st Specialist Training Center, also referred to as Unit 29155. This attribution highlights the group’s significant role in cyber…
CosmicBeetle Introduces ScRansom Ransomware Targeting SMBs Globally In a significant escalation in the realm of cyber threats, the group known as CosmicBeetle has launched a new ransomware variant called ScRansom, focusing on attacks against small- and medium-sized businesses (SMBs) across Europe, Asia, Africa, and South America. This malicious activity follows…
Significant Security Flaw Discovered in Ivanti Cloud Service Appliance Under Active Attack In a recent disclosure, Ivanti announced that a newly patched security vulnerability in its Cloud Service Appliance (CSA) is currently being exploited in the wild. This serious issue, identified as CVE-2024-8190, has been assigned a CVSS score of…
