Tag: May 2023

The ALPHV ransomware group, also known as BlackCat, has been using signed malicious Windows kernel drivers to avoid detection.

Security researchers from Tencent and Zhejiang University have unveiled a practical attack called "BrutePrint" that can bypass biometric fingerprint checks.

A financially motivated threat actor from Indonesia known as GUI-vil has been identified using Amazon Web Services (AWS) Elastic Compute Cloud (EC2) instances.

CISA, the Cybersecurity and Infrastructure Security Agency, has updated its Known Exploited Vulnerabilities Catalog by adding three new vulnerabilities.

A malware distribution campaign is targeting unsuspecting victims by impersonating the popular CapCut video editing tool.

Researchers at eSentire Threat Response Unit (TRU) have identified an ongoing BatLoader campaign that leverages Google Search Ads to redirect victims.

A PoC has been developed for a security vulnerability affecting the KeePass password manager, potentially allowing an attacker to retrieve a victim's password.

Microsoft threat analysts have identified the financially motivated cybercriminal group FIN7, also known as Sangria Tempest.

Two malicious packages, were discovered in the npm package repository containing the TurkoRat open-source info-stealer.

CISA has announced the addition of three new vulnerabilities to its Known Exploited Vulnerabilities Catalog due to evidence of active exploitation.