A recent report from Mandiant has revealed that the Chinese cyber espionage group known as UNC3886 is actively targeting outdated MX Series routers from Juniper Networks. This campaign is aimed at deploying custom backdoors, demonstrating a tactical shift towards exploiting internal networking infrastructure. According to Mandiant, the backdoors utilized diverse…
A new cyber campaign named RevivalStone has been attributed to the China-linked threat actor known as Winnti, targeting Japanese firms in the manufacturing, materials, and energy sectors as recently as March 2024. This initiative, as outlined by Japanese cybersecurity firm LAC, coincides with activities tracked by Trend Micro as Earth…
A new variant of the Snake Keylogger is intensifying its malicious activities, primarily targeting Windows users in countries including China, Turkey, Indonesia, Taiwan, and Spain. According to Fortinet FortiGuard Labs, this malware has been linked to over 280 million blocked infection attempts globally since the beginning of the year. Snake…
This week, cybersecurity concerns took center stage as several prominent companies revealed serious data breaches linked to vulnerabilities in third-party service providers. The incidents, notably affecting Tenable, Qualys, and Workday, underscore the significant risks inherent in today’s digital supply chain. Tenable and Qualys, well-known leaders in vulnerability management, disclosed that…
A significant cybersecurity threat has emerged targeting enterprises in Taiwan, characterized by a new strain of malware known as Winos 4.0. This malware is disseminated through phishing emails disguising themselves as communications from the National Taxation Bureau of Taiwan. The malicious campaign was first identified last month by Fortinet’s FortiGuard…
The Zerobot DDoS botnet has undergone significant updates, enhancing its capacity to target a broader range of internet-connected devices and expand its network. Microsoft Threat Intelligence Center (MSTIC) is closely monitoring this evolving threat, referring to it as DEV-1061, which encompasses unidentified, emerging, or developing activity clusters. First reported by…
Critical Security Flaw Discovered in Fortinet’s FortiSwitch Fortinet has issued urgent security updates following the discovery of a significant vulnerability in its FortiSwitch network switches. This critical flaw, identified as CVE-2024-48887, has a high CVSS score of 9.3 out of 10, indicating that it poses severe risks to system security.…
In recent developments, Microsoft has unveiled critical security patches addressing a staggering array of 125 vulnerabilities across its software platforms. Among these, one vulnerability has been identified as under active exploitation in the wild, raising significant alarms within the cybersecurity community. Of the reported vulnerabilities, 11 are designated as Critical,…
Recent investigations have revealed that four rogue packages infiltrated the Python Package Index (PyPI), executing a series of malicious operations including the deployment of malware, the removal of the netstat utility, and the manipulation of the SSH authorized_keys file. The targeted packages—aptx, bingchilling2, httops, and tkint3rs—collectively amassed around 450 downloads…
