A renewed campaign backed by the North Korean government is targeting cybersecurity researchers through sophisticated social engineering tactics involving malware. This resurgence was detailed in a recent report from Google’s Threat Analysis Group (TAG). According to TAG, the attackers established a fictitious security firm named SecuriElite and created multiple social…
Progress Software Addresses Security Vulnerabilities in WhatsUp Gold Progress Software has announced a significant update to its WhatsUp Gold product, rectifying six security vulnerabilities, two of which are classified as critical. This update, version 24.0.1, was released on September 20, 2024, and is a response to serious lapses in the…
Microsoft has announced the release of security updates addressing 118 vulnerabilities in its software suite, two of which have been identified as actively exploited vulnerabilities in the wild. Among these vulnerabilities, three have been classified as Critical, while 113 are rated Important, and two are deemed Moderate. Notably, this Patch…
Cybersecurity experts have alerted the public to a new ransomware variant identified as “DarkRadiation,” which operates entirely within Bash. This strain specifically targets Linux and Docker cloud environments, utilizing the messaging platform Telegram for its command-and-control communications. According to Trend Micro’s latest report, DarkRadiation is crafted in Bash and aims…
Cyberwarfare / Nation-State Attacks , Fraud Management & Cybercrime Chinese Hackers Exploit Windows Vulnerability Against European Diplomats Akshaya Asokan (asokan_akshaya) , David Perera (@daveperera) • November 5, 2025 Image: AR Pictures/Shutterstock Security researchers have reported that Chinese nation-state hackers are actively using a Windows vulnerability to target European…
Recent investigations by Trend Micro have revealed a targeted attack focusing on Docker remote API servers, where malicious actors are deploying the SRBMiner cryptocurrency miner on compromised instances. These findings underscore an alarming trend in cyberattacks utilizing the burgeoning popularity of containerized services. The analysis indicates that the attackers leveraged…
A sophisticated threat actor has been identified in a recent campaign utilizing Android malware disseminated through the Syrian e-Government Web Portal. This marks a significant evolution in the actor’s toolkit, reflecting an enhanced capability to exploit vulnerabilities for malicious purposes. According to researchers from Trend Micro—Zhengyu Dong, Fyodor Yarochkin, and…
Researchers have identified that two critical vulnerabilities in Windows operating systems are currently being exploited in widespread cyberattacks. One of these vulnerabilities is a zero-day flaw that has remained active since 2017, while the second is a significant bug that Microsoft has struggled to patch effectively. The zero-day vulnerability was…
On November 12, 2024, Microsoft disclosed that two significant security vulnerabilities affecting Windows NT LAN Manager (NTLM) and Task Scheduler have been actively exploited in the wild. These vulnerabilities were part of the November Patch Tuesday update, which addressed a total of 90 security flaws across Microsoft products. Among the…
