Blog
North Korean Supply Chain Attacks Prompt Joint Warning From South Korea and the UK
The United Kingdom and South Korea have issued a joint advisory warning about software supply chain attacks carried out by North Korean state-linked hackers, highlighting the increasing volume and sophistication of such attacks.
Bahrain Government Websites Briefly Inaccessible After Cyberattack Over Israel-Hamas War
The Al-Toufan hacker group targeted the Foreign Ministry and the Information Affairs Ministry's websites and also released scans of passports allegedly obtained from the hack.
Cybercriminals Using Telekopye Telegram Bot to Craft Phishing Scams on a Grand Scale
More details have emerged about a malicious Telegram bot called Telekopye that's used by threat actors to pull off large-scale phishing scams. "Telekopye can craft phishing websites, emails, SMS messages, and more," ESET security researcher Radek Jizba said in a new...
Hackers Demand $60M From TransUnion and Experian in South Africa, Claiming Data Theft
The hacker group, known as N4ughtySecTU, demanded a ransom of $30 million from both the credit reporting agencies and claims to have direct access to their data and infrastructure.
Australia’s Cybersecurity Strategy Focuses on Protecting Small Businesses and Critical Infrastructure
The strategy includes financial investments to support small and medium businesses, strengthen critical infrastructure, and enhance cyber capabilities, but critics argue that the allocated funds are insufficient.
Telekopye Toolkit Used as Telegram Bot to Scam Online Marketplace Users
The Telekopye Toolkit, implemented as a Telegram bot, is a tool used by scammers to deceive users in online marketplaces by creating phishing websites and fabricating fake screenshots, emails, and SMS messages.
Rust-Powered SysJoker Backdoor Used in Hamas-Linked Cyberattacks Against Israel
The use of OneDrive instead of Google Drive for storing command-and-control server URLs allows attackers to easily change the C2 address and stay ahead of reputation-based services.
Tell Me Your Secrets Without Telling Me Your Secrets
The title of this article probably sounds like the caption to a meme. Instead, this is an actual problem GitGuardian's engineers had to solve in implementing the mechanisms for their new HasMySecretLeaked service. They wanted to help developers find out if their...
New WailingCrab Malware Loader Spreading via Shipping-Themed Emails
WailingCrab incorporates stealth features and utilizes MQTT, a rare messaging protocol, to evade detection and download payloads directly from the C2 server, bypassing Discord.
New WailingCrab Malware Loader Spreading via Shipping-Themed Emails
WailingCrab incorporates stealth features and utilizes MQTT, a rare messaging protocol, to evade detection and download payloads directly from the C2 server, bypassing Discord.
FREE GUIDE