The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has recently added a significant security vulnerability affecting Apache Flink to its Known Exploited Vulnerabilities (KEV) catalog. This announcement, made on Thursday, highlights the potential risks associated with an open-source framework widely used for unified stream processing and batch processing, amid reports…
Emergence of ExelaStealer: A New Player in Cybercrime A newly identified information-stealing malware, dubbed ExelaStealer, has emerged in a saturated market already teeming with tools designed to exfiltrate sensitive information from compromised Windows systems. This evolving threat, flagged by FortiGuard Labs, showcases how cybercriminals continually adapt their tactics and tools…
Operation EMERALDWHALE has emerged as a significant cybersecurity threat, compromising over 15,000 cloud credentials by exploiting exposed Git and Laravel files. Attackers have been utilizing compromised Amazon S3 buckets to store the data, thereby heightening the risk of phishing attacks and breaches involving cloud accounts. The Sysdig Threat Research Team…
Governance & Risk Management, Incident & Breach Response, Insider Threat Everfox Acquires Yakabod to Enhance Cyber Incident Response and Insider Risk Management Michael Novinson (@MichaelNovinson) • November 1, 2024 Sean Berg, CEO, Everfox (Image: Everfox) Everfox has announced its acquisition of Yakabod, a company previously led by the former Chief…
In recent developments, a previously unidentified threat actor has been leveraging existing security vulnerabilities in Microsoft Exchange Server to deploy keylogger malware, with targets primarily located in Africa and the Middle East. This alarming trend was highlighted by Positive Technologies, a Russian cybersecurity firm, which reports over 30 victims, including…
EmeraldWhale Cybercriminal Operation Exposed, Targeting Git Repositories This week, cybersecurity researchers revealed a significant cybercriminal operation known as EmeraldWhale, which compromised over 15,000 credentials through a massive theft involving a public AWS S3 bucket. The incident, characterized by the illicit exploitation of Git repositories, emphasizes the urgent need for organizations…
Google has recently released critical updates to address a significant security vulnerability in its Chrome browser, identified as CVE-2024-5274. This flaw, which has been actively exploited, pertains to a type confusion issue within the V8 JavaScript and WebAssembly engine. The vulnerability was reported by experts Clément Lecigne from Google’s Threat…
Emerging Malvertising Campaign Exploits Google Ads for Targeted Attacks Recent reports have unveiled a sophisticated malvertising campaign leveraging Google Ads to mislead users searching for popular software. This campaign not only directs these users to deceptive landing pages but also facilitates the distribution of further malicious payloads, posing a significant…
North Korea Successfully Tests Advanced Intercontinental Ballistic Missile Earlier this week, North Korea conducted a successful launch of its most powerful intercontinental ballistic missile (ICBM), the Hwasong-19. This test saw the missile soaring nearly 4,800 miles into the atmosphere before its reentry into Earth’s orbit. The Hwasong-19, a solid-fueled multi-stage…
