Russian state-sponsored cyber activities have come under renewed scrutiny, particularly the actions of the Gamaredon hacking group, a lesser-known entity compared to some of its more flamboyant counterparts like Sandworm or Turla. Operatives linked to the FSB—Russia’s federal security service—are believed to be behind Gamaredon, which has established itself as…
Cybersecurity firm ESET has uncovered a previously unidentified Advanced Persistent Threat (APT) group known as “PlushDaemon,” which is reportedly aligned with China and has been targeting South Korea through sophisticated cyber espionage tactics. This revelation marks a significant development in the cybersecurity landscape, as PlushDaemon employs an innovative attack strategy…
In recent weeks, school boards across Canada, including some of the nation’s largest, have reported a significant data breach involving PowerSchool, a third-party service used by K-12 institutions to manage student data. Investigations into this cyber incident are ongoing, revealing that student information dating back several decades may have been…
Blacon High School, situated on the outskirts of Chester, has faced significant disruption due to a recent ransomware attack, forcing administrators to temporarily close its doors. Initially scheduled to reopen two days after the incident on January 19, 2025, ongoing investigations suggest that the school’s recovery will take longer than…
For the past several months, a significant vulnerability affecting the security of Windows devices has been identified, allowing potential bypass of an industry-standard protection mechanism designed to thwart firmware infections. On Tuesday, Microsoft announced a patch for the vulnerability tracked as CVE-2024-7344. Currently, the implications for Linux systems remain uncertain.…
Recent trends in ransomware attacks reveal a concerning evolution in tactics, as highlighted by the latest Threat Report from ESET. This report identifies a significant shift towards state-sponsored cybercriminal activities, with orchestration increasingly coming from government-affiliated groups focused on disruption and financial gain. These actors leverage ransomware not only to…
Endpoint Security Bootkitty: Researchers Identify Linux’s First Bootkit, Primarily Conceptual Rather Than Malicious Prajeet Nair (@prajeetspeaks) • November 28, 2024 Bootkitty discovered in the wild is recognized as the first bootkit targeting Linux. (Image: Shutterstock) Cybersecurity experts have unearthed the first bootkit specifically engineered to compromise Linux systems by manipulating…
Researchers Identify First Bootkit Targeting Linux Systems Cybersecurity experts have uncovered a significant advancement in malware threats with the identification of the first bootkit specifically engineered to compromise Linux systems. Dubbed "Bootkitty," this malicious software operates within the Unified Extensible Firmware Interface (UEFI), manipulating the boot process for harmful intents.…
In recent developments within the cybersecurity landscape, a new form of malware known as Bootkitty has emerged, targeting Linux systems with techniques historically associated with Windows infections. This bootkit operates at the firmware level, specifically within the Unified Extensible Firmware Interface (UEFI), a crucial component that executes prior to the…
