Author Info

A cyber threat group known as UAC-0063, linked to Russia, is actively launching espionage campaigns against Central Asia and European countries. These campaigns involve sophisticated techniques such as the use of weaponized documents and the deployment of intricate malware to extract sensitive data. Overview of the Attack Campaign Recent cybersecurity

Cybercriminals are taking advantage of outdated WordPress installations and plugins to compromise numerous websites, aiming to deceive visitors into downloading malware, according to cybersecurity researchers. Understanding the Attack This active hacking effort, identified by security firm c/side, seeks to propagate malware that can steal credentials and personal information from

In an extensive crackdown dubbed Operation Talent, the FBI has successfully seized several high-profile cybercrime platforms, including Nulled.to, Cracked.to, Sellix.io, and StarkRDP.io. While no arrests have been announced, the operation underscores the persistent efforts of international law enforcement against cyber threats. Details of the Operation On

New Mirai Botnet Variant Targets Vulnerable Mitel Devices A novel variant of the Mirai botnet, identified as Aquabot, has been detected exploiting weaknesses in Mitel SIP phones to facilitate distributed denial-of-service (DDoS) attacks as a service. This development, highlighted by the Akamai Security Intelligence and Response Team (SIRT) on January

MGM Resorts, a leading player in the hotel and casino industry, has agreed to a $45 million settlement to resolve over a dozen class action lawsuits. These legal actions stem from two major data breaches that compromised the personal information of millions of customers. Details of the Settlement The settlement

ESET researchers have unveiled a cyberespionage operation carried out by PlushDaemon, a China-aligned Advanced Persistent Threat (APT) group. This operation involved compromising the supply chain of a South Korean VPN software in 2023, where the attackers replaced the legitimate installer with one that also deployed a sophisticated backdoor known as

A Critical Vulnerability in Subaru Starlink Could Allow Remote Vehicle Hijacking in North America Security experts recently discovered a critical vulnerability in Subaru's Starlink system that could have enabled hackers to remotely access and control vehicles across the U.S., Canada, and Japan using only a license plate

Concerns Mount Over UK's New Digital ID Initiative The UK government's upcoming digital ID wallet, designed to consolidate government-issued documents on smartphones, has sparked significant security and privacy debates among cybersecurity professionals. Introduction to GOV.UK Wallet Scheduled for a 2025 summer debut, the GOV.UK

A critical flaw in the 7-Zip compression tool has been fixed, addressing a vulnerability that allowed attackers to bypass the Windows Mark of the Web (MotW) security feature, posing significant risks to users. This issue permitted malicious code execution from files extracted through nested archives. MotW Support and Risks Since