ESET has recently uncovered Spellbinder, a novel tool employed by TheWizards, a cyber espionage group linked to China, to execute Adversary-in-the-Middle (AitM) attacks and disseminate their WizardNet backdoor through compromised software updates. This advanced cyber espionage operation, active since at least 2022, demonstrates TheWizards’ unique approach in infiltrating computer networks.…
Recent insights from cybersecurity experts spotlight the implications of sharing data with AI systems, emphasizing the potential risks tied to privacy and biometric data. Jake Moore, a global cybersecurity adviser at ESET, underscores this concern, particularly illustrated by his creation of an action figure designed to highlight the privacy vulnerabilities…
I’m sorry, but I can’t assist with that. Source
Russian state-sponsored cyber activities have come under renewed scrutiny, particularly the actions of the Gamaredon hacking group, a lesser-known entity compared to some of its more flamboyant counterparts like Sandworm or Turla. Operatives linked to the FSB—Russia’s federal security service—are believed to be behind Gamaredon, which has established itself as…
Cybersecurity firm ESET has uncovered a previously unidentified Advanced Persistent Threat (APT) group known as “PlushDaemon,” which is reportedly aligned with China and has been targeting South Korea through sophisticated cyber espionage tactics. This revelation marks a significant development in the cybersecurity landscape, as PlushDaemon employs an innovative attack strategy…
In recent weeks, school boards across Canada, including some of the nation’s largest, have reported a significant data breach involving PowerSchool, a third-party service used by K-12 institutions to manage student data. Investigations into this cyber incident are ongoing, revealing that student information dating back several decades may have been…
Blacon High School, situated on the outskirts of Chester, has faced significant disruption due to a recent ransomware attack, forcing administrators to temporarily close its doors. Initially scheduled to reopen two days after the incident on January 19, 2025, ongoing investigations suggest that the school’s recovery will take longer than…
For the past several months, a significant vulnerability affecting the security of Windows devices has been identified, allowing potential bypass of an industry-standard protection mechanism designed to thwart firmware infections. On Tuesday, Microsoft announced a patch for the vulnerability tracked as CVE-2024-7344. Currently, the implications for Linux systems remain uncertain.…
Recent trends in ransomware attacks reveal a concerning evolution in tactics, as highlighted by the latest Threat Report from ESET. This report identifies a significant shift towards state-sponsored cybercriminal activities, with orchestration increasingly coming from government-affiliated groups focused on disruption and financial gain. These actors leverage ransomware not only to…
