Blog
Iranian Group Tortoiseshell Launches New Wave of IMAPLoader Malware Attacks
The attacks primarily target the maritime, shipping, and logistics sectors in the Mediterranean region, with high-value targets being subjected to the deployment of IMAPLoader.
FakeUpdateRU Chrome Update Infection Spreads Trojan Malware
The malware overwrites the main index.php file of websites, affecting both WordPress and other CMS platforms. The fake update page looks exactly like the official Google Chrome download page.
Meet Rhysida, a New Ransomware Strain That Deletes Itself
The Rhysida ransomware-as-a-service (RaaS) operation has targeted Brazil's popular PIX payment system since December 2022, using a unique self-deletion mechanism and compatibility with older versions of Windows.
Cybercriminals Leak Patient Pictures in Low Blow Bid to Win Ransom
A newly emerged ransomware gang, Hunters International, is resorting to morally questionable tactics by leaking patients' pre-operation pictures in order to hasten ransom negotiations.
YoroTrooper: Researchers Warn of Kazakhstan’s Stealthy Cyber Espionage Group
A relatively new threat actor known as YoroTrooper is likely made of operators originating from Kazakhstan. The assessment, which comes from Cisco Talos, is based on their fluency in Kazakh and Russian, use of Tenge to pay for operating infrastructure, and very...
Iranian Group Tortoiseshell Launches New Wave of IMAPLoader Malware Attacks
The Iranian threat actor known as Tortoiseshell has been attributed to a new wave of watering hole attacks that are designed to deploy a malware dubbed IMAPLoader. "IMAPLoader is a .NET malware that has the ability to fingerprint victim systems using native Windows...
Critical Flaw in NextGen’s Mirth Connect Could Expose Healthcare Data
Users of Mirth Connect, an open-source data integration platform from NextGen HealthCare, are being urged to update to the latest version following the discovery of an unauthenticated remote code execution vulnerability. Tracked as CVE-2023-43208, the vulnerability...
Update: Grammarly Says It Corrected Sign-in Vulnerabilities After Alert From Cyber Researchers
The vulnerabilities could have allowed attackers to leak credentials and take over user accounts. No Grammarly accounts were compromised, and the company thanked the researchers for reporting the issue.
Update: Grammarly Says It Corrected Sign-in Vulnerabilities After Alert From Cyber Researchers
The vulnerabilities could have allowed attackers to leak credentials and take over user accounts. No Grammarly accounts were compromised, and the company thanked the researchers for reporting the issue.
Alleged Airbnb Data Breach Allegedly Exposes 1.2 Million User Records
This breach raises concerns about the security and privacy of Airbnb's user base, as the stolen data can be used for malicious purposes such as identity theft and phishing.
FREE GUIDE