This week brought a significant cybersecurity incident involving a 23-year-old Serbian activist whose Android device fell prey to a sophisticated zero-day exploit. Developed by Cellebrite, this exploit chain compromised the user’s phone, likely enabling the deployment of a spyware solution known as NoviSpy. The vulnerabilities, which exploit weaknesses in the…
Recent reports indicate that a new backdoor, deriving its functionalities from the CIA’s Hive multi-platform malware suite, has been deployed by unidentified threat actors. This suite, whose source code was exposed by WikiLeaks in November 2017, has shown new adaptability in the wild. Qihoo Netlab 360’s Alex Turing and Hui…
In an era where cyber threats are not merely evolving but rapidly mutating, the cybersecurity landscape continues to challenge defenses across various sectors, from global financial frameworks to vital infrastructure. With the advent of sophisticated cybercrime, ranging from state-sponsored espionage to ransomware attacks leveraging artificial intelligence, pressing questions arise about…
A new variant of the advanced point-of-sale (PoS) malware known as Prilex has emerged from Brazilian cybercriminals, introducing capabilities to disrupt contactless payment transactions. This follows the trend of malware evolution, as Prilex has shifted focus from ATM targeting to sophisticated PoS infiltration since its inception in 2014. According to…
A new wave of cyber activity has emerged from the threat actor known as Paper Werewolf, focusing its efforts on Russian organizations with a novel implant dubbed PowerModul. Spanning from July to December 2024, these operations have targeted various sectors, including mass media, telecommunications, construction, government, and energy, as outlined…
New Malware Targeting Gamers: Arcane Stealer Discovered Recent reports have surfaced regarding a new strain of malware known as Arcane, disseminated through YouTube videos that advertise game cheats. This unique malware, particularly concerning for its sophisticated data collection methods, appears to primarily target Russian-speaking users, signaling a new wave of…
In a concerning revelation, the Computer Emergency Response Team of Ukraine (CERT-UA) has reported three cyberattacks targeting state administration and critical infrastructure. The objective of these attacks appears to be data theft from sensitive governmental entities. According to CERT-UA, the coordinated campaign utilized compromised email accounts to dispatch phishing emails.…
Marrakech – Since 2004, more than 18.5 million accounts in Morocco have been compromised, ranking the nation 60th worldwide for the total number of breached accounts. This alarming figure accounts for approximately 0.1% of all global data breaches, according to a report from Surfshark. The frequency of breaches in Morocco…
Recent investigations have uncovered an alarming trend in which cybercriminals are distributing malicious software masquerading as legitimate cracked applications, specifically targeting users through the popular software hosting platform, SourceForge. Among the most concerning payloads identified are cryptocurrency miners and clipper malware disguised as Microsoft Office add-ons. A report from Kaspersky…
