In the wake of the devastating Los Angeles wildfires, cybercriminals are exploiting the crisis to scam unsuspecting victims and good Samaritans. As individuals and organizations rally to provide relief and support, scammers are leveraging the panic and goodwill to steal money and sensitive information. A recent investigation by the cybersecurity company Before AI sheds light […]

In a shocking revelation, a recent report by threat intelligence researchers at Zscaler has exposed the alarming prevalence of malicious applications on Google Play, the official app store for Android devices. Over the course of a year, between June 2023 and April 2024, these researchers identified and analyzed numerous malware families, uncovering a staggering number […]

Cybercriminals backed by North Korea are actively targeting cryptocurrency and DeFi businesses with sophisticated social engineering campaigns that leverage LinkedIn and deploy a previously undocumented macOS backdoor called RustDoor. Highly Tailored Attacks: Researchers from Jamf Threat Labs recently identified an attack attempt where a crypto user was contacted on LinkedIn by someone claiming to be […]

Two Cross-Site Scripting Vulnerabilities Threaten Millions of Users Popular open-source webmail software Roundcube has been found to contain two critical cross-site scripting (XSS) vulnerabilities, CVE-2024-42009 and CVE-2024-42008. These flaws can be exploited by attackers to steal sensitive user data, including emails, contacts, and passwords, as well as send malicious messages on behalf of compromised accounts. […]

A Notorious Threat Returns Evolving Tactics for Maximum Impact The Magniber ransomware, first appearing in 2017 as the successor to Cerber, has re-emerged with a vengeance. This time, attackers are primarily targeting home users worldwide, encrypting their devices and demanding hefty ransoms. Magniber ransom note Magniber has a long history of exploiting vulnerabilities. Initially distributed […]