My Courses
-
A hacker has been extradited to the United States for his involvement in tax fraud schemes that resulted in the theft of more than $2.5 million.
A sophisticated cybercriminal operation targeting American tax preparation businesses has led to the extradition of Nigerian national Chukwuemeka Victor Amachukwu from France to face federal…
-
Cybercriminals are exploiting SVG files by embedding harmful JavaScript to deploy malware on Windows systems.
Cybercriminals have started to exploit Scalable Vector Graphics (SVG) files as advanced attack vectors, turning seemingly innocuous image files into powerful phishing tools capable of…
-
SocGholish malware is distributed through advertising tools and provides access to various groups such as LockBit and Evil Corp.
The threat actors behind the SocGholish malware have been observed utilising Traffic Distribution Systems (TDSs) such as Parrot TDS and Keitaro TDS to filter and…
-
WhatsApp developers are facing threats from malicious npm packages that come with a remote kill switch.
Two malicious npm packages, identified as Naya-Flore and Nvlore-Hsc, have emerged as sophisticated threats targeting WhatsApp developers through a remote-controlled destruction mechanism capable of wiping…
-
SonicWall has verified that there are no new zero-day vulnerabilities in SSLVPN, stating that the recent ransomware attack is associated with an older vulnerability.
SonicWall has officially addressed concerns regarding a potential new zero-day vulnerability in its Secure Sockets Layer Virtual Private Network (SSLVPN) products. In a statement to…
-
Microsoft 365’s Direct Send feature has been exploited to circumvent email security measures.
Cybersecurity researchers have identified a sophisticated spear phishing campaign that exploits Microsoft 365’s Direct Send feature to bypass traditional email security measures and execute hyper-personalised…
-
The ScarCruft hacker group has initiated a new malware campaign that utilizes Rust programming language and the PubNub service.
The North Korean state-sponsored Advanced Persistent Threat (APT) group ScarCruft has initiated a sophisticated malware campaign aimed at South Korean users, utilising a deceptive postal-code…
-
Recent “Ghost Calls” attacks exploit web conferencing tools for secret command and control operations.
A sophisticated new attack technique known as “Ghost Calls” exploits web conferencing platforms to establish covert command and control (C2) channels. Presented by Adam Crosser…
-
A total of 6,500 Axis servers are found to have the Remoting Protocol open, with 4,000 of them located in the United States susceptible to potential exploits.
Cybersecurity researchers have identified multiple security vulnerabilities in video surveillance products from Axis Communications that could potentially lead to takeover attacks. These flaws allow for…
-
Malicious Go and npm packages are spreading cross-platform malware that can initiate remote data erasure.
Cybersecurity researchers have identified a set of 11 malicious Go packages designed to download and execute additional payloads on both Windows and Linux systems. At…