Dec 25, 2024Ravie LakshmananServer Security / Vulnerability The Apache Software Foundation (ASF) has shipped security updates to address a critical […]
Category: Security
Iran’s Charming Kitten Deploys BellaCPP: A New C++ Variant of BellaCiao Malware
Dec 25, 2024Ravie LakshmananCyber Attack / Malware The Iranian nation-state hacking group known as Charming Kitten has been observed deploying […]
Researchers Uncover PyPI Packages Stealing Keystrokes and Hijacking Social Accounts
Dec 24, 2024Ravie LakshmananMalware / Data Exfiltration Cybersecurity researchers have flagged two malicious packages that were uploaded to the Python […]
North Korean Hackers Pull Off $308M Bitcoin Heist from Crypto Firm DMM Bitcoin
Dec 24, 2024Ravie LakshmananCybercrime / Malware Japanese and U.S. authorities have formerly attributed the theft of cryptocurrency worth $308 million […]
CISA Adds Acclaim USAHERDS Vulnerability to KEV Catalog Amid Active Exploitation
Dec 24, 2024Ravie LakshmananVulnerability / Software Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a now-patched […]
Apache Tomcat Vulnerability CVE-2024-56337 Exposes Servers to RCE Attacks
Dec 24, 2024Ravie LakshmananVulnerability / Zero Day The Apache Software Foundation (ASF) has released a security update to address an […]
Health care giant Ascension says 5.6 million patients affected in cyberattack
Health care company Ascension lost sensitive data for nearly 5.6 million individuals in a cyberattack that was attributed to a […]
AI Could Generate 10,000 Malware Variants, Evading Detection in 88% of Case
Dec 23, 2024Ravie LakshmananMachine Learning / Threat Analysis Cybersecurity researchers have found that it’s possible to use large language models […]
⚡ THN Weekly Recap: Top Cybersecurity Threats, Tools and Tips
Dec 23, 2024Ravie LakshmananCybersecurity / Weekly Recap The online world never takes a break, and this week shows why. From […]
Rockstar2FA Collapse Fuels Expansion of FlowerStorm Phishing-as-a-Service
Dec 23, 2024Ravie LakshmananPhishing / Cybercrime An interruption to the phishing-as-a-service (PhaaS) toolkit called Rockstar 2FA has led to a […]