My Courses
-
WhatsApp Zero-day vulnerabilities utilised for iOS attacks
A critical vulnerability identified as CVE-2025-55177 has been exploited in conjunction with a zero-day flaw affecting iOS and macOS systems. This exploitation is believed to…
-
Silver Fox using WatchDog driver to distribute ValleyRAT malware
The threat actor known as Silver Fox has exploited a previously unknown vulnerable driver associated with WatchDog Anti-Malware in a Bring Your Own Vulnerable Driver…
-
Nodemailer imitator nodejs-smtp clips Atomic and Exodus wallets
Cybersecurity researchers have uncovered a malicious npm package named Nodejs-Smtp, which stealthily injects harmful code into desktop applications for cryptocurrency wallets such as Atomic and…
-
Ukrainian group FDN3 initiates large-scale brute-force attacks against SSL VPN and RDP systems.
Cybersecurity researchers have identified a Ukrainian IP network, FDN3 (AS211736), as being involved in extensive brute-force and password spraying campaigns targeting SSL VPN and RDP…
-
Android Droppers distributing banking trojans, SMS stealers and spyware
Cybersecurity researchers are highlighting a significant shift in the Android malware landscape, where dropper apps, traditionally used to deliver banking trojans, are now also distributing…
-
Considering Browsers as a Vulnerability Target: Reevaluating Security for Scattered Spider
As enterprises increasingly transition their operations to web-based platforms, security teams encounter a rising array of cyber challenges. Over 80% of security incidents now stem…
-
ScarCruft’s “Operation HanKook Phantom” targeting South Korean academics with RokRAT malware
Cybersecurity researchers have identified a new phishing campaign orchestrated by the North Korea-linked hacking group known as ScarCruft (also referred to as APT37), aimed at…
-
Velociraptor forensic tool used for command and control tunneling
Cybersecurity researchers have highlighted a recent cyber attack involving the deployment of Velociraptor, an open-source endpoint monitoring and digital forensic tool, by unknown threat actors….
-
Abandoned Sogou Zhuyin update server compromised and repurposed for Taiwan espionage operation
An abandoned update server linked to the Input Method Editor (IME) software Sogou Zhuyin was exploited by threat actors in an espionage campaign that delivered…
-
Amazon disrupts APT29 watering hole attack using Microsoft Device Code Authentication
On Friday, Amazon reported that it had identified and disrupted an opportunistic watering hole campaign orchestrated by the Russia-linked APT29 actors, aimed at intelligence gathering….
