The Hacker News
iOS Zero-Day Attacks: Experts Uncover Deeper Insights into Operation Triangulation
October 24^th 2023 at 08:37

iOS Zero-Day Attacks: Experts Uncover Deeper Insights into Operation Triangulation

By Newsroom

The TriangleDB implant used to target Apple iOS devices packs in at least four different modules to record microphone, extract iCloud Keychain, steal data from SQLite databases used by various apps, and estimate the victim's location. The new findings come from Kaspersky, which detailed the great lengths the adversary behind the campaign, dubbed Operation Triangulation, went to conceal and cover

Related tags
October 24^th 2023 at 08:37

The Hacker News
Trojanized TOR Browser Installers Spreading Crypto-Stealing Clipper Malware
March 29^th 2023 at 09:17

Trojanized TOR Browser Installers Spreading Crypto-Stealing Clipper Malware

By Ravie Lakshmanan

Trojanized installers for the TOR anonymity browser are being used to target users in Russia and Eastern Europe with clipper malware designed to siphon cryptocurrencies since September 2022. "Clipboard injectors [...] can be silent for years, show no network activity or any other signs of presence until the disastrous day when they replace a crypto wallet address," Vitaly Kamluk, director of

Related tags
March 29^th 2023 at 09:17

The Hacker News
Financially Motivated Threat Actor Strikes with New Ransomware and Clipper Malware
February 15^th 2023 at 13:33

Financially Motivated Threat Actor Strikes with New Ransomware and Clipper Malware

By Ravie Lakshmanan

A new financially motivated campaign that commenced in December 2022 has seen the unidentified threat actor behind it deploying a novel ransomware strain dubbed MortalKombat and a clipper malware known as Laplas. Cisco Talos said it "observed the actor scanning the internet for victim machines with an exposed remote desktop protocol (RDP) port 3389." The attacks, per the cybersecurity company,

Related tags
February 15^th 2023 at 13:33

The Hacker News
Google Chrome Bug Lets Sites Silently Overwrite System Clipboard Content
September 2^nd 2022 at 05:55

Google Chrome Bug Lets Sites Silently Overwrite System Clipboard Content

By Ravie Lakshmanan

A "major" security issue in the Google Chrome web browser, as well as Chromium-based alternatives, could allow malicious web pages to automatically overwrite clipboard content without requiring any user consent or interaction by simply visiting them. The clipboard poisoning attack is said to have been accidentally introduced in Chrome version 104, according to developer Jeff Johnson. While the

Related tags
September 2^nd 2022 at 05:55

The Hacker News
CISA Adds Zimbra Email Vulnerability to its Exploited Vulnerabilities Catalog
August 5^th 2022 at 05:54

CISA Adds Zimbra Email Vulnerability to its Exploited Vulnerabilities Catalog

By Ravie Lakshmanan

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a recently disclosed high-severity vulnerability in the Zimbra email suite to its Known Exploited Vulnerabilities Catalog, citing evidence of active exploitation. The issue in question is CVE-2022-27924 (CVSS score: 7.5), a command injection flaw in the platform that could lead to the execution of arbitrary

Related tags
August 5^th 2022 at 05:54

FreshRSS

iOS Zero-Day Attacks: Experts Uncover Deeper Insights into Operation Triangulation

Trojanized TOR Browser Installers Spreading Crypto-Stealing Clipper Malware

Financially Motivated Threat Actor Strikes with New Ransomware and Clipper Malware

Google Chrome Bug Lets Sites Silently Overwrite System Clipboard Content

CISA Adds Zimbra Email Vulnerability to its Exploited Vulnerabilities Catalog