Author Info

Recent discoveries have revealed a series of harmful Visual Studio Code (VSCode) extensions infiltrating the VSCode marketplace, designed to unleash heavily disguised PowerShell payloads. These attacks focus on software developers and the cryptocurrency sector, posing a significant risk through supply chain vulnerabilities. Timeline and Discovery According to a report by

In a recent phishing campaign, 20,000 employees from European manufacturing firms have found themselves in the crosshairs of cybercriminals. This attack, which spanned from June to at least September, primarily affected automotive, chemical, and industrial compound companies in the UK, France, and Germany, according to research by Palo Alto

The FBI has issued a warning regarding a new surge of HiatusRAT malware targeting internet-connected surveillance cameras and DVRs from Chinese brands. The alert, shared through a Private Industry Notification, outlines ongoing scanning campaigns exploiting these vulnerabilities. Emergence and Persistence HiatusRAT, which has been active since July 2022, gained traction

Security analysts have exposed a sophisticated phishing operation targeting an organization in Turkey's defense sector, showcasing the evolving strategies of the threat actor TA397, also known as "Bitter." Phishing Campaign Breakdown According to research by Proofpoint, the campaign utilized spear phishing techniques through emails containing RAR

A recently identified social engineering scheme has taken advantage of Microsoft Teams to distribute the notorious DarkGate malware. Researchers at Trend Micro, including Catherine Loveria, Jovit Samaniego, and Gabriel Nicoleta, revealed how attackers impersonate clients via Teams calls to gain unauthorized access to victims' systems. During these attacks, threat

A significant cyber breach has hit the Rhode Island Benefits System (RIBridges), affecting various health and social service programs. The attackers, identified as an international cybercriminal syndicate, are now demanding a ransom, threatening to expose sensitive personal information of numerous residents. The Breach Details Discovery: On December 5, cybersecurity officials

A serious security flaw in Apache Struts 2, identified as CVE-2024-53677, is currently being exploited by attackers using public proof-of-concept exploits to locate susceptible devices. Apache Struts is a widely used open-source framework for Java-based web applications, utilized by industries such as government, finance, e-commerce, and aviation. Vulnerability Details The

Overview of the Incident A cybersecurity breach has disrupted operations at Texas Tech University Health Sciences Center (TTUHSC) and TTUHSC El Paso. The incident has potentially exposed sensitive data for approximately 1.4 million patients, prompting a broad investigation into the attack's scope and consequences. Incident Timeline and

The ransomware group who has appropriated the name Cicada3301 has taken responsibility for a significant data breach involving Concession Peugeot, a notable car dealership in France associated with the Peugeot name. This breach, which reportedly compromised 35GB of confidential data, continues the group's aggressive ransomware activities. Date of