Cybersecurity experts have identified a significant vulnerability within the RADIUS network authentication protocol, known as BlastRADIUS. This flaw could allow malicious actors to perform Mallory-in-the-middle (MitM) attacks, potentially bypassing essential integrity checks under specific conditions. The discovery raises alarms about the security of RADIUS, an acronym for Remote Authentication Dial-In…
Cybersecurity Alert: Surge in Phishing Attacks Utilizing Google Cloud Services to Distribute Banking Trojans In a concerning trend, cybersecurity experts have detected a significant increase in email phishing campaigns employing Google Cloud Run to spread various banking trojans across Latin America and Europe. Notable trojans such as Astaroth, Mekotio, and…
In a recent incident, cybercriminals executed a phishing campaign aimed at Israeli organizations by masquerading as the cybersecurity firm ESET. The attackers sent deceptive emails that seemingly originated from ESET, claiming that state-sponsored hackers were targeting the recipients’ devices. This tactic was designed to exploit concerns related to cybersecurity threats…
Change Healthcare Allegedly Pays $22 Million Ransom to BlackCat Ransomware Group Amid Ongoing Cyberattack In a troubling development in the ongoing saga of cybercrime, U.S. healthcare firm Change Healthcare reportedly made a $22 million extortion payment to the notorious BlackCat ransomware group, also known as ALPHV. This action follows severe…
Massive Data Breach Exposes Nearly a Billion Login Credentials A significant data breach has recently been reported, with the release of a massive trove of login information now available on the internet. Referred to as Collection #1, this dataset encompasses approximately 800 million email addresses and passwords, posing a serious…
In a recent cybersecurity incident, a covert operation linked to a “simplified Chinese-speaking actor” has drawn attention for its targeted campaign aimed at manipulating search engine optimization (SEO) rankings in various Asian and European countries. This black hat SEO initiative has been dubbed DragonRank by Cisco Talos, revealing a broad…
Approximately 70% of toxic waste found in non-hazardous landfills originates from electronic waste, as reported by the U.S. Environmental Protection Agency. In today’s fast-paced technological landscape, companies are disposing of electronic devices at an unprecedented rate, yet less than 13% of this electronic waste is actually recycled, according to findings…
New OpenSSH Vulnerability Poses Remote Code Execution Risk Recent security assessments have revealed that certain versions of the OpenSSH secure networking suite are vulnerable to a critical new exploit capable of enabling remote code execution (RCE). This vulnerability, designated as CVE-2024-6409, has an assigned CVSS score of 7.0, indicating a…
Emergence of TimbreStealer Malware Targets Mexican Users with Tax-Related Phishing Campaign Recent cybersecurity reports indicate that Mexican users have been subjected to a targeted phishing campaign leveraging tax-related themes since November 2023. The campaign disseminates a new form of malware designated as TimbreStealer, which has thus far evaded public documentation.…
