Microsoft Addresses 51 Vulnerabilities in June Patch Tuesday Update In its latest Patch Tuesday update for June 2024, Microsoft has rolled out security updates to address 51 vulnerabilities across its products. Among these, one vulnerability has been classified as Critical, while the remaining 50 are deemed Important. This release also…
Mekotio Banking Trojan Intensifies Threats Against Latin American Financial Institutions A serious cybersecurity concern has emerged as banks and financial institutions across Latin America face increasing threats from a malware known as Mekotio, also referred to as Melcoz. Recent findings from cybersecurity firm Trend Micro point to a notable rise…
A recent investigation has uncovered a significant malicious campaign leveraging harmful Android applications to pilfer users’ SMS messages, with activity dating back to at least February 2022. This large-scale operation purportedly involves over 107,000 unique malicious app samples aimed at intercepting one-time passwords (OTPs) that are essential for online account…
In recent years, the landscape of cybercrime has become increasingly perilous, with ransomware attacks surging in both frequency and sophistication. Cybercriminal organizations have gained notoriety for infiltrating targeted networks, encrypting vital databases, and effectively locking out businesses from their critical data until a ransom is paid. This evolving approach to…
The Kasseika ransomware group has emerged as the latest threat actor exploiting the Bring Your Own Vulnerable Driver (BYOVD) technique to disable security processes on compromised Windows systems. This method allows cybercriminals to terminate antivirus software, facilitating the deployment of ransomware. Kasseika joins other prominent groups, including Akira, AvosLocker, BlackByte,…
Recent developments surrounding the BlackCat ransomware group have raised significant concerns within the cybersecurity community, as the actors appear to have executed a strategic exit from their operations. Following the upload of a fraudulent law enforcement seizure banner, BlackCat has reportedly shuttered its darknet presence, a move indicative of a…
Void Banshee APT Exploits Microsoft MHTML Vulnerability in Information Theft Campaign An advanced persistent threat (APT) group known as Void Banshee has been detected leveraging a newly identified security vulnerability in the Microsoft MHTML browser engine. This zero-day exploit is being used to distribute an information-stealing malware known as Atlantida.…
Cyber Security Landscape Amidst Rising Threats: Insights from the 2024 Breaches Survey The recently released 2024 Cyber Security Breaches Survey paints a concerning picture for UK businesses grappling with escalating cyber threats. As the frequency and sophistication of cyber-attacks continue to rise, particularly targeting larger enterprises, organizations are increasingly challenged…
On Tuesday, Microsoft released a set of critical updates addressing a total of 90 security vulnerabilities within its software, including ten zero-day exploits. Notably, six of these zero-days are actively being leveraged in real-world attacks, raising significant concerns regarding the potential for widespread exploitation in the wild. The vulnerabilities span…
