Operation Soft Cell: Chinese Hackers Breach Middle East Telecom Providers

Telecommunication providers in the Middle East are the subject of new cyber attacks that commenced in the first quarter of 2023. The intrusion set has been attributed to a Chinese cyber espionage actor associated with a long-running campaign dubbed Operation Soft Cell based on tooling overlaps. "The initial attack phase involves infiltrating Internet-facing Microsoft Exchange servers to deploy

Android App From China Executed Zero Day Exploit On Millions Of Devices

US President Biden Kind Of Mostly Bans Commercial Spyware

MSI Hit By Cyberattack, Warns Against Installing Knock-Off Firmware

Azure Admins Warned To Disable Shared Key Access As Backdoor Attack Detailed

Iranian Hackers Launch Sophisticated Attacks Targeting Israel with PowerLess Backdoor

An Iranian nation-state threat actor has been linked to a new wave of phishing attacks targeting Israel that's designed to deploy an updated version of a Windows backdoor called PowerLess. Cybersecurity firm Check Point is tracking the activity cluster under its mythical creature handle Educated Manticore, which exhibits "strong overlaps" with a hacking crew known as APT35, Charming Kitten,

Leaked EU Document Shows Spain Wants to Ban End-to-End Encryption

In response to an EU proposal to scan private messages for illegal material, the country's officials said it is “imperative that we have access to the data.”

Infecting SSH Public Keys With Backdoors

Critical Barracuda 0-Day Was Used To Backdoor Networks For 8 Months

Organizations Warned Of Backdoor In Hundreds Of Gigabyte Motherboards

Researchers Tell Owners To Assume Compromise Of Unpatched Zyxel Firewalls

Python Byte Code Used To Avoid Detection And Load Malware

Clickless iOS Exploits Infect Kaspersky iPhones With Never-Before-Seen Malware

What's Really Changed 10 Years After The Snowden Revelations

Dozens Of Popular Minecraft Mods Found Infected With Fracturiser Malware

Prominent Cryptocurrency Exchange Infected With Previously Unseen Mac Malware

SMBs Plagued By Exploits, Trojans, And Backdoors

Truebot RCE Attacks Exploit Critical Netwrix Auditor Bug

Fake PoC On GitHub Lures Researchers To Download Malware

FIN8 Retools Backdoor Malware To Avoid Detection

Researchers Find Backdoor In Encrypted Police And Military Radios

US Senator Blasts Microsoft For Negligent Cybersecurity Practices

New hVNC macOS Malware Advertised On Hacker Forum

Threat Actors Abuse Cloudflare Tunnel For Persistence

CypherRAT And CraxsRAT Malware Developer Identified

Malware Attack Targeting Rust Developers Found On Crates.io

Barracuda Thought It Drove 0-Day Hackers From Customer Networks

Hacker Gains Admin Control Of Sourcegraph And Gives Free Access

China Bans iPhones From More Government Offices

Password Stealing Linux Malware Served For 3 Years And No One Noticed

Chinese Hackers Use Never Before Seen Linux Backdoor

Marvell Disputes Claim Cavium Backdoored Chips For Uncle Sam

Fake WinRAR Exploit PoC Drops VenomRAT Malware

Deadglyph: New Advanced Backdoor with Distinctive Malware Tactics

Cybersecurity researchers have discovered a previously undocumented advanced backdoor dubbed Deadglyph employed by a threat actor known as Stealth Falcon as part of a cyber espionage campaign. "Deadglyph's architecture is unusual as it consists of cooperating components – one a native x64 binary, the other a .NET assembly," ESET said in a new report shared with The Hacker News. "This combination

Android Devices With Backdoored Firmware Found In US Schools

Thousands Of Android Devices Come With Unkillable Backdoor

Iranian Hackers Lurked For 8 Months In Government Network

Novel Mirai-Based DDoS Botnet Exploits 0-Days To Infect Routers And Security Cameras

North Korean Software Supply Chain Attack Hits North America, Asia

Hackers Spent 2+ Years Looting Secrets Of Chipmaker NXP Before Being Detected

PSA: Fake CVE-2023-45124 Phishing Scam Tricks Users Into Installing Backdoor Plugin

Think Tank Report Labels NSO, Lazarus As Cyber Mercenaries

Chinese APT Volt Typhoon Linked To Unkillable SOHO Router Botnet

NKabuse Backdoor Harnesses Blockchain Brawn To Hit Several Architectures

Hundreds Of Thousands Of Dollars In Crypto Stolen After Ledger Code Poisoned

Something Nasty Injected Login Stealing JavaScript Code Into 50k Online Banking Sessions

Iranian Hackers Target US Defense Sector With New Backdoor

Chinese Hackers Deliver Malware To Barracuda Email Security Appliances Via New Zero-Day

Police Warns Hundreds Of Online Merchants Of Skimmers

SpectralBlur macOS Backdoor Linked To North Korea

US Says China's Volt Typhoon Hackers Pre-Positioning For Cyberattacks Against Critical Infrastructure

New macOS Backdoor Linked To Prominent Ransomware Groups

HijackLoader Variant Evades Detection, Enhances Persistence

Meet VexTrio, A Network Of 70K Hijacked Websites Crooks Use To Sling Malware, Fraud

Ivanti Vuln Exploited To Deliver New DSLog Backdoor

Backdoors That Let Cops Decrypt Messages Violate Human Rights, EU Courts Says

Cybercriminals Are Stealing Face ID Scans To Break Into Bank Accounts

Code Injection Or Backdoor: A New Look At Ivanti's CVE-2021-44529

Australian Spy Chief Fears Sabotage Of Critical Infrastructure

Hikvision Patches Vuln In Security Management System